Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fc2cd9bc-7bd1-4115-a0ec-1869e938f4a6.roa
File: fc2cd9bc-7bd1-4115-a0ec-1869e938f4a6.roa (raw, json)
Hash identifier: nblsDa34Uch9FIX9POfKGI6/JKKrpuXILO1c93P0jMM=
Subject key identifier: 9F:64:D8:5F:5A:63:BC:77:40:FA:37:F3:EF:5A:28:21:6E:D4:6E:4F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 35CCC5AD818FCC5E805801325550354A1C71F09E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fc2cd9bc-7bd1-4115-a0ec-1869e938f4a6.roa
Signing time: Thu 23 Nov 2023 00:00:00 +0000
ROA not before: Thu 23 Nov 2023 00:00:00 +0000
ROA not after: Thu 28 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:cc:c5:ad:81:8f:cc:5e:80:58:01:32:55:50:35:4a:1c:71:f0:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 23 00:00:00 2023 GMT
Not After : Dec 28 23:59:59 2023 GMT
Subject: serialNumber=d966788a5e46633a144ca28ecc4801662f1a2432e17be606e334f49158e6da05, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f5:bd:18:e3:f3:c0:be:56:14:33:a5:fd:50:
a7:8e:16:78:95:97:5d:81:9e:73:7a:bd:88:91:d3:
e0:32:6a:58:77:4f:a2:1a:9c:eb:ff:7d:1b:47:89:
6b:50:ee:fa:8f:39:df:ed:c8:d3:ca:15:f0:56:36:
c0:11:fb:c4:65:f7:d5:18:bc:8b:51:fd:47:da:58:
98:ca:55:d3:8b:07:67:8b:b4:8d:49:1b:1b:ba:e4:
bb:c6:6a:d1:ff:94:c1:cc:34:00:93:14:a6:c7:ea:
82:d9:76:35:77:8f:03:a0:5e:d3:85:bb:f7:dd:15:
70:ba:41:f1:02:9a:3d:e8:a4:84:1c:7d:8c:49:10:
dc:92:ea:65:f6:a5:52:94:0d:b5:4b:b1:62:17:f5:
0d:c5:4e:db:f6:d5:77:92:03:24:c2:2c:d9:87:93:
8a:47:ac:3e:a5:ea:06:49:b7:65:42:33:7f:3d:21:
d4:10:f9:6f:34:52:e6:09:8c:75:00:85:c3:9b:01:
19:87:91:63:60:63:a6:2f:55:62:81:1d:f0:2e:d0:
85:25:f6:9d:2e:be:ee:b0:bb:15:4b:c0:0e:db:aa:
16:06:42:ac:4c:42:53:1d:6d:de:54:ce:68:ba:43:
31:59:33:d1:68:7e:0d:9f:04:28:ae:89:81:3a:a8:
15:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:64:D8:5F:5A:63:BC:77:40:FA:37:F3:EF:5A:28:21:6E:D4:6E:4F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fc2cd9bc-7bd1-4115-a0ec-1869e938f4a6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:d5:ec:41:d0:56:2b:42:26:dc:59:f2:a4:7b:2c:28:90:f2:
b8:3c:a4:26:dc:b7:c9:23:dc:9a:28:db:e6:99:3e:8c:a1:4e:
2a:09:ad:23:19:9e:ce:ef:79:bf:d5:5c:33:f7:71:54:a0:d7:
4a:02:40:2c:d6:5e:0a:cb:5d:81:74:05:1a:1b:e9:2d:37:6d:
33:c4:53:7b:10:38:ce:af:be:0c:a8:9c:66:07:45:76:fb:a2:
32:14:97:c7:05:bb:26:27:26:cc:f5:ad:fa:10:6b:00:bd:f8:
1a:77:01:75:aa:ea:2c:ca:e0:d3:64:32:9b:1f:69:03:c5:b2:
28:e1:c8:56:b2:27:af:62:c9:d7:3c:84:fe:e3:18:77:ab:86:
4d:44:85:1d:2d:63:d1:70:8a:c6:b2:67:55:7d:4f:51:52:6f:
b1:be:8b:3a:45:ed:d7:ea:b6:0c:62:00:3c:a8:b5:c1:23:a6:
fc:85:a0:b8:7a:fd:af:70:91:d1:a0:12:9d:8b:8f:1b:c8:38:
cd:01:a5:67:9b:09:74:65:60:83:f3:1e:64:44:bc:b7:6e:02:
b9:6b:a3:b4:49:b8:fd:a1:5d:67:ad:d3:6f:6b:02:90:61:c2:
bc:80:a0:41:7d:ad:8d:68:b9:7e:ac:52:6b:d9:63:1b:2d:83:
6d:ac:32:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:51 2024 by rpki-client on console-fra.rpki-client.org