Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dd1f1c5e-2723-4efb-b83a-dd7f9b753680.roa
File: dd1f1c5e-2723-4efb-b83a-dd7f9b753680.roa (raw, json)
Hash identifier: nYgQDLvNbRV6NfkGyuT+E6CN3kt3bPZwesonmvT18RU=
Subject key identifier: CB:9A:FE:CD:99:DB:FE:EB:18:A5:52:40:93:C8:08:50:F5:D8:78:1A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4582D0CF54A43AADD099330E57FA0865764B7F42
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dd1f1c5e-2723-4efb-b83a-dd7f9b753680.roa
Signing time: Wed 09 Aug 2023 00:00:00 +0000
ROA not before: Wed 09 Aug 2023 00:00:00 +0000
ROA not after: Wed 13 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:82:d0:cf:54:a4:3a:ad:d0:99:33:0e:57:fa:08:65:76:4b:7f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 9 00:00:00 2023 GMT
Not After : Sep 13 23:59:59 2023 GMT
Subject: serialNumber=28bcf497eb5360df9e7e1ce58bd5ab1376ad8f0dc7f27e8b88d0e4c453a0c5e8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:39:f1:25:a6:22:08:de:9c:d7:04:8d:70:e5:
d1:43:73:b2:e1:fe:ce:9c:82:28:09:6b:41:15:2b:
fd:ff:7c:93:99:b1:af:77:2e:12:63:ac:4f:ca:2d:
13:53:86:43:20:86:38:f6:25:99:73:15:65:8f:82:
14:ef:94:3c:67:61:c0:eb:1d:89:00:d7:1c:f0:7f:
68:7d:7b:7f:20:b2:e9:65:31:b4:9e:01:a5:dd:73:
74:50:54:19:90:a0:0e:7b:7c:32:00:45:29:c9:3c:
55:24:a5:5e:95:6c:8b:a9:0a:55:61:2e:5e:0e:25:
ab:e5:6e:dc:e9:97:05:84:79:b8:db:43:c9:00:36:
2d:10:06:05:6c:5e:13:4c:29:59:78:28:31:0b:c4:
08:ee:a8:64:85:79:9c:22:29:a3:22:5b:42:7a:c6:
28:69:82:ca:2c:05:ee:06:6f:db:17:55:2c:50:5c:
d5:ed:f6:cb:43:0a:ae:c8:19:36:b7:6f:4c:aa:9d:
63:6f:10:9e:47:0b:b4:17:25:da:2c:6b:3a:94:9e:
63:db:8b:7a:4d:d8:6b:68:c6:f3:99:69:16:2b:c7:
15:1c:28:35:fc:70:91:1b:d8:d7:10:4f:1e:83:05:
73:8a:b5:b1:da:6b:53:8b:dc:db:a3:56:e3:40:4f:
41:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:9A:FE:CD:99:DB:FE:EB:18:A5:52:40:93:C8:08:50:F5:D8:78:1A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dd1f1c5e-2723-4efb-b83a-dd7f9b753680.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
20:21:15:a4:b3:97:1f:25:e0:f8:6a:cf:6d:08:ce:d1:92:6f:
d7:1f:4d:38:01:52:85:8e:c4:83:41:3e:e6:61:4a:f2:5a:91:
8d:fe:a2:e7:ca:d1:34:87:38:3d:38:8b:78:92:d1:88:a1:cb:
2b:c0:e5:f5:9c:1f:20:72:a2:a0:3e:c7:65:24:16:43:b6:65:
ea:69:ec:e3:21:2a:e5:19:43:1d:4d:b1:78:ff:b9:60:cd:09:
97:4f:6e:28:8b:c8:82:63:d9:4b:a4:54:b3:7a:5d:70:9c:74:
77:cc:f8:ed:91:cf:a0:a0:45:2b:ca:2b:ab:f3:d0:96:de:f8:
20:ab:49:ef:2f:9d:fb:31:d7:06:2a:00:f0:db:7f:da:53:68:
3b:36:25:ec:b8:fc:cd:f2:23:ee:bd:b3:99:be:6f:16:c8:a1:
51:6f:d1:62:8d:0e:ee:d2:12:1e:81:27:75:77:0a:1e:56:55:
ab:26:51:b4:79:e6:8b:5c:c7:ba:68:db:18:17:00:cc:c9:ef:
3c:28:07:94:81:99:e9:ee:ad:ad:2c:e0:8d:e3:c8:90:35:17:
5a:2c:17:91:57:ea:2a:e4:3a:ee:ab:11:fb:54:74:02:be:b2:
08:be:10:f3:a4:98:0f:21:e4:26:09:0f:77:d9:b6:5f:c7:f7:
75:f7:15:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-ams.rpki-client.org