Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/abd1c778-2f73-4ee2-a32a-fb5d36f74bd5.roa
File: abd1c778-2f73-4ee2-a32a-fb5d36f74bd5.roa (raw, json)
Hash identifier: oppV7HSDSU2F0jv3/j9lq29VTWs/6IyWNlI2+0mNHgc=
Subject key identifier: 5A:10:6E:06:FA:69:F6:2C:CD:74:04:E1:41:DF:8F:14:2B:2C:4A:EA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5D7A5FABB1A2BB26F6424F52537528CCBADAA40D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/abd1c778-2f73-4ee2-a32a-fb5d36f74bd5.roa
Signing time: Sun 15 Oct 2023 00:00:00 +0000
ROA not before: Sun 15 Oct 2023 00:00:00 +0000
ROA not after: Sun 19 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:7a:5f:ab:b1:a2:bb:26:f6:42:4f:52:53:75:28:cc:ba:da:a4:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 15 00:00:00 2023 GMT
Not After : Nov 19 23:59:59 2023 GMT
Subject: serialNumber=ab868b9c21e842d16ffb4a326b6f5189aa63ea9a977b1397bf7e39b7ee465756, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b3:c1:7a:1a:88:f1:dd:bb:81:74:73:bb:54:
0b:8b:c3:cb:43:a9:26:58:6b:c2:a2:9e:c5:35:9b:
e8:af:f3:6a:a8:c5:63:d3:bc:14:6d:98:39:10:16:
17:19:57:38:31:82:b4:ee:16:50:73:74:5a:7d:a6:
56:21:7c:49:ac:6c:21:e4:7b:42:4d:76:94:8d:ef:
6a:01:35:20:ff:22:b8:42:a1:57:5d:d2:ad:18:80:
8a:62:a9:29:08:0f:fe:60:c3:f5:db:cb:39:02:21:
af:c8:47:9b:08:91:a4:ba:84:48:e5:02:07:4e:55:
6f:d8:5b:1a:e9:24:89:9c:d5:06:2f:a6:65:1b:9d:
59:4b:4d:ea:72:d2:63:07:1b:39:02:66:8e:a7:c4:
91:fe:21:ab:65:fe:fd:7e:7a:da:0e:44:05:e9:61:
b4:6f:ed:32:80:27:39:d9:e1:af:5f:6e:39:3c:d3:
80:35:aa:8b:d2:64:47:17:bc:32:bf:11:4c:90:0b:
38:d6:86:9e:a4:cc:a7:da:11:1a:12:d6:50:3d:ad:
d5:12:95:19:f5:4c:24:e9:ee:62:19:fd:88:23:ea:
54:49:6a:36:8b:06:b7:6a:53:ea:3d:f4:58:f7:12:
e9:64:07:bd:f4:1a:d5:d1:85:f0:84:1f:e9:64:be:
63:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:10:6E:06:FA:69:F6:2C:CD:74:04:E1:41:DF:8F:14:2B:2C:4A:EA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/abd1c778-2f73-4ee2-a32a-fb5d36f74bd5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e1:d9:1c:02:1b:da:9f:d9:ab:32:43:b2:fc:ef:de:a0:01:
20:5a:f3:9d:f2:2d:a3:49:4f:b6:30:91:ca:7a:c5:d7:74:33:
62:04:af:e8:aa:82:6e:a3:19:fd:72:7f:30:b7:c1:a6:fd:1f:
fc:44:97:9d:6b:80:e3:a0:be:19:6e:a9:2a:c0:62:0b:49:bc:
e2:d3:09:c8:25:9d:33:86:45:22:bf:4b:68:6e:7c:46:32:bd:
a1:0d:53:0d:f5:6c:f3:43:8c:ae:ef:2f:e2:46:eb:85:95:5d:
21:41:f2:f0:0f:ce:41:e3:a3:fe:c5:8d:9d:9c:13:3e:d9:4c:
84:87:f3:91:b4:48:b4:cc:9c:82:a4:52:a2:67:20:31:68:f5:
0f:ee:c7:d0:53:ac:96:86:49:60:07:34:d9:06:01:e9:10:60:
01:15:8d:14:6f:fd:49:3d:7e:05:9d:4f:1e:ec:00:d8:2c:a1:
6a:8e:37:13:c0:35:2c:55:27:d1:13:89:7c:10:f5:89:bf:57:
b3:47:3d:46:f4:50:85:8c:3d:c1:6d:0b:65:23:f8:cf:79:9b:
f1:ee:11:a7:9c:41:b3:b2:e4:76:07:fd:83:c6:5a:f7:54:9a:
58:db:f2:1d:c6:27:85:7d:a5:d0:12:07:35:a8:e1:56:af:4d:
1f:9c:f9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:39 2024 by rpki-client on console-fra.rpki-client.org