Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e66052ca-e126-4012-89e8-6b0bb8292fb5.roa
File: e66052ca-e126-4012-89e8-6b0bb8292fb5.roa (raw, json)
Hash identifier: hD59m8FOASvnSNEyUyJIL5V8qJ9l6WHcYfOGZdxbihc=
Subject key identifier: CE:8D:38:71:8E:C3:FE:F8:1C:E3:32:19:13:27:E2:DA:A5:46:05:85
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 56FE71EC502E68C0F798D417066A98E15D8D3D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e66052ca-e126-4012-89e8-6b0bb8292fb5.roa
Signing time: Sat 06 Jan 2024 00:00:00 +0000
ROA not before: Sat 06 Jan 2024 00:00:00 +0000
ROA not after: Sat 10 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:fe:71:ec:50:2e:68:c0:f7:98:d4:17:06:6a:98:e1:5d:8d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 6 00:00:00 2024 GMT
Not After : Feb 10 23:59:59 2024 GMT
Subject: serialNumber=598b57d278036ca324ea9bfbf15796859fafdb595ea5b176ad9e7f0f50db7f7e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1c:b4:3d:dc:7d:e8:c6:6d:09:3c:9b:ce:3c:
d1:05:26:17:bb:00:bb:cc:ae:06:ee:f2:33:37:78:
93:6e:7b:0b:43:85:ac:cc:25:98:26:d4:f1:0f:11:
e1:62:e8:c2:e3:57:08:aa:2f:a6:1c:71:06:1d:15:
98:ce:69:98:de:07:46:47:80:69:5d:b0:91:8f:77:
5a:6c:95:fc:58:ff:18:e7:95:01:0a:9a:6b:c1:ae:
a6:47:98:f0:91:96:3a:ec:75:9b:28:eb:5a:e8:c9:
8d:04:b5:42:8b:fd:14:e5:77:80:74:de:3b:59:c2:
7f:04:67:d6:34:4e:b9:61:69:98:fe:5b:6a:e7:87:
69:12:f5:95:ba:c0:8c:94:13:c3:da:c5:13:53:c8:
e7:b4:24:b0:70:ea:38:d3:82:dc:0c:94:1a:4e:66:
3b:bb:9d:a8:ed:04:16:14:87:bb:4e:00:f7:b2:a9:
b8:67:f7:a4:6d:78:8f:10:64:81:77:60:d7:d8:20:
dc:78:8c:3f:78:ff:db:ae:f2:04:34:77:55:a8:9e:
6a:2c:29:ea:f8:7f:f5:42:8b:99:fa:bd:10:15:07:
9d:82:6f:08:64:e8:12:88:65:c3:cd:30:92:98:3e:
ad:ec:59:76:21:d5:34:71:7b:68:4e:60:b7:d7:fe:
18:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:8D:38:71:8E:C3:FE:F8:1C:E3:32:19:13:27:E2:DA:A5:46:05:85
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e66052ca-e126-4012-89e8-6b0bb8292fb5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:7b:81:cf:a1:7c:0c:64:1c:78:f0:aa:ac:e7:a2:a0:e9:c6:
f0:30:6d:74:ba:52:a3:18:d6:fb:09:ce:c0:07:d8:5a:04:dd:
a3:d2:b1:72:21:fe:9c:b1:b4:2c:f0:59:8c:49:32:06:a2:e4:
85:ad:4d:88:c2:aa:39:5b:84:aa:f2:90:09:6c:60:ca:91:73:
22:86:b4:5f:95:54:23:e8:df:fb:26:3d:e5:4f:0d:0d:91:92:
92:1d:94:d0:96:c7:96:fd:5a:95:37:a7:99:d4:f2:4c:23:0f:
53:71:c8:9c:a8:1a:c4:94:3a:a3:1d:ed:0c:f1:8a:86:70:65:
0c:f1:72:5c:41:f3:cd:b7:3d:e2:6f:fe:78:12:c6:07:be:d2:
96:16:b8:a1:4f:5e:9b:3a:4b:5a:c4:e9:38:fa:59:1e:c1:0b:
84:4a:37:59:89:3e:e9:68:a7:ba:4a:c8:a8:e9:a8:f2:41:45:
15:27:f7:05:fe:37:58:52:ce:e1:eb:ab:ed:d0:3b:97:07:e7:
f7:7c:74:e3:39:c9:16:22:99:69:7a:7a:ce:e8:bb:cb:53:41:
16:2e:58:11:02:f3:6c:7f:44:55:0a:c1:3f:b8:16:8f:58:c8:
88:1d:cb:24:22:0f:d0:86:29:65:8d:64:18:15:9e:01:60:92:
c8:bf:4b:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:31 2024 by rpki-client on console-ams.rpki-client.org