Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01193fe8-8645-4741-981c-5a200080a8b3.roa
File: 01193fe8-8645-4741-981c-5a200080a8b3.roa (raw, json)
Hash identifier: qk63cvnj0RBt4u+zTLlacKPQ79k+uMHOeQBT+B0etts=
Subject key identifier: 23:54:51:8F:BD:74:FF:DA:90:25:38:9E:88:07:0B:74:6B:26:1F:23
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 230E80473864273279CA6037D7B900484E195972
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01193fe8-8645-4741-981c-5a200080a8b3.roa
Signing time: Sat 05 Aug 2023 00:00:00 +0000
ROA not before: Sat 05 Aug 2023 00:00:00 +0000
ROA not after: Sat 09 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:0e:80:47:38:64:27:32:79:ca:60:37:d7:b9:00:48:4e:19:59:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 5 00:00:00 2023 GMT
Not After : Sep 9 23:59:59 2023 GMT
Subject: serialNumber=45c4882c8360a09686d91d0db6822d9f21af8ce7255f9fcc9013f6b3773b2a55, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6e:9d:6d:8f:07:f6:e9:d3:99:51:7c:9b:0c:
6f:94:21:c2:3c:48:a2:82:49:a3:fc:6a:2b:d2:44:
00:b0:5c:2f:ca:1a:ab:cc:d7:99:52:d6:07:7d:e2:
c8:09:46:76:1a:98:6b:b2:2a:bb:46:fc:ce:bc:df:
fc:f6:1c:48:91:01:55:a5:7a:fe:f7:4d:88:39:d9:
70:30:f2:23:1f:5d:55:d9:11:58:c9:e2:20:ff:ca:
79:1e:3c:7e:af:a0:4f:0d:b1:67:3e:1e:09:5b:bf:
77:d0:35:28:b1:15:51:16:fb:c9:c2:27:d8:cc:f6:
7c:70:9b:15:61:fd:23:46:8c:e5:2a:4e:f9:4b:9e:
d2:d0:78:6a:59:bd:97:04:de:22:dc:d4:9c:f2:3f:
96:4a:33:44:1e:0b:9e:b5:46:4a:1c:ee:2c:9d:f6:
ff:cf:39:0f:e5:ac:16:56:98:c9:e7:e5:13:ad:17:
0b:be:ae:57:0b:63:bf:f6:7c:c4:5f:c0:c2:34:9b:
dc:b1:f7:bb:e2:55:9d:57:c9:df:b5:7b:26:29:fb:
91:55:d6:af:95:c7:7c:09:56:f1:82:e6:27:e6:1e:
69:fb:1e:29:0a:78:5d:b1:c1:d8:8b:1d:0f:86:db:
ff:f5:e1:f2:e9:36:c3:06:6f:34:ac:ba:f7:b3:eb:
26:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:54:51:8F:BD:74:FF:DA:90:25:38:9E:88:07:0B:74:6B:26:1F:23
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/01193fe8-8645-4741-981c-5a200080a8b3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:65:11:12:3d:25:bf:83:42:be:b9:db:f8:50:2e:fc:cb:fa:
7f:27:6d:8d:d9:61:54:fb:20:2a:fb:a5:2c:cd:bc:c1:0c:6e:
90:82:6b:df:ab:7b:9b:a7:1e:c9:8b:6c:57:04:6e:76:ce:7b:
09:43:8a:4e:cb:01:9d:3a:f6:ba:78:fa:d5:26:21:b1:6b:55:
85:0b:0d:a4:7f:f9:8b:4a:db:52:7b:ee:a0:b8:dd:76:f9:a0:
1e:75:d9:42:eb:5b:97:2c:93:eb:8b:5e:66:27:f6:1a:0e:a0:
f3:1e:a4:3a:29:fe:ce:cf:80:7b:12:84:90:0d:fa:f8:76:4b:
40:9f:2d:9f:29:3c:2b:1b:1f:b1:cd:ef:9a:26:ed:6f:cc:ce:
83:4d:26:11:c1:4b:bc:50:c3:7f:7e:79:d9:45:3c:20:88:5f:
72:51:a3:9c:a9:18:12:b4:69:36:6a:1b:19:62:8b:b1:f3:fc:
a6:8b:6d:e5:07:71:56:a5:ee:62:69:51:a1:ff:06:c1:88:da:
96:58:bd:38:98:90:f5:32:18:87:7e:2c:9e:14:b1:c8:8e:ea:
19:42:62:38:a2:79:7a:55:fe:5f:5c:18:6b:90:4c:74:17:f1:
52:8c:ac:6a:ba:40:6f:b6:c4:de:48:ed:d5:a3:bf:63:3b:03:
6b:31:35:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:45 2024 by rpki-client on console-ams.rpki-client.org