Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/09c4eb84-e553-4c0a-8c97-bc2e4ebc8db3.roa
File: 09c4eb84-e553-4c0a-8c97-bc2e4ebc8db3.roa (raw, json)
Hash identifier: 9opE68T+n2Ljl76bowWf2nGAX+Qe056P8+aLAFuN/B4=
Subject key identifier: 74:96:C9:66:07:08:D1:51:83:31:C6:AA:4A:91:E7:37:76:7C:57:53
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 102035C31E3E5C63CF4B4DC650CCA76DD9A4D041
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/09c4eb84-e553-4c0a-8c97-bc2e4ebc8db3.roa
Signing time: Sun 12 Nov 2023 00:00:00 +0000
ROA not before: Sun 12 Nov 2023 00:00:00 +0000
ROA not after: Sun 17 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:20:35:c3:1e:3e:5c:63:cf:4b:4d:c6:50:cc:a7:6d:d9:a4:d0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 12 00:00:00 2023 GMT
Not After : Dec 17 23:59:59 2023 GMT
Subject: serialNumber=a289b692fb0210d6aab6ca8a149687f13da752e0ad02f0676aca7ce85492f99d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:6d:2b:6d:b9:13:bc:08:ba:03:13:fe:69:6e:
53:0c:33:81:5a:97:cf:e9:2c:0f:30:0a:9d:d3:22:
43:a6:59:ae:2c:01:92:72:d7:28:13:71:16:d4:2d:
12:2c:61:cd:8c:45:5c:87:65:24:b5:af:06:cc:56:
a6:c8:73:4f:6c:5a:c8:6f:50:3b:a9:d4:f2:bc:ba:
e4:68:fd:c3:a6:12:45:12:72:84:57:c6:9e:a2:58:
be:ea:61:4a:2a:aa:4a:18:f5:e9:ca:b7:12:91:91:
4b:fa:31:db:86:e9:71:69:23:c4:39:89:3c:bd:ca:
af:75:1d:d5:95:1f:f8:1f:44:59:48:40:16:0d:73:
4d:db:cd:64:31:60:b1:75:58:0f:ca:4d:59:24:3e:
08:e6:bc:ae:30:05:08:a1:e4:6c:12:90:d3:01:fe:
aa:21:11:6b:fe:b8:0f:00:48:e5:11:fb:9f:f9:f9:
ed:2e:2d:4d:7e:12:6a:a4:34:40:aa:b3:3d:35:8d:
e6:e5:96:b5:c1:de:1c:6b:ec:62:0c:30:4d:2e:81:
61:50:6a:7a:40:3b:29:fa:18:30:a4:e8:4d:4e:b9:
6c:6d:69:b8:cd:4d:fd:f2:ea:e6:7e:0c:8d:39:19:
cf:ae:2e:b0:66:06:d6:cd:9a:b6:e8:52:54:57:b7:
e6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:96:C9:66:07:08:D1:51:83:31:C6:AA:4A:91:E7:37:76:7C:57:53
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/09c4eb84-e553-4c0a-8c97-bc2e4ebc8db3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
51:89:62:ae:1f:c1:fa:50:8a:75:aa:55:ba:34:08:48:a6:f4:
18:fb:cd:51:4e:62:8a:26:bf:96:aa:11:e5:8c:1a:bb:53:0a:
3e:58:71:94:e0:f3:5e:4c:8d:e2:5c:62:a8:be:9f:2d:2c:73:
45:ef:94:f2:14:f2:cb:7a:2d:c9:ab:11:eb:ae:52:f8:51:1e:
e0:ff:d9:af:46:33:50:1a:e4:87:de:17:50:2f:f6:ae:39:67:
cf:6f:a4:1e:30:5e:22:2f:78:30:51:ed:d8:aa:10:84:bc:43:
e9:f6:c0:e2:33:05:09:d9:23:2e:dd:c9:ab:c2:66:b8:fe:e3:
d6:64:17:46:57:d7:d2:10:bf:21:7f:3c:8b:c9:ed:d3:a8:31:
c6:c7:bb:e7:6f:60:bb:77:a5:4a:3c:43:42:ab:80:f1:92:36:
e3:26:77:c9:63:1d:43:27:a4:02:11:ce:a3:ce:df:c0:14:92:
d1:af:87:09:33:72:5f:be:7e:ff:06:a7:69:ef:c0:ed:2e:e9:
e5:57:b9:65:24:50:bf:59:d2:b4:07:74:56:bb:75:57:84:d5:
5e:34:eb:ce:44:f5:e2:ba:86:83:da:8f:c4:9b:5b:f9:bd:d5:
43:13:29:12:1c:02:b2:57:dc:ff:2d:20:c5:09:0e:c7:50:39:
40:16:a6:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:11 2024 by rpki-client on console-fra.rpki-client.org