Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ebbdddbd-8672-4a46-ba58-5169687463e8.roa
File: ebbdddbd-8672-4a46-ba58-5169687463e8.roa (raw, json)
Hash identifier: wDDomrinKD7fY6dNHvZvokT9/uAvZ6wRFk04Ut+PxWQ=
Subject key identifier: F9:C1:CA:78:7D:2C:45:0E:DE:B5:B6:E8:F1:31:A1:CF:75:BA:57:37
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 23B5900B82C0B3772DC77D12F694FEBC1354499A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ebbdddbd-8672-4a46-ba58-5169687463e8.roa
Signing time: Sun 10 Dec 2023 00:00:00 +0000
ROA not before: Sun 10 Dec 2023 00:00:00 +0000
ROA not after: Sun 14 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:b5:90:0b:82:c0:b3:77:2d:c7:7d:12:f6:94:fe:bc:13:54:49:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 10 00:00:00 2023 GMT
Not After : Jan 14 23:59:59 2024 GMT
Subject: serialNumber=b88f99bdc4494207703d6e848b82c3b91ee90fccf294a6602a7fae5410864487, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c9:1e:fd:d8:5c:cc:e4:ce:eb:65:a3:42:bd:
f8:cf:01:a0:52:8a:5e:5c:ff:a8:38:eb:b2:0c:da:
10:3b:86:e3:3e:20:52:21:7f:b1:51:ba:6a:a4:a3:
af:99:93:54:fa:5a:37:7e:85:04:e2:89:f3:8b:f2:
76:54:f5:cb:2a:88:ea:fa:d6:ae:f2:c0:29:d3:8f:
19:4a:f9:49:c1:b4:84:dd:3e:83:d0:d7:e3:fc:7a:
bc:e6:26:72:bb:ec:02:e7:c0:e4:9d:24:7a:ac:9f:
64:51:2c:fe:9c:d4:38:9c:2d:b1:4f:62:76:5a:c1:
e6:af:67:5f:67:da:ee:13:cd:4d:9e:18:37:ad:a2:
fa:16:e1:17:e2:e2:c7:d7:e6:93:13:a9:5d:ca:06:
37:b0:a6:61:31:ae:2c:e4:16:81:3a:85:71:29:9a:
f3:f8:20:3f:34:86:8a:43:2f:6b:55:15:b2:1f:d8:
c1:d7:15:5f:ff:24:9d:e9:99:66:1c:fa:f0:fb:c3:
20:36:97:1c:8f:a6:03:9a:27:74:35:19:bc:4c:90:
9e:37:cc:41:a5:c6:d9:61:f6:38:fa:c7:fa:c5:87:
04:48:4b:12:96:0c:ea:3a:a7:d1:84:77:e8:79:a7:
31:95:ec:a2:71:46:81:88:5e:52:cd:91:89:95:ab:
99:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C1:CA:78:7D:2C:45:0E:DE:B5:B6:E8:F1:31:A1:CF:75:BA:57:37
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ebbdddbd-8672-4a46-ba58-5169687463e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:56:ce:f0:ec:09:eb:c8:e6:2e:3e:43:e4:f2:79:16:0f:f0:
41:4f:2b:f9:b3:49:13:ad:f6:48:49:0f:5c:ad:50:d0:a7:66:
a5:94:ca:1a:e4:08:6f:d3:40:2e:a5:07:10:a4:39:84:0e:24:
59:ae:c2:8e:2c:91:e4:c5:c1:70:66:ca:02:83:d5:15:09:fd:
d4:1a:56:ba:7e:40:a3:5b:8e:19:fc:02:18:94:0b:59:47:f7:
44:56:c2:3f:5b:b7:d3:85:b1:0d:13:7d:41:e8:3d:33:ad:11:
ed:b0:3e:11:55:54:1a:69:cc:71:ad:cf:eb:b7:22:3a:20:9f:
8f:e5:2b:be:8c:71:dd:4a:77:a8:eb:ef:12:b7:fd:54:bc:25:
a2:8a:f8:9d:e9:66:11:cd:a8:ab:58:fd:f8:55:79:bf:71:b1:
b8:0a:9a:04:31:75:72:72:d0:ed:1a:25:8d:97:0f:72:99:62:
9e:0f:8d:8b:5c:6e:c1:2f:b3:fe:99:6b:55:ac:9f:d0:2f:0b:
2f:3a:35:1b:50:e3:11:28:39:c9:b9:ab:ee:88:6b:5f:7d:10:
4e:3a:e8:d5:f5:59:03:2a:78:91:89:7d:4f:ef:f8:2a:57:c4:
59:d1:43:ed:ad:4d:f4:a1:ac:7b:26:55:72:bb:f1:b1:be:30:
91:31:39:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:32 2024 by rpki-client on console-ams.rpki-client.org