Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/036fd6a6-6ddf-4451-b91d-c07923a32087.roa
File: 036fd6a6-6ddf-4451-b91d-c07923a32087.roa (raw, json)
Hash identifier: j0es+3mSggSc3MKXX/dcNt2yBxpo4/mWb7x3KI/IvOQ=
Subject key identifier: 43:C2:62:F6:9D:26:39:8B:06:03:D3:F6:0F:0C:41:4B:5C:1E:69:DB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 37502F7B0F897A36F2DD94715D85E59EB74CF831
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/036fd6a6-6ddf-4451-b91d-c07923a32087.roa
Signing time: Tue 05 Sep 2023 00:00:00 +0000
ROA not before: Tue 05 Sep 2023 00:00:00 +0000
ROA not after: Tue 10 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:50:2f:7b:0f:89:7a:36:f2:dd:94:71:5d:85:e5:9e:b7:4c:f8:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 5 00:00:00 2023 GMT
Not After : Oct 10 23:59:59 2023 GMT
Subject: serialNumber=dd8b717f2cd8cd19c9d5fbd243961f25496f881a320e545956599a561a0f87b1, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b6:ca:16:b4:bb:b9:fe:d0:07:1f:34:f2:89:
40:fd:51:9c:1f:ff:ba:37:f6:3a:76:5f:70:d5:f7:
26:29:57:ed:4a:e7:91:7c:53:5e:39:72:eb:c8:54:
98:be:7c:bc:ed:e3:1e:64:09:e8:f9:02:43:b3:10:
8a:6b:a1:f1:82:c3:dd:8b:55:3a:72:77:76:71:55:
0c:c3:76:72:a2:32:24:bb:bb:b5:5e:24:ad:2c:03:
b2:8f:53:96:07:91:61:59:19:75:78:6f:89:b0:0b:
8d:f9:7d:ad:b0:6a:12:ac:63:8b:99:3a:f1:28:6a:
46:e4:66:21:96:22:0d:88:8d:58:7e:ad:08:2f:98:
bb:7b:2d:ed:d5:00:ec:19:0d:cf:f2:9e:bd:cc:dc:
fa:a6:55:d3:19:0a:f8:34:3b:a7:92:83:f5:aa:97:
1a:e2:ee:bf:57:91:a5:95:bc:fe:7d:01:3c:f5:a7:
5c:4f:63:f2:49:80:0b:f8:3e:12:ae:94:9a:34:16:
05:d3:26:ec:34:29:d8:a9:dd:41:93:14:bd:74:a0:
b8:6d:30:68:a1:8d:92:56:0f:19:7b:f1:05:8f:4d:
2e:e9:41:0d:ce:00:db:60:62:ff:97:e7:58:7a:ff:
17:33:f0:d6:61:27:00:25:23:d3:2d:55:7b:b8:1a:
51:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C2:62:F6:9D:26:39:8B:06:03:D3:F6:0F:0C:41:4B:5C:1E:69:DB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/036fd6a6-6ddf-4451-b91d-c07923a32087.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:a0:3d:1c:a5:7c:c9:ee:ab:a1:5e:2d:8f:d0:e0:9e:7a:54:
d7:5a:d4:b4:7f:cd:73:df:b4:36:d7:a8:42:d9:3e:bd:da:d3:
2d:b4:3c:68:fc:18:f5:7a:42:22:8f:63:5c:ca:9b:04:5a:fa:
91:2e:22:6c:1f:79:0d:75:0e:21:4d:0f:ca:e9:03:75:27:57:
ad:d5:72:c7:c1:ab:e1:9a:60:a5:5d:f6:f1:30:df:66:73:20:
de:2f:db:3c:df:f5:31:96:4e:42:20:41:91:ad:c0:b8:3f:2c:
ea:b0:cd:ac:91:c4:e1:ab:00:ef:bb:59:a6:06:9d:48:8f:3b:
a4:51:74:bf:a0:75:af:41:e1:3d:48:09:e7:53:c6:b7:30:9c:
f8:9d:00:77:ac:4f:d1:e2:7d:38:c5:66:87:02:8f:b2:a2:da:
8f:4c:e0:11:72:89:04:f2:e2:77:93:58:1b:35:8c:4b:53:b5:
e8:ea:a8:38:60:b0:37:a8:f5:ce:8e:78:4a:7c:50:58:b4:95:
db:6d:3b:1e:a4:81:fe:a9:17:83:2f:f7:27:ab:ea:92:fd:bb:
0e:c7:93:97:c5:f8:61:8b:d3:ba:0e:92:50:95:a4:f5:a8:0b:
4a:15:50:0e:84:df:86:3a:4f:ab:58:a4:45:7f:49:ed:17:8a:
7b:c7:49:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:10 2024 by rpki-client on console-fra.rpki-client.org