Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/04076aa9-f631-4901-a709-2d7be6135a5d.roa
File: 04076aa9-f631-4901-a709-2d7be6135a5d.roa (raw, json)
Hash identifier: LMXOAKfQD4yeijaJkHQOEyYkdM316sd0fz7JbT5kCGg=
Subject key identifier: FB:DC:C4:19:D4:E8:E1:2F:79:2A:6F:EF:E0:B7:73:F9:3E:21:0B:4A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 545CABC34C5C399784098905DBF64F6E7B285C26
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/04076aa9-f631-4901-a709-2d7be6135a5d.roa
Signing time: Wed 05 Jul 2023 00:00:00 +0000
ROA not before: Wed 05 Jul 2023 00:00:00 +0000
ROA not after: Wed 09 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:5c:ab:c3:4c:5c:39:97:84:09:89:05:db:f6:4f:6e:7b:28:5c:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 5 00:00:00 2023 GMT
Not After : Aug 9 23:59:59 2023 GMT
Subject: serialNumber=0f2795ee30ea4e4f8acb05e785faa314e6bd132d18cd3106768bd43cb66bf095, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f2:1a:b1:fd:f1:34:30:35:73:dc:0f:c0:be:
0a:82:6d:cc:64:2f:0a:2a:5e:cb:4b:b6:02:72:29:
c5:56:a9:ad:35:67:d0:3c:83:64:81:26:18:4d:01:
63:1f:d3:63:c6:26:3a:c7:59:2a:f3:a6:83:34:c7:
35:34:96:8f:a5:ca:ae:76:69:7a:15:6c:64:23:4e:
5d:d5:87:27:68:49:72:2b:b8:e1:38:3a:ac:c9:40:
8b:f0:09:58:d8:aa:64:81:f8:20:79:4e:f7:1c:42:
02:f7:b8:61:ed:d4:17:f1:77:01:08:e6:1e:32:fa:
51:ad:22:7e:47:21:64:2f:19:25:e4:a0:60:b7:b4:
35:64:20:89:32:3e:c2:1a:40:85:d7:90:b4:e5:6e:
74:51:84:ff:ea:d8:a2:aa:7d:e1:ec:a9:f6:f7:52:
78:3b:85:6b:89:c9:f3:89:ec:1a:dd:7a:2d:44:30:
12:9f:7f:d5:06:39:48:72:9f:cf:f5:a0:c3:20:cb:
e9:8a:22:66:14:29:f3:41:3b:7c:25:0c:8c:fe:5a:
38:c0:b3:96:b0:6e:ca:20:f4:8c:b0:13:f1:29:55:
64:fc:1f:7c:e2:a7:58:e4:31:ea:82:dc:4e:df:45:
1b:43:c2:d7:19:ff:97:91:73:01:ad:b7:1e:87:50:
ea:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DC:C4:19:D4:E8:E1:2F:79:2A:6F:EF:E0:B7:73:F9:3E:21:0B:4A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/04076aa9-f631-4901-a709-2d7be6135a5d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:11:98:cc:bc:6c:cb:55:d4:ec:6f:ed:be:2c:59:e7:d0:ae:
55:e0:68:e4:b0:ba:43:2b:74:40:ac:90:4c:de:5d:41:fb:4c:
59:3a:77:8b:c9:e9:8f:b6:05:a6:64:1f:b2:98:ad:6e:5d:bd:
26:ed:16:1d:5e:57:92:31:f8:9b:b5:f6:27:b8:6c:65:9a:9a:
59:d0:ff:3e:a5:74:4c:72:c4:29:de:95:40:c1:36:a6:59:36:
6d:8f:e1:77:d7:75:cf:e3:89:bb:70:7f:e5:f2:f6:4f:6e:d5:
e3:73:d9:b8:a5:c7:72:2d:bb:e8:88:62:2d:ed:52:c4:0f:c3:
e0:ff:95:02:3f:f6:6a:f4:e1:db:f0:4a:f6:21:d0:32:03:ac:
03:cb:f9:95:d3:80:9e:bd:86:c8:b3:de:11:e5:c7:45:10:ef:
2a:82:f9:8f:51:52:84:97:28:a7:79:5d:4b:a4:dd:78:86:61:
a9:0e:66:52:22:c3:3a:13:3d:14:9c:22:4b:9f:e5:b3:55:13:
41:de:22:83:fe:43:ca:b3:14:25:02:70:34:8c:35:ec:cc:5d:
66:25:62:c5:ea:9e:14:0c:59:1b:4a:1f:f0:03:ba:0f:1c:78:
3c:29:91:92:13:2b:9b:47:10:97:1d:c9:4a:ae:0d:3a:b7:cf:
43:1a:d4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:46 2024 by rpki-client on console-ams.rpki-client.org