Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0950c578-4f8e-4f77-ac19-4885336b2c2b.roa
File: 0950c578-4f8e-4f77-ac19-4885336b2c2b.roa (raw, json)
Hash identifier: hsP/b4yzMDDdgG6Wq58sKKcvofK7/LHy2YUsuhE8iAw=
Subject key identifier: A1:E3:C0:49:DD:06:05:D0:58:7F:9A:0B:86:91:82:B8:68:6E:5C:EC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6C008244A693847A8582ABBF9990F1CD653CE2E0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0950c578-4f8e-4f77-ac19-4885336b2c2b.roa
Signing time: Sun 03 Sep 2023 00:00:00 +0000
ROA not before: Sun 03 Sep 2023 00:00:00 +0000
ROA not after: Sun 08 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:00:82:44:a6:93:84:7a:85:82:ab:bf:99:90:f1:cd:65:3c:e2:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 3 00:00:00 2023 GMT
Not After : Oct 8 23:59:59 2023 GMT
Subject: serialNumber=821c677c85f2140843885f5ded5a9386f0ff3be55f36f13cfabe4eb27d4ac526, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b8:57:38:58:fc:8a:0e:ad:d5:c1:69:30:2b:
e0:2c:94:89:47:aa:bd:0f:b3:f9:86:da:85:65:81:
2b:c7:e7:c3:e7:b9:73:fa:66:fb:cf:08:df:b5:bf:
5d:ac:9a:45:9e:bc:97:a2:02:d7:0d:b6:24:77:6a:
a1:4b:ff:aa:7a:41:a2:0b:a5:89:b7:4b:0c:85:9c:
4b:e0:95:96:98:3a:ad:5b:5c:33:29:df:91:fc:62:
db:84:b1:60:bb:b3:cc:8a:a8:79:8c:b7:08:08:bd:
75:d9:64:92:de:14:43:0e:6f:c4:4e:16:bd:34:d8:
c8:5f:08:1a:03:5f:6d:e5:09:b6:ec:01:66:b1:70:
4e:3f:36:78:8c:a8:be:9a:46:23:78:7b:60:f2:94:
2d:0b:9b:69:de:f0:ac:47:5f:5e:58:a1:f0:38:62:
d8:75:15:32:21:1d:2a:95:b4:94:f3:de:57:1e:a0:
3b:9f:3a:ad:33:6f:cb:b2:79:0d:67:45:89:02:16:
9f:a5:e8:21:2e:bb:8d:82:83:0c:b5:3d:65:eb:1c:
8a:1d:3e:87:b8:0c:a5:0e:08:dd:2b:5b:cd:79:9e:
f5:81:73:80:ae:39:dc:15:b5:02:08:08:a4:c6:73:
a5:3f:7f:30:ff:d3:fa:b2:b4:65:12:49:3b:18:3e:
8a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E3:C0:49:DD:06:05:D0:58:7F:9A:0B:86:91:82:B8:68:6E:5C:EC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0950c578-4f8e-4f77-ac19-4885336b2c2b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:46:2c:0e:0c:c1:b4:1d:71:9d:b8:4d:c3:fc:1e:2d:4d:3b:
44:a5:ce:ac:1b:62:0c:04:b5:d2:d2:2e:df:f0:d9:54:eb:18:
48:e2:dc:36:44:58:9e:59:68:32:bc:42:f3:36:d0:c9:5d:22:
15:6b:0f:36:d3:75:af:7f:30:34:81:c1:e3:b8:fc:68:54:14:
fd:9b:b5:1e:f0:1c:f1:44:9d:2d:0b:25:9f:30:99:bf:89:a9:
df:4c:ca:5f:fc:51:5b:53:e1:86:f6:a3:78:b9:d3:ce:d5:7e:
3f:14:bd:a4:33:6e:24:00:64:69:fe:9b:ee:9d:36:10:8b:bb:
8d:6d:19:87:61:f5:5e:86:d3:ce:88:db:41:e5:35:1c:7f:ed:
7b:0a:60:a3:5f:30:6b:d9:ed:a6:7f:10:98:50:57:61:94:9b:
0e:94:60:a1:15:82:10:65:fe:27:be:ab:da:71:b0:c5:53:5d:
56:93:15:e9:7d:5a:a6:89:f2:5e:4e:15:28:93:03:39:34:15:
43:95:25:e6:f4:67:c3:95:55:73:04:2f:e7:1a:0e:71:33:6d:
0a:1c:65:d5:d4:09:07:f9:d8:f0:1c:d9:ca:84:b9:18:2f:36:
ac:6d:25:2e:d5:34:9c:f4:66:76:9b:8e:5a:0e:02:a6:3d:2e:
a1:e2:8d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:47 2024 by rpki-client on console-ams.rpki-client.org