Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/05a039a4-4010-42f5-bbf7-b3e8ab7eb0e2.roa
File: 05a039a4-4010-42f5-bbf7-b3e8ab7eb0e2.roa (raw, json)
Hash identifier: KJeYQKLO1MNFTOkosFV6QTwb7LWqN3Vow+6bLr8mKzA=
Subject key identifier: 6D:BD:C0:18:EB:C7:89:B4:4E:53:1A:1C:43:01:FA:88:1E:86:21:36
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 17AEC70F4803DC7131F7F7513009BB8D3B69C271
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/05a039a4-4010-42f5-bbf7-b3e8ab7eb0e2.roa
Signing time: Mon 07 Aug 2023 00:00:00 +0000
ROA not before: Mon 07 Aug 2023 00:00:00 +0000
ROA not after: Mon 11 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:ae:c7:0f:48:03:dc:71:31:f7:f7:51:30:09:bb:8d:3b:69:c2:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 7 00:00:00 2023 GMT
Not After : Sep 11 23:59:59 2023 GMT
Subject: serialNumber=912e7e0b82d99ff7dbaf280481acb61d94b7619fd37a0812ba748aa5a6f4c942, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6d:6b:11:a6:a5:4a:7e:d1:20:8a:03:bb:2f:
ea:85:4f:fa:91:64:a9:98:a6:7a:f3:58:70:da:d9:
e2:c5:08:2c:67:55:41:3b:51:fb:71:04:d0:7b:ff:
05:26:81:af:77:d6:65:02:59:8f:c0:13:c3:1e:8f:
9f:f7:6c:5a:31:6d:13:13:f4:18:bf:02:c8:16:30:
e6:72:4d:37:da:6e:bd:e4:59:d5:5c:8d:c8:17:45:
24:0f:c4:ac:75:c7:27:00:9c:d5:2f:b2:53:5c:65:
21:23:4c:c5:9d:00:7c:83:7c:e2:09:75:19:18:b5:
6d:d4:89:63:c3:fd:72:3c:4b:9b:14:27:94:81:90:
73:a1:f2:ff:ed:0b:72:af:b3:e8:82:41:d6:be:f8:
25:0d:ed:d8:d6:cc:f7:8c:d1:7b:68:8f:81:ce:54:
9a:3f:06:45:05:3e:23:9a:1d:e4:f3:1c:2d:c3:7b:
b2:8f:bd:5c:9f:e3:ac:40:b1:b0:d3:15:f3:cc:c7:
bb:85:9b:c8:36:e1:4d:cd:f7:3a:3c:88:7d:3f:c8:
41:33:43:38:33:c5:6d:19:0a:fc:d0:43:0b:da:e9:
4c:33:37:b1:21:da:11:d0:1e:48:8b:80:60:1a:14:
d9:3f:1b:59:6a:83:68:f7:27:99:d3:b3:16:69:07:
58:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:BD:C0:18:EB:C7:89:B4:4E:53:1A:1C:43:01:FA:88:1E:86:21:36
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/05a039a4-4010-42f5-bbf7-b3e8ab7eb0e2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
76:f2:fa:14:b6:53:ff:a2:7e:78:f9:1b:ea:c4:33:0d:28:95:
81:c8:f1:80:d5:e5:41:9b:a1:a8:3b:ea:73:46:81:a1:39:9e:
42:a6:77:8b:a6:46:b7:58:ea:f3:80:4a:6a:81:05:e0:c5:83:
c4:91:25:e5:e6:45:f4:6e:f4:f1:6d:d1:40:18:0e:31:8c:69:
1c:1b:c9:64:4c:f9:c4:67:ba:e6:10:f0:e1:72:69:65:db:3a:
f6:90:06:90:b4:c4:e4:3b:c7:f3:4f:2f:4a:da:18:8c:41:36:
af:c9:54:9e:8a:d5:94:d6:85:a4:f5:56:49:d3:79:47:52:56:
90:39:f6:0f:c0:df:2b:b8:a5:f9:bb:cc:50:f5:35:88:b5:31:
c5:4f:72:d8:0d:f3:05:ae:c1:7b:15:c7:a8:03:97:08:d5:c8:
88:35:24:4c:6a:e0:e5:a1:2e:a2:b9:6a:fa:a9:23:73:00:52:
de:5f:78:84:66:b3:65:2f:ef:b3:43:7d:85:8f:72:cf:9e:eb:
07:25:26:33:a9:e9:05:a8:49:92:bd:51:35:0f:a1:92:5e:fb:
ca:f8:3f:12:b6:9e:1e:ff:93:fa:bf:e3:1a:71:c1:6e:0c:d3:
b6:84:ff:e7:78:46:58:e1:23:24:6f:1b:05:58:70:2b:8d:b9:
bb:8e:b1:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:46 2024 by rpki-client on console-ams.rpki-client.org