Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0959c432-169c-4ecf-8d37-504af75b834b.roa
File: 0959c432-169c-4ecf-8d37-504af75b834b.roa (raw, json)
Hash identifier: jdsB6AOylx2F0vXzzw5Pz30Mt5ct2QUyUev7mNKWbYs=
Subject key identifier: 1B:7A:63:A5:38:59:A7:0B:D9:19:50:A7:47:AA:F7:56:5E:4B:F2:1D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3DBD48AF08CD2455DC2C06F180BE3C281DF0EF7C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0959c432-169c-4ecf-8d37-504af75b834b.roa
Signing time: Sat 23 Dec 2023 00:00:00 +0000
ROA not before: Sat 23 Dec 2023 00:00:00 +0000
ROA not after: Sat 27 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:bd:48:af:08:cd:24:55:dc:2c:06:f1:80:be:3c:28:1d:f0:ef:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 23 00:00:00 2023 GMT
Not After : Jan 27 23:59:59 2024 GMT
Subject: serialNumber=e756e8997fd88c3c2a6a4665bdbab10e3f13e878cc49d40ef3e3ddb24001e81e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:30:43:d5:a0:ce:0d:98:07:b4:ef:33:2f:
4e:f0:6f:e2:73:82:2a:9b:07:57:f6:7d:b4:e0:c1:
f3:df:c2:4b:4a:31:fc:67:bd:b7:4b:fd:9f:a1:0e:
c1:36:d8:62:dd:cb:c7:82:fe:7f:59:30:da:ba:83:
0b:86:9b:cc:79:71:c6:7e:da:8d:cf:d9:8e:50:fb:
cc:ea:0d:fe:0f:30:d3:14:99:7f:61:07:93:d5:6f:
13:30:96:c6:95:9c:8b:8c:52:c1:3a:9e:43:c8:fb:
07:5b:98:cb:78:1b:67:87:4b:5c:ff:be:ee:29:b5:
ef:ac:1e:bf:22:b8:da:b1:0e:45:63:e9:15:dc:94:
3e:d7:fe:fd:c0:e2:8a:cf:ab:64:f0:8a:68:c9:ad:
ee:18:78:4f:89:8c:4f:7f:85:d0:79:5a:44:14:89:
99:27:4c:10:64:92:43:e9:32:43:e7:39:af:a5:81:
2e:84:d6:ef:e1:ac:f5:54:17:f2:81:10:1a:37:24:
a7:9c:30:ad:a0:7f:18:2a:30:2e:2a:56:6c:77:e8:
8b:3c:1a:3f:f3:24:90:fd:87:b7:53:84:52:88:9a:
8e:bf:15:a8:be:93:62:c7:f2:68:81:92:d5:01:fc:
66:f3:87:8f:80:fb:09:2e:56:df:28:2b:21:a3:af:
f6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:7A:63:A5:38:59:A7:0B:D9:19:50:A7:47:AA:F7:56:5E:4B:F2:1D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0959c432-169c-4ecf-8d37-504af75b834b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
60:ff:14:96:53:28:56:21:67:53:a1:08:43:e6:b1:3c:07:ed:
9a:ac:2c:34:3c:b5:62:c0:26:7c:ac:7b:93:0b:fc:34:47:2b:
7c:04:19:14:68:bf:6d:78:70:a0:3e:ac:14:29:b1:62:69:d6:
30:e5:2d:d5:da:61:56:47:be:ed:8f:b1:53:0b:18:64:b5:38:
c0:dd:3f:7c:a5:1e:5f:3b:dc:d5:69:ff:a8:3f:6b:a0:b9:8c:
df:53:c1:e9:4b:f2:30:c6:8f:ea:91:2f:13:d2:8d:01:86:5c:
f1:3d:7c:9f:c9:9f:75:29:4b:96:79:34:45:45:2d:e3:e1:ee:
c0:bf:58:9f:51:7b:61:fb:ec:86:7c:5b:5c:00:0c:6c:f5:a9:
8f:48:1d:29:19:69:4d:85:6f:08:22:1f:a1:f3:89:5b:63:76:
75:0d:12:52:36:84:8a:28:00:24:a5:ac:3a:14:b1:2e:13:de:
4c:18:cc:49:18:79:44:6c:3e:df:67:e3:6c:f5:a2:7b:9f:ba:
2a:5e:d2:c7:6b:fa:66:03:75:c6:08:10:7a:93:44:49:aa:4e:
55:8f:b0:d9:30:88:8c:05:96:ae:28:2d:8c:0d:18:fa:7b:39:
c0:e0:09:c0:21:6f:eb:11:b6:f6:d3:44:de:de:18:4d:3c:a7:
05:0f:b9:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:11 2024 by rpki-client on console-fra.rpki-client.org