Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e698198d-d89a-48b3-8be3-54c55afed050.roa
File: e698198d-d89a-48b3-8be3-54c55afed050.roa (raw, json)
Hash identifier: 1tVuVjJw3Jg2Npt3NduUPfuTglVTCBk61Kp9iEGKOuc=
Subject key identifier: 21:C9:65:3D:D5:04:83:51:A3:C7:6F:3A:5B:A6:DA:9D:D1:D6:A6:F8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5553671D0A2059E65E97F44518C8B02E478A58DF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e698198d-d89a-48b3-8be3-54c55afed050.roa
Signing time: Tue 07 Nov 2023 00:00:00 +0000
ROA not before: Tue 07 Nov 2023 00:00:00 +0000
ROA not after: Tue 12 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:53:67:1d:0a:20:59:e6:5e:97:f4:45:18:c8:b0:2e:47:8a:58:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 7 00:00:00 2023 GMT
Not After : Dec 12 23:59:59 2023 GMT
Subject: serialNumber=5fb407386a241aa37a843ecf5c1910d973ef5ef6f7e9cec9716777f96e049546, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:01:5b:ee:57:ef:68:01:de:75:16:3b:35:8f:
87:e2:2c:7f:c3:57:01:e7:e1:19:4b:be:ea:83:d6:
29:69:03:ec:bf:49:87:5e:1b:39:72:e3:03:5a:f1:
eb:a5:89:a6:60:5a:53:ba:ca:f9:be:8c:7e:97:84:
b4:89:52:ea:d7:5d:a6:44:67:30:74:63:e9:9e:d8:
5b:07:33:42:ec:03:25:de:bc:ab:11:de:7e:9f:a9:
46:eb:9d:df:42:53:d5:97:2d:bd:d7:e0:f8:05:57:
52:d8:5d:17:57:d3:38:8d:3c:a6:64:9a:b5:aa:a9:
13:73:28:64:c0:28:5a:ca:7a:c4:d7:b3:99:00:42:
bf:3a:f6:b4:10:81:08:76:b1:01:cb:c5:3d:74:e9:
f4:55:c4:5c:fc:5b:69:42:9b:10:88:ad:e3:9c:29:
87:1c:a8:8b:e4:9f:33:b0:c8:ba:b8:57:17:25:cc:
3b:f8:60:10:54:2e:86:3a:3c:6b:71:fa:d3:71:e6:
90:2e:5c:0b:a4:a0:95:a0:38:fb:de:4c:31:83:54:
bd:9a:30:da:f2:77:30:bb:dc:0b:bd:6e:9e:84:0e:
eb:dd:63:cc:da:6f:97:46:19:24:ea:0d:71:51:ee:
94:c4:5e:18:2c:46:eb:b3:45:ba:64:95:31:a9:fb:
47:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:C9:65:3D:D5:04:83:51:A3:C7:6F:3A:5B:A6:DA:9D:D1:D6:A6:F8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e698198d-d89a-48b3-8be3-54c55afed050.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ad:dc:bb:29:b5:ad:ce:e1:0c:96:f7:8a:87:75:fe:d5:29:
8d:b1:25:5a:47:b7:de:69:8c:79:1f:46:c9:af:b1:50:a2:2b:
28:9e:6a:99:01:6f:c3:d6:2f:16:97:ee:32:1a:67:02:07:9e:
50:eb:7c:ca:22:85:e5:c4:49:04:94:b5:aa:3a:8e:a6:e8:45:
e7:40:9c:34:f8:36:c8:fd:2a:84:f1:82:3d:c3:e2:1d:94:c2:
02:bb:43:30:47:a9:a0:3f:f5:91:e9:9d:d5:ee:7d:5c:78:d6:
d3:af:b3:c4:26:58:12:b2:4b:00:ac:51:46:9f:8c:e2:ad:67:
a1:29:be:cd:39:a7:b2:a3:16:63:13:d2:40:76:8f:c7:55:5f:
58:cd:94:71:87:18:0a:10:ec:74:c1:b0:a7:09:75:7a:43:19:
71:03:95:52:ea:83:a2:98:4b:5f:ba:cb:ec:15:7e:d1:a3:28:
11:e4:8d:a2:4c:aa:0d:a9:be:22:63:c2:1e:08:ed:43:d6:a7:
91:ee:31:d7:13:08:f6:3a:34:eb:45:d5:83:9c:18:b8:11:82:
88:b4:c6:43:ae:c2:15:53:ef:d5:88:46:5c:fb:17:0a:f0:00:
c9:15:e9:8a:66:58:5a:24:17:2f:0d:b4:ca:30:1d:34:80:11:
6d:3a:36:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:48 2024 by rpki-client on console-fra.rpki-client.org