Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f0674f4d-1853-4f5e-bdd1-4bee328c4726.roa
File: f0674f4d-1853-4f5e-bdd1-4bee328c4726.roa (raw, json)
Hash identifier: Z4jVlbwrlQbbKq7htWV2YArt3NYtF63zOJcMQ6QclhE=
Subject key identifier: C2:95:29:00:C4:71:79:86:8C:59:33:AC:09:4D:AF:D0:90:33:C8:F7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 32FC80235476CE10F5FD564094F5079570CC2AF7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f0674f4d-1853-4f5e-bdd1-4bee328c4726.roa
Signing time: Mon 09 Oct 2023 00:00:00 +0000
ROA not before: Mon 09 Oct 2023 00:00:00 +0000
ROA not after: Mon 13 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:fc:80:23:54:76:ce:10:f5:fd:56:40:94:f5:07:95:70:cc:2a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 9 00:00:00 2023 GMT
Not After : Nov 13 23:59:59 2023 GMT
Subject: serialNumber=53f06e11f2d456ec56af580790ef615cc0d7521b07b0143f4ebdc938d70a26ea, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0b:97:d6:52:2b:01:89:59:c1:48:4e:2e:36:
7b:03:70:51:7a:a6:1b:98:dc:e1:66:e5:89:61:4e:
29:4e:dd:07:50:58:2c:58:e0:b9:a5:6f:af:b1:72:
82:fc:e2:03:9c:d2:c3:77:8a:29:52:1c:24:60:6a:
bb:3e:4f:35:33:d1:1a:0a:b3:90:03:b4:d7:88:44:
62:fc:e0:0e:54:46:af:ca:f0:57:c4:80:97:e2:42:
c8:4f:4c:e3:ee:51:27:91:95:1c:1d:63:59:4a:41:
5c:32:02:de:8a:d5:42:c5:39:be:46:0c:d5:6f:5a:
6d:32:76:58:ea:2d:ca:09:1f:86:c4:2c:c6:d4:7a:
e4:69:b8:62:ff:a2:c8:d7:b1:02:a8:75:5a:e7:b1:
e7:b6:a6:19:dd:f0:ce:db:dc:b3:24:fe:b2:52:28:
b6:b1:1f:40:ed:e5:b1:61:22:6e:0f:55:23:c6:59:
88:da:61:01:a9:02:7c:65:74:7d:00:89:12:63:ea:
ee:d6:96:8f:aa:f7:02:70:be:5b:a2:ce:83:a7:b4:
1c:a7:8d:8b:8f:84:5f:d1:b2:af:2c:85:31:09:df:
8c:07:ee:e0:1b:d4:7c:a1:f7:40:d1:3f:68:23:a3:
8b:57:60:7a:bb:93:23:ee:3a:30:29:2d:4d:40:21:
a0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:95:29:00:C4:71:79:86:8C:59:33:AC:09:4D:AF:D0:90:33:C8:F7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f0674f4d-1853-4f5e-bdd1-4bee328c4726.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:13:94:ec:73:b8:17:8f:5c:71:97:94:22:bb:54:30:12:61:
92:71:63:4c:57:38:79:29:a5:b3:e2:d8:bf:34:42:7e:78:a8:
ea:ab:71:d9:6a:1c:62:fe:5b:80:a5:1a:4b:10:77:66:34:fe:
ea:55:8d:79:8d:b1:3c:9a:ce:95:a7:90:0a:80:6f:72:28:0d:
8c:ee:48:c6:6e:1b:0b:9d:d3:9a:ad:47:b9:78:53:6a:a8:df:
fc:60:cb:3e:5c:7b:7f:80:d7:13:7c:10:32:8b:32:31:ba:4c:
52:2b:47:2d:4d:33:f6:11:9f:93:1c:1d:07:19:b2:fb:ba:f9:
7c:46:17:2c:dc:d9:84:5d:ec:fd:53:6f:85:eb:52:ae:8e:17:
46:b2:b2:64:bf:c8:c2:38:76:b1:08:58:d1:b6:43:c9:2d:f2:
89:d2:36:fc:63:1a:3e:17:d6:b6:9c:79:79:ad:df:06:7c:e3:
0a:ad:c3:48:55:a3:8a:82:5a:0f:8e:5f:59:48:fe:75:fc:28:
e7:22:06:d9:3d:ee:ff:9a:2b:42:22:a2:77:a0:bf:38:15:f5:
34:92:68:09:78:6d:bf:8d:c7:4e:2d:68:61:c0:c5:fb:65:7a:
26:2a:a3:75:65:ee:ce:55:17:4e:cf:80:b6:23:35:02:73:01:
e6:23:d4:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:34 2024 by rpki-client on console-ams.rpki-client.org