Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/03d9e07c-4296-4e30-9deb-8886e09ce868.roa
File: 03d9e07c-4296-4e30-9deb-8886e09ce868.roa (raw, json)
Hash identifier: OCHqIN60rKsIOUHvBdKoQ8G/jcfwiOngL5CO3uJYFhU=
Subject key identifier: 38:07:EF:AD:78:43:15:9C:21:39:4A:3D:02:07:5C:4F:23:8B:A0:C5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3D0F7115A59558783104A3555A7B743A079B40E3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/03d9e07c-4296-4e30-9deb-8886e09ce868.roa
Signing time: Tue 19 Dec 2023 00:00:00 +0000
ROA not before: Tue 19 Dec 2023 00:00:00 +0000
ROA not after: Tue 23 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:0f:71:15:a5:95:58:78:31:04:a3:55:5a:7b:74:3a:07:9b:40:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 19 00:00:00 2023 GMT
Not After : Jan 23 23:59:59 2024 GMT
Subject: serialNumber=fca0812fed890357e365ab1dd02a546064796458e32b1f1caa53ee47163b0d48, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:51:55:41:01:7f:8d:46:55:b6:ac:e9:f8:a4:
bf:1f:82:7d:a4:3d:d8:3c:d1:0e:68:5e:74:aa:61:
a3:7d:aa:3b:78:04:2e:df:8d:b2:8d:d3:76:76:11:
97:41:2a:93:1a:d1:df:95:72:25:db:a4:e8:4d:d3:
37:9d:12:63:5c:a5:68:73:ba:1f:d9:06:e0:a2:e3:
5f:d6:8c:7e:6f:fb:26:54:fe:09:38:90:64:20:b5:
ef:a6:b5:1b:89:0d:a7:16:54:1a:62:e5:fb:bd:c3:
5a:41:dd:be:8c:72:d9:d6:48:f7:3d:16:d5:93:65:
c4:ae:53:d8:0a:ef:8a:a9:cc:6e:a5:74:38:3c:ce:
59:10:14:de:01:d7:db:cf:ca:a6:16:f6:c9:fd:87:
eb:03:b4:7d:b5:8f:f2:10:f4:a0:c3:eb:12:65:a4:
a6:47:67:ec:33:7a:5a:91:3b:ff:6d:24:8b:1b:0f:
2e:3e:01:41:8b:9f:bd:4f:10:fd:03:b3:3a:1c:c5:
c7:22:0f:02:d7:44:57:2a:d1:2c:8b:25:fe:e6:a8:
39:8d:68:3e:e5:5e:a9:dc:22:78:5b:25:8e:c8:79:
ca:b8:1c:67:4f:5a:29:3b:0b:18:5f:26:25:73:f8:
80:92:aa:6b:d4:a8:a3:a9:54:6e:93:3f:ce:cf:4a:
33:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:07:EF:AD:78:43:15:9C:21:39:4A:3D:02:07:5C:4F:23:8B:A0:C5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/03d9e07c-4296-4e30-9deb-8886e09ce868.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:ad:a8:1b:4a:ba:10:ee:f8:a2:81:fc:ac:a3:6d:7d:da:2d:
51:d2:a9:48:2d:c8:f0:b8:ab:ad:8e:fe:31:cc:6a:3a:5b:97:
b6:d3:0f:56:f3:47:55:da:6c:7d:1d:ad:3c:c5:de:e1:9f:7c:
fd:04:c9:13:6b:da:85:2c:44:4e:f4:23:97:1b:94:87:3f:7d:
c7:7d:f8:59:9b:9f:9d:46:e6:79:cb:44:ea:d1:ec:76:43:21:
53:0a:73:6c:b7:51:02:2c:3a:df:64:f2:2c:34:89:c1:e3:27:
83:19:8d:68:85:00:d3:00:a2:e2:66:4c:54:34:46:49:09:6f:
d6:63:4f:dc:86:13:06:6d:9e:f8:e9:93:9d:c1:21:a7:17:b5:
82:3d:37:79:5a:10:3e:0a:0a:22:d3:c2:cf:65:21:95:f1:99:
50:cc:25:e5:8f:14:ca:db:e0:d3:d8:d9:56:d8:fe:88:ac:da:
d9:be:9a:14:fc:b5:e3:f5:56:01:50:7e:9e:63:8a:88:32:ee:
00:75:c9:f3:3a:87:8f:a5:e7:fa:ea:74:f2:4f:1a:5a:1a:3b:
26:8c:20:8c:3a:e7:25:3f:19:9c:e9:43:a7:d4:ad:a0:80:13:
ca:62:8b:7d:ac:91:71:8d:c0:64:c4:9a:ac:e0:86:8b:e5:24:
cb:83:2d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:46 2024 by rpki-client on console-ams.rpki-client.org