Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ea675a5f-257b-474a-b584-676c56f98b7a.roa
File: ea675a5f-257b-474a-b584-676c56f98b7a.roa (raw, json)
Hash identifier: XHufqT44T+HK5EviOGaOPdWolEZQL8bvPT+WdEUMEWk=
Subject key identifier: 56:88:B3:5E:64:CB:2F:35:66:D7:32:CC:CC:54:F2:38:DD:B2:D8:C3
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 23D9AEBB4C4FEA1F10EEF8B027528C62B8932EBB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ea675a5f-257b-474a-b584-676c56f98b7a.roa
Signing time: Thu 03 Aug 2023 00:00:00 +0000
ROA not before: Thu 03 Aug 2023 00:00:00 +0000
ROA not after: Thu 07 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:d9:ae:bb:4c:4f:ea:1f:10:ee:f8:b0:27:52:8c:62:b8:93:2e:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 3 00:00:00 2023 GMT
Not After : Sep 7 23:59:59 2023 GMT
Subject: serialNumber=f791eca2573b8574e5dd5e37e2600b55db2ac7c21136ee74edde0274516c1696, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1e:11:1c:e2:e8:46:79:16:d7:f2:ce:f8:d4:
e6:23:90:89:82:da:75:93:3d:92:3c:8c:85:44:e2:
0f:62:d4:47:dc:43:07:04:14:7f:77:7e:86:1b:b3:
a4:dc:84:a4:bf:ca:a6:04:8d:4d:7e:28:8a:d3:09:
f9:3c:03:80:f3:e6:35:93:32:40:c1:7c:bc:d1:29:
de:06:c2:8d:e5:76:b9:92:e4:bc:8c:d2:fb:e2:6c:
97:84:73:28:dc:04:ec:03:cd:02:b8:6b:75:6b:49:
43:7c:d4:60:d8:36:09:19:32:8e:a0:4d:83:72:3b:
8b:73:eb:4f:3b:53:a0:13:ec:ae:07:32:0d:a2:f0:
e3:45:c7:38:24:a7:74:38:47:ec:11:48:81:d5:15:
c4:5f:b0:06:d7:4f:c4:5b:c1:c4:13:d8:5d:8c:82:
d7:dc:15:7c:07:1c:ef:1e:a2:62:f2:58:68:e0:1e:
3f:27:1d:cf:2e:6f:cf:be:6b:63:bd:0b:f2:ad:4f:
ff:06:d0:92:64:62:18:4c:da:a2:1e:48:c7:5d:c1:
dd:7b:c9:3b:be:48:ee:a7:94:92:01:9d:fb:16:86:
99:b1:c1:9a:9b:30:ca:1d:af:b2:7e:39:45:a7:57:
9c:b6:05:0b:74:c7:92:58:47:9e:2d:8f:a1:71:5b:
e4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:88:B3:5E:64:CB:2F:35:66:D7:32:CC:CC:54:F2:38:DD:B2:D8:C3
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ea675a5f-257b-474a-b584-676c56f98b7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
99:4b:6d:f6:ad:08:d7:81:f2:e1:83:65:a3:5a:e1:9c:ff:05:
6c:aa:29:7b:5c:7c:8f:fd:4a:e1:37:bb:96:43:e0:23:50:31:
b0:33:34:b7:f4:9d:48:03:6a:b8:a9:5a:48:6d:19:89:35:2a:
ae:f7:ff:4d:18:25:89:10:1b:d5:cc:df:90:80:01:8b:1a:63:
05:a0:ff:af:78:51:68:78:6a:6a:01:e7:f5:aa:29:be:70:8e:
61:4e:75:1a:2b:92:61:8f:19:38:55:74:9a:60:ae:c0:91:eb:
55:27:d9:81:a0:ba:51:4c:e1:37:a1:4a:2f:da:0b:a3:97:84:
b1:07:1c:c3:c6:5e:75:81:ef:d3:5b:d6:05:12:f6:ef:ba:85:
fd:5c:b3:9f:25:91:ea:f5:fa:68:b4:53:fa:8a:f9:a6:59:a7:
5a:4e:3f:9f:3d:8c:fb:81:18:b5:cd:b9:eb:9a:f6:0f:78:64:
e8:64:25:98:85:05:06:7e:40:25:43:b8:37:87:76:71:2e:17:
f6:d4:2b:d2:4c:6c:8d:0c:bd:d7:d1:52:27:8f:ce:b6:31:61:
21:c0:94:7d:d0:81:dc:b8:e8:22:20:fd:a3:44:cb:d6:f1:df:
41:86:52:28:67:39:82:b0:0a:ac:ea:1a:25:d1:d2:02:cd:90:
4a:29:39:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:32 2024 by rpki-client on console-ams.rpki-client.org