Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e2c0a7b9-4c4a-42e8-b277-7507fb610cb5.roa
File: e2c0a7b9-4c4a-42e8-b277-7507fb610cb5.roa (raw, json)
Hash identifier: fOGjb8OiVZ+dTpYESH1q76dyG1kFKtCmJS5yu1kcMBc=
Subject key identifier: D2:F5:63:0F:B2:4A:B5:1E:98:A9:5C:FB:B0:36:1A:AA:BA:C8:92:FB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 517CA91AAD5BF0C72B1ACDA47C8CE7AEB54C1732
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e2c0a7b9-4c4a-42e8-b277-7507fb610cb5.roa
Signing time: Thu 22 Jun 2023 00:00:00 +0000
ROA not before: Thu 22 Jun 2023 00:00:00 +0000
ROA not after: Thu 27 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:7c:a9:1a:ad:5b:f0:c7:2b:1a:cd:a4:7c:8c:e7:ae:b5:4c:17:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 22 00:00:00 2023 GMT
Not After : Jul 27 23:59:59 2023 GMT
Subject: serialNumber=00560464a403b65c04e12aea3f34fa9f060031d5e26c862acdd1333d98051a4c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:06:fc:01:73:6d:56:8b:35:1d:5a:cd:f4:a3:
bc:29:e5:6e:c6:46:bb:01:eb:bf:f2:94:2e:b5:73:
8a:b0:5d:e1:00:1b:f3:9b:db:24:8a:e9:b4:e0:09:
4b:47:df:14:e3:88:63:ae:a4:02:7e:76:00:b2:b0:
de:aa:2a:21:a4:cd:c8:3f:32:9c:6d:ee:aa:7e:f5:
a1:16:a1:fc:74:09:fa:67:a0:48:0a:3c:8b:07:11:
c9:5c:b7:56:d3:ec:ee:3d:1e:91:a0:83:a8:c1:f1:
38:94:94:8c:44:fb:4a:8e:5b:0b:a7:61:39:e1:be:
66:ad:4c:d6:ca:e5:77:e8:02:04:6f:3c:a2:f0:e4:
11:40:1b:4b:16:21:70:38:40:66:3f:25:91:f8:ce:
19:f5:f8:72:35:b9:5d:66:91:aa:58:d3:ff:0c:05:
c9:6a:2e:8d:d4:87:61:2f:09:17:bb:96:91:0a:31:
ba:20:c0:52:1b:c1:ba:c4:83:07:05:ae:fe:cd:d1:
51:06:e3:52:e0:bb:e1:77:3b:7e:42:08:4a:06:30:
ea:d2:f3:ff:4c:b7:a3:55:39:6c:38:ec:bc:7a:33:
58:1e:fa:52:e8:55:88:55:3b:4c:65:83:04:18:e4:
f1:4d:89:79:f8:c8:ee:7a:6d:05:23:1a:be:cd:b0:
42:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:F5:63:0F:B2:4A:B5:1E:98:A9:5C:FB:B0:36:1A:AA:BA:C8:92:FB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e2c0a7b9-4c4a-42e8-b277-7507fb610cb5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
92:85:42:42:5b:54:65:d4:83:fe:58:29:dc:14:c0:09:d4:41:
ce:79:36:cd:ac:95:83:4d:9e:98:ab:da:39:0e:70:da:28:6d:
b9:4c:73:9c:0c:3c:9e:95:65:4b:fc:ab:ed:34:e7:ed:57:55:
2d:53:71:db:fd:5a:3c:f6:56:3e:3f:0e:5b:4e:79:8d:38:74:
47:28:0a:8a:c5:ff:60:44:45:73:56:5a:87:e3:d4:b4:35:55:
50:50:88:46:fc:c3:19:d1:4d:ee:f3:ba:e3:77:2e:b1:c2:6c:
17:64:5b:17:fc:5f:53:1f:d0:33:f6:a3:61:a2:fa:65:28:9e:
9e:96:65:f0:d7:d2:42:38:13:63:fb:7b:d0:71:1f:81:eb:49:
32:f2:b6:c2:67:c8:f2:57:4e:f4:e0:38:3a:4d:ee:32:e8:48:
45:ef:da:97:1a:6b:e3:d0:c7:a3:87:e9:6d:3c:79:5d:05:90:
3d:d4:ae:56:1a:13:07:b4:dd:14:ae:fa:e8:f9:80:01:35:a2:
ef:63:0a:a1:3f:a2:4f:03:94:7c:47:ea:3c:84:16:19:d7:77:
4f:e8:4e:d9:ca:79:80:15:3c:7c:a0:b4:3b:f3:f6:de:fc:3a:
3b:51:6c:38:1e:9c:11:97:42:36:95:d7:7e:48:56:4d:79:26:
5b:c9:93:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:31 2024 by rpki-client on console-ams.rpki-client.org