Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/de620249-b7e4-4396-aba1-8e68cedd3ded.roa
File: de620249-b7e4-4396-aba1-8e68cedd3ded.roa (raw, json)
Hash identifier: YgA2VrDoE0n4DAZOkFMv15HNPfCpdG73f6+7bxvNhRA=
Subject key identifier: 4C:46:14:FE:F9:44:44:2B:DD:68:49:CD:17:F7:4B:C1:0A:28:61:4A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5944F691E881FC7FBF33C2A0D09C089058EB7617
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/de620249-b7e4-4396-aba1-8e68cedd3ded.roa
Signing time: Thu 27 Jul 2023 00:00:00 +0000
ROA not before: Thu 27 Jul 2023 00:00:00 +0000
ROA not after: Thu 31 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:44:f6:91:e8:81:fc:7f:bf:33:c2:a0:d0:9c:08:90:58:eb:76:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 27 00:00:00 2023 GMT
Not After : Aug 31 23:59:59 2023 GMT
Subject: serialNumber=4a2283795b147061326239748dc58d455ff0c9273057894005b9f44be66d531f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cf:a4:c0:f2:db:eb:fd:0d:d7:ec:25:84:0d:
c7:54:ce:fd:34:83:33:e5:3e:3a:7e:78:dd:b7:c4:
7e:26:a4:f3:14:7b:48:47:6b:e1:75:11:17:c8:4f:
d7:42:4f:dc:6b:1e:cc:ec:21:c8:59:14:58:03:91:
a1:eb:b6:cb:8b:f7:79:15:1e:7a:e9:b0:65:f3:e1:
b1:a3:c0:34:eb:d2:22:3a:44:12:e2:c8:94:46:1e:
7b:07:ce:87:b5:a5:28:0d:6e:5b:f5:ac:31:d7:e5:
96:52:f2:5c:fa:80:d4:d9:81:13:43:1b:8b:08:e2:
86:d7:64:89:be:a9:49:64:be:ff:fd:0b:b2:78:08:
2a:56:ea:c4:57:a2:0d:e3:fe:48:8a:cd:68:32:db:
0d:bf:d8:3e:60:69:a8:cb:fd:ae:93:59:a0:66:a2:
5b:25:bc:1c:50:f8:4c:b3:12:55:f9:8c:4b:81:2e:
55:b4:1c:e0:57:6b:f5:36:d6:0e:7b:23:16:77:43:
05:1a:e6:15:86:97:35:9a:8b:d7:1b:6e:d4:4d:e5:
08:d3:da:63:42:9f:31:e8:c9:90:75:7e:ef:15:22:
c4:7e:a9:3f:93:43:69:cb:03:87:41:27:bf:1d:09:
47:9c:70:17:0f:61:99:a7:5f:27:f7:b5:39:10:6c:
66:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:46:14:FE:F9:44:44:2B:DD:68:49:CD:17:F7:4B:C1:0A:28:61:4A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/de620249-b7e4-4396-aba1-8e68cedd3ded.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:bc:c4:4b:cf:ee:22:0d:07:84:f5:c5:a4:84:55:6c:df:e2:
e3:d4:40:af:db:76:9f:b4:e1:22:d1:9d:c1:83:36:05:f0:7c:
22:c5:87:68:9e:1c:c4:b7:f3:8f:cb:1d:bf:1a:11:96:7c:65:
7a:7b:7d:0c:a5:4c:d8:c3:02:22:ff:52:55:fa:19:19:cc:c4:
f2:f0:22:c9:b2:f8:bb:3b:02:0c:d0:f9:5e:ce:1f:ef:82:75:
c1:a3:24:cd:37:34:ca:8b:49:94:5b:45:75:b7:43:03:33:c9:
fb:1c:5e:43:42:c8:8f:97:ee:f2:cd:63:7f:3c:c8:de:b8:64:
3c:31:d1:06:3d:1f:d0:6f:30:53:c5:63:fb:77:8c:32:08:5a:
56:4d:4e:16:31:a1:cc:e3:9c:c3:78:0a:ed:e3:06:ea:19:0d:
57:07:3e:ea:0b:7b:84:1a:e5:e9:da:6a:c2:12:0a:8c:4c:b4:
9b:d0:93:6b:6f:2d:9b:34:e8:be:9f:1c:76:44:a2:7d:c2:b7:
37:74:5d:79:83:60:2d:a9:78:f2:fb:d1:f4:c2:d4:65:f7:89:
93:11:58:ea:1e:f4:39:d3:25:10:13:ae:91:66:73:ec:10:25:
38:69:53:fe:05:49:0e:36:a3:71:54:a1:e3:2c:6c:34:76:7e:
f1:d3:f5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-ams.rpki-client.org