Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c7fcc973-ee1d-4a32-a6fc-5913d5473f47.roa
File: c7fcc973-ee1d-4a32-a6fc-5913d5473f47.roa (raw, json)
Hash identifier: KbzewT3OkLNDmJ4H787E/DYpMNWfP00RlmpShFGC1yw=
Subject key identifier: 51:F9:CA:64:F0:B3:12:71:BF:0E:62:3C:1D:AA:D4:19:F7:A5:25:61
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 26D713B68E218BFA41D86996F9ADFF0C2371BCF1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c7fcc973-ee1d-4a32-a6fc-5913d5473f47.roa
Signing time: Sun 27 Aug 2023 00:00:00 +0000
ROA not before: Sun 27 Aug 2023 00:00:00 +0000
ROA not after: Sun 01 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:d7:13:b6:8e:21:8b:fa:41:d8:69:96:f9:ad:ff:0c:23:71:bc:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 27 00:00:00 2023 GMT
Not After : Oct 1 23:59:59 2023 GMT
Subject: serialNumber=81199f73ea5952248c7ef2661d238835332a4d1c37b766f71d175b9c703b7b0d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cb:65:ed:85:50:29:ef:6a:50:1f:b6:91:4d:
46:b0:f1:b1:5f:7c:81:ac:a7:56:07:de:ca:e5:2c:
5e:cd:90:a9:e8:71:bc:24:31:b1:5f:4c:1c:45:32:
d4:b3:0d:b9:5a:9b:82:ef:54:5a:b2:f0:b6:2a:83:
c6:e5:5a:ae:43:bc:2e:72:db:a0:75:4c:26:43:47:
93:86:42:dc:f5:9b:89:6c:1c:ba:13:b8:5e:33:41:
71:db:66:85:94:e1:e3:c5:7a:d8:c7:d9:b0:06:c0:
50:65:dc:e7:56:eb:11:e0:77:98:09:64:fc:13:70:
ee:37:f9:7d:52:5a:ca:b4:d4:43:7e:f2:eb:ed:a5:
fd:5e:71:f0:ef:41:09:26:84:fa:b4:3f:55:a5:eb:
62:56:ab:23:a7:c7:f0:ac:c9:12:ed:8b:b9:14:d4:
dc:af:c3:58:7b:8f:96:8a:59:6e:0b:3f:ad:cf:a1:
35:0b:9b:f8:2a:1a:9d:c8:4d:06:d4:24:eb:3c:d0:
9b:a2:38:52:18:2b:5a:54:d1:34:e5:58:36:e0:8f:
0e:78:63:1d:02:8b:61:d6:87:f9:e7:02:01:c6:27:
46:63:44:e2:7a:86:d5:a5:f4:e7:07:07:30:35:bc:
af:ef:26:46:d0:3b:f4:62:26:42:e6:26:fd:29:1f:
9e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F9:CA:64:F0:B3:12:71:BF:0E:62:3C:1D:AA:D4:19:F7:A5:25:61
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c7fcc973-ee1d-4a32-a6fc-5913d5473f47.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
72:65:65:32:4d:96:7f:97:d0:49:12:73:57:ed:d5:ca:3e:58:
f3:eb:e2:d8:e8:95:30:81:51:25:7f:1b:a9:b3:38:f7:bb:9b:
87:c0:67:62:b9:40:cf:3f:f1:16:83:03:f1:5f:68:10:67:d3:
d8:4c:70:2c:e7:b8:e0:a2:cf:fd:f6:ef:91:41:73:ce:3a:9a:
f0:2c:5d:3e:8c:bb:52:07:50:4c:64:3b:89:b4:f5:4b:ee:a5:
55:f4:5e:6d:90:e6:ab:e6:9b:9b:ec:b4:68:42:4d:00:13:70:
9e:56:6e:04:c8:35:8c:1a:7a:5e:ce:01:4d:d6:96:e9:df:28:
d6:e8:f7:0f:8c:3e:59:49:03:2d:25:e9:c6:72:c1:06:41:21:
90:d5:d6:39:af:fd:1e:ef:46:d7:b5:8b:7f:b0:d6:34:a9:e2:
45:69:c8:f2:d6:5c:de:44:34:ad:8e:05:d9:dd:43:a3:d1:30:
8a:04:c3:87:63:b0:99:45:d3:65:b8:59:ec:05:7b:90:dd:b4:
d3:47:5a:b6:0a:8d:86:6e:b9:4c:68:bc:1d:f9:64:29:be:2a:
82:d0:b7:1a:ea:40:2a:d4:01:38:70:ba:b1:bd:7b:b5:d8:a7:
bf:a8:c1:6d:30:10:08:93:53:d4:1f:62:dd:47:ce:87:42:5d:
81:16:3c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-ams.rpki-client.org