Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eef2a357-da70-4873-85c1-167a24c0f10e.roa
File: eef2a357-da70-4873-85c1-167a24c0f10e.roa (raw, json)
Hash identifier: JxRs9iKUp5/l7OUC1VoBr0pXUmMdvMMyRBc0yhyG260=
Subject key identifier: 6D:49:46:1A:9D:45:AA:67:9F:61:43:32:0A:35:53:8B:82:CD:F2:20
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6C3182B17088C2C604FC56728E4973CDA05E17D8
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eef2a357-da70-4873-85c1-167a24c0f10e.roa
Signing time: Thu 03 Aug 2023 00:00:00 +0000
ROA not before: Thu 03 Aug 2023 00:00:00 +0000
ROA not after: Thu 07 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:31:82:b1:70:88:c2:c6:04:fc:56:72:8e:49:73:cd:a0:5e:17:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 3 00:00:00 2023 GMT
Not After : Sep 7 23:59:59 2023 GMT
Subject: serialNumber=037c0821ce9ab15b327c05fe6fcdf9be8ec676610b312a30e414d8632b5f8d0a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:52:9a:2e:cf:fb:85:29:91:80:8e:40:64:0e:
ee:e4:33:46:4c:4d:b3:26:87:40:ae:d7:e8:5e:2e:
04:3f:bd:c0:74:ca:d8:1b:91:a3:03:70:a1:6a:0e:
7d:45:c0:e8:60:ec:99:b5:77:e1:3a:45:eb:9d:1b:
ed:fd:d1:9b:d2:9d:9d:57:bd:a3:0a:7e:64:8a:e6:
27:02:4e:c1:c3:18:83:a4:d1:19:83:3d:b7:5f:91:
01:e6:91:ae:8f:84:43:95:f1:15:97:02:5f:ca:2b:
6a:73:56:b1:6a:e9:f1:76:6d:62:49:85:05:d0:3a:
5e:c3:50:ae:b2:47:75:9e:92:ad:96:e3:c6:ab:ce:
6e:05:39:39:28:be:b4:07:c3:25:cc:ff:a4:5f:77:
aa:02:b4:86:e8:22:1a:e3:d1:dd:da:92:b2:92:5e:
0e:31:1d:a1:ef:28:d0:c8:aa:9c:61:65:cd:6f:d4:
2a:40:04:65:3d:5e:5a:41:5f:91:be:3f:3c:51:58:
5f:e8:2f:f7:65:ba:29:87:7d:6a:07:3a:88:79:68:
d2:98:94:b5:50:34:6b:24:9e:6e:29:c1:c4:d3:17:
45:3a:11:60:38:da:22:2a:5f:21:7b:32:57:94:cc:
c5:fc:97:8a:0b:00:3f:e0:10:f2:66:ff:4f:d4:d6:
81:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:49:46:1A:9D:45:AA:67:9F:61:43:32:0A:35:53:8B:82:CD:F2:20
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eef2a357-da70-4873-85c1-167a24c0f10e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
31:95:93:b8:9d:df:93:cc:e7:07:c9:4e:0a:da:dd:ec:2f:01:
01:31:55:db:e6:ab:99:d1:b8:9f:c4:ad:8a:d7:57:80:bc:fa:
e9:74:85:de:6c:41:e3:8e:a8:77:a0:d8:ea:09:f9:9b:0a:cf:
7b:d6:8e:65:cb:bf:38:24:f0:af:2c:03:81:2c:39:99:17:10:
f1:f3:d3:69:c7:1f:ac:3e:b1:c2:48:7c:6a:70:45:22:98:e9:
8b:08:fc:88:aa:13:d7:96:a6:43:e0:62:ec:dd:03:f8:76:3b:
ce:f2:48:ce:ce:0b:1a:2c:64:5a:65:3d:08:5e:51:d3:5d:9c:
a6:50:81:f5:dc:c9:97:63:72:ae:8c:9f:d7:98:17:88:84:9b:
3b:ec:b2:8f:94:ae:2d:ba:86:5f:ac:2f:75:7a:08:0a:dc:d3:
67:3c:6b:62:01:62:92:15:f1:72:8a:35:37:92:b8:6e:a9:5c:
3b:39:b6:5c:5d:25:d6:f2:6e:45:98:b0:5a:47:cc:1d:be:d3:
f1:2f:c2:e2:c9:ce:60:32:92:63:22:98:b5:4e:51:f2:64:cc:
e6:54:9a:5f:58:12:f6:16:04:e4:b4:9d:1e:70:ef:c6:8b:b7:
78:40:eb:6b:93:27:cb:69:db:94:07:ee:3e:8b:2a:4c:64:3f:
dd:1b:c6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:34 2024 by rpki-client on console-ams.rpki-client.org