Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bcbfc65a-92eb-4dab-b943-d75cfe2a78d8.roa
File: bcbfc65a-92eb-4dab-b943-d75cfe2a78d8.roa (raw, json)
Hash identifier: v45FjaPpvt4JAXv9zpMv2m1fAmadBF2IzwhxDArQ8Qo=
Subject key identifier: E9:A3:6C:66:D7:E8:D7:9F:61:D6:F1:CC:CE:F2:F6:0B:00:0E:25:65
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 15F74913BAE68AE456D1C0366BDAB206BAD45805
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bcbfc65a-92eb-4dab-b943-d75cfe2a78d8.roa
Signing time: Sat 02 Dec 2023 00:00:00 +0000
ROA not before: Sat 02 Dec 2023 00:00:00 +0000
ROA not after: Sat 06 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:f7:49:13:ba:e6:8a:e4:56:d1:c0:36:6b:da:b2:06:ba:d4:58:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 2 00:00:00 2023 GMT
Not After : Jan 6 23:59:59 2024 GMT
Subject: serialNumber=c11e89401e7b3aa20944fa36bd0ff192d1083318c533b76c2217bf1f1c6babf8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b5:0e:73:a7:d5:67:87:d9:91:cd:f6:e3:56:
1a:1d:44:8c:3f:51:cb:a2:d0:37:f0:01:c6:9f:ec:
85:c7:f5:87:95:16:83:a7:82:60:0e:e8:a7:e4:00:
5d:29:c5:0b:20:eb:ca:81:23:ad:d0:e7:b4:87:c1:
10:81:55:70:67:2d:71:18:7f:10:a4:4c:31:5c:3e:
2c:84:1d:3f:ea:19:a7:ea:c1:09:62:33:bc:9b:c6:
9f:77:0e:f6:1a:9c:33:0f:ef:11:e9:3f:40:ca:2a:
45:69:ea:78:52:e7:03:23:74:2d:a3:9d:a8:cf:7e:
ff:75:f9:72:82:9c:0c:74:b8:fc:53:f1:33:fd:b9:
ac:ea:74:02:f5:08:fd:e6:1d:16:fa:ab:20:45:5f:
3b:87:a6:5c:7a:c4:f9:21:e3:7b:55:e0:58:7b:53:
52:11:93:5a:76:09:48:27:45:68:75:00:f0:73:3f:
bf:6d:48:5e:f1:2c:06:1e:1a:16:06:5c:28:8b:d8:
7c:8f:1e:8d:93:16:3a:32:a9:8d:06:08:c7:b2:cd:
f3:67:8e:93:ef:a2:8c:f3:67:4d:df:55:32:12:f6:
32:6c:57:62:de:1c:cc:40:03:c5:76:26:be:1d:04:
44:51:c2:02:3f:4c:7f:1c:43:44:c7:4a:64:0f:97:
2f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:A3:6C:66:D7:E8:D7:9F:61:D6:F1:CC:CE:F2:F6:0B:00:0E:25:65
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bcbfc65a-92eb-4dab-b943-d75cfe2a78d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:09:f6:c7:82:96:20:4c:7b:c4:19:da:0f:8e:79:c0:6e:39:
1e:ed:e0:c6:27:5a:d6:5a:1c:e4:72:c1:2f:28:05:6e:dc:85:
6a:85:7c:7d:b3:f7:00:bc:83:72:41:fd:08:5c:90:47:87:eb:
b6:6c:7c:88:5b:ce:22:b1:d9:14:82:0c:a5:96:a6:9a:30:8f:
99:bd:d0:77:2e:af:ff:0b:ab:fc:81:69:b4:30:c4:6b:0c:c2:
ab:eb:d0:46:10:e2:98:da:84:a9:18:a8:60:28:2d:a1:03:e2:
6d:3e:85:11:4f:4b:b7:53:1a:8b:56:49:c1:44:54:85:ab:04:
48:a3:b7:f8:3d:42:7b:da:51:cf:9e:a1:38:6b:f2:31:d9:a3:
29:6b:33:42:e6:91:f0:c5:2d:db:1f:99:9d:f9:ef:44:4a:e0:
26:74:f7:95:99:9c:e1:c2:92:d9:aa:23:e5:dd:f6:a6:24:3a:
bb:d7:62:8d:c5:6d:3c:78:10:d9:3f:5b:d7:ed:c2:3f:8b:90:
5d:70:33:ce:fb:ce:ab:09:bf:f4:65:80:d2:99:45:63:c5:57:
66:e1:10:4a:38:db:e5:37:a0:08:84:14:17:19:be:51:76:2c:
9d:b0:54:77:a1:22:66:87:ff:fa:8f:6d:66:59:0b:39:7e:11:
4f:ff:7b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:17 2024 by rpki-client on console-ams.rpki-client.org