Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f227d414-157b-4eef-833b-3333f54a35e3.roa
File: f227d414-157b-4eef-833b-3333f54a35e3.roa (raw, json)
Hash identifier: z7IXp1htf/hZRGFPrRE6l8ONcIrLGY0DCiDHQNRKfC8=
Subject key identifier: 31:4C:8C:7A:52:CB:34:2D:CD:A4:65:A0:99:EC:16:4E:0D:3D:9E:24
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 414B0F83FA627B3D4096F2D5DD7614ACE5FDAE5C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f227d414-157b-4eef-833b-3333f54a35e3.roa
Signing time: Fri 05 Apr 2024 00:00:00 +0000
ROA not before: Fri 05 Apr 2024 00:00:00 +0000
ROA not after: Fri 10 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:4b:0f:83:fa:62:7b:3d:40:96:f2:d5:dd:76:14:ac:e5:fd:ae:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 5 00:00:00 2024 GMT
Not After : May 10 23:59:59 2024 GMT
Subject: serialNumber=f1d13c3018638bf278a1b0aed89f2966457f351de6b9f71151f02e73c28f70c0, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e8:97:1a:b1:25:91:9e:59:64:e0:0a:1f:a1:
1b:60:7a:cb:6e:21:e9:30:90:4a:79:18:5b:7c:e0:
09:03:88:68:89:c3:71:b2:c2:60:76:8d:ec:d2:31:
de:67:61:05:90:82:8c:54:02:90:57:f2:d2:2a:fc:
7f:b5:74:65:ce:7f:60:df:6f:4d:c6:4b:41:71:a5:
4a:1a:c4:17:07:5c:73:49:fb:62:0a:e6:ed:df:59:
b7:e0:35:6b:0d:d2:07:8d:da:b1:2b:1f:89:4a:66:
8f:68:09:51:a6:82:0b:ff:7d:13:50:85:8b:42:3d:
c0:0e:78:95:f5:0b:01:7f:0b:32:8a:1f:fd:7b:64:
8e:57:b8:c0:de:85:da:e3:88:6e:d0:83:8b:06:c3:
0e:88:f1:2e:a3:6d:4c:be:b3:97:e1:3f:ee:7c:a3:
b7:94:37:61:2b:cc:e5:08:7e:5b:b8:80:78:d1:8f:
1d:45:da:84:eb:2b:bf:6f:d3:f9:16:64:7e:17:bd:
f3:7a:6d:2d:31:7d:df:3a:4e:74:64:17:7b:af:65:
7f:dd:e2:7d:88:df:8b:66:ab:20:06:ef:d1:75:45:
cb:6d:e6:72:42:e3:8f:07:42:49:0e:ba:3a:59:32:
74:ac:03:87:55:cf:40:05:45:04:19:70:db:ae:23:
75:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4C:8C:7A:52:CB:34:2D:CD:A4:65:A0:99:EC:16:4E:0D:3D:9E:24
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f227d414-157b-4eef-833b-3333f54a35e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
63:28:17:d9:d5:7f:ea:db:95:ff:57:21:d0:34:1d:e7:1d:b4:
7f:47:df:e7:33:27:29:a3:e5:2e:87:24:39:89:d9:90:e5:3b:
0e:37:ed:a8:df:9f:bb:c8:27:55:10:c6:90:b5:39:34:d0:78:
c0:3c:6e:3c:42:15:8f:5a:d9:38:c6:9e:cb:53:a9:30:74:21:
dd:c1:d4:1b:ed:7f:45:3f:01:e3:44:81:91:28:22:8a:a2:9a:
41:15:df:40:bd:23:7f:48:0a:a7:9d:d7:5b:42:72:a8:14:11:
74:d8:75:ad:c3:98:bc:ab:e0:69:17:8a:b8:41:bc:ca:fa:49:
64:28:de:47:a2:9a:b8:54:2c:7b:93:25:c0:8b:c0:7e:6e:5d:
dc:82:36:c4:6d:66:d0:c7:07:34:10:25:ca:b9:50:68:89:85:
dd:ce:07:ec:b6:1b:69:99:5e:94:64:e0:bd:8c:76:38:0e:75:
99:52:77:dd:39:83:e4:d3:b0:92:63:17:43:4b:da:e5:e9:1c:
4c:0d:13:b3:7e:79:e9:ef:88:ed:74:99:d4:a0:75:fe:9c:a6:
f7:58:eb:74:6a:e9:da:83:dd:cd:ce:d2:c6:ef:20:73:d9:d3:
c1:53:d9:06:35:27:b5:b7:db:66:98:c9:d9:6d:47:bc:7a:3a:
d9:37:c5:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:35 2024 by rpki-client on console-ams.rpki-client.org