Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ae8fbfa6-dd71-412b-a8d7-26d9cd1afcae.roa
File: ae8fbfa6-dd71-412b-a8d7-26d9cd1afcae.roa (raw, json)
Hash identifier: Ph/PZtkigAzD+nQasyomQh7dV53lrgR0H1DxSma/tWg=
Subject key identifier: CD:C1:9F:57:56:8C:0B:71:3D:11:20:9F:90:A8:36:3E:6A:A4:41:1D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7714451958EA6AB520BC20DC8BACD45E057C9FE5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ae8fbfa6-dd71-412b-a8d7-26d9cd1afcae.roa
Signing time: Wed 08 Nov 2023 00:00:00 +0000
ROA not before: Wed 08 Nov 2023 00:00:00 +0000
ROA not after: Wed 13 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:14:45:19:58:ea:6a:b5:20:bc:20:dc:8b:ac:d4:5e:05:7c:9f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 8 00:00:00 2023 GMT
Not After : Dec 13 23:59:59 2023 GMT
Subject: serialNumber=70af0c3cd5f6ee7653b9e7325744057d9b91c77603eca75a340da12552d7c3c6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:92:13:a2:dc:96:e1:ed:7d:28:08:76:da:90:
01:76:75:80:e0:bd:1d:02:e6:76:4c:50:32:e2:69:
9d:b1:60:06:4d:2f:9f:99:78:cd:bb:2a:88:b5:f1:
d3:4c:39:8c:3e:37:14:ff:14:20:74:cd:e2:f8:7d:
0e:21:85:57:5b:b0:8f:c4:96:f8:f8:0f:43:83:7c:
57:d3:da:1c:84:87:cc:d5:b8:00:44:72:b0:a0:ad:
fb:8c:50:74:79:a1:21:03:47:f7:26:db:8d:37:34:
38:4a:bf:53:4c:8d:8e:e7:bf:1a:d4:ce:1c:0d:c4:
75:17:54:be:a5:77:12:ad:96:d3:87:2e:98:51:56:
97:cb:49:18:f1:8b:ca:9c:9f:ae:45:29:dd:59:a5:
8f:be:cd:37:28:eb:00:83:2e:6a:a4:e5:b8:57:17:
00:f9:9f:f5:29:16:d6:a6:b4:d5:cc:c5:89:a2:75:
15:4b:6b:e4:d4:80:c9:7b:c1:75:d8:c3:1a:27:d3:
95:fb:0d:ea:49:ff:2f:77:72:17:85:b8:42:bf:0e:
a3:ea:58:45:c1:6b:39:be:72:8b:24:c0:76:b5:2b:
b0:b4:3f:56:85:4c:ec:3f:b5:62:39:4a:cc:ce:20:
23:68:de:6f:1e:64:00:fa:af:3e:7c:4c:21:c0:c9:
67:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C1:9F:57:56:8C:0B:71:3D:11:20:9F:90:A8:36:3E:6A:A4:41:1D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ae8fbfa6-dd71-412b-a8d7-26d9cd1afcae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
66:6f:41:65:ec:82:7c:94:83:be:13:75:bb:ae:ba:15:c3:04:
3c:e4:ca:0a:cf:fc:49:09:a6:bd:eb:5a:9d:4d:94:e7:ee:05:
0c:a3:db:fe:08:fe:49:d5:b7:16:c1:2e:13:81:8d:b1:fa:2e:
dc:b2:ef:9c:72:e5:47:f1:ff:57:22:bf:16:c9:f0:42:4f:38:
75:2d:29:91:ca:48:22:ed:f9:c1:e0:e7:75:55:51:be:68:48:
a0:8b:2e:27:0b:f2:b3:8a:fa:d2:9c:ad:4e:e6:f4:b5:90:b4:
15:1a:76:e2:f1:b5:40:0a:20:80:25:f1:52:eb:ba:6d:21:70:
ea:00:44:de:f9:3e:c8:cd:f5:4c:c1:3b:49:89:6f:60:45:a4:
b2:03:c1:f6:6d:ff:29:e4:79:a0:db:80:12:e2:a8:24:1f:8e:
01:ab:a7:0c:b3:b1:c1:fc:6a:a0:f0:6c:fb:34:36:e8:5a:94:
7c:43:4e:3a:4f:ea:29:8b:03:a7:0f:4f:96:a5:83:f2:6b:8b:
12:00:14:b5:db:a3:52:34:e8:9f:ea:88:73:b5:8f:cc:7a:5e:
02:54:e4:5a:2a:c0:a3:f9:15:c2:c1:ca:73:7b:a4:7e:27:f1:
9f:15:e4:e7:19:8d:83:dc:26:b5:a9:14:d8:64:4a:7b:1e:04:
c3:55:d0:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:07 2024 by rpki-client on console-ams.rpki-client.org