Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0bd72158-9a5c-4bf4-b9f7-ada2de72ae7c.roa
File: 0bd72158-9a5c-4bf4-b9f7-ada2de72ae7c.roa (raw, json)
Hash identifier: 1FQBC/1y0aaGnjm/VeuqoTsZ1+ZP0l4Q+sJQx/1orOQ=
Subject key identifier: B6:CE:BA:C5:0E:B7:FA:AA:16:D9:4C:D5:E9:DE:67:09:C9:88:AD:99
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6CC4D889FAF496D0D5052EB07AB431DBC9F3AFBE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0bd72158-9a5c-4bf4-b9f7-ada2de72ae7c.roa
Signing time: Tue 21 Nov 2023 00:00:00 +0000
ROA not before: Tue 21 Nov 2023 00:00:00 +0000
ROA not after: Tue 26 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:c4:d8:89:fa:f4:96:d0:d5:05:2e:b0:7a:b4:31:db:c9:f3:af:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 21 00:00:00 2023 GMT
Not After : Dec 26 23:59:59 2023 GMT
Subject: serialNumber=699f9232331ca2493f097ab0c017bc6e2bb929ecdf9a3d8ba478cf0cfd740354, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:18:d1:96:4e:28:7c:9b:ea:8b:03:71:be:35:
83:76:60:d7:21:1f:6c:47:a4:26:19:27:39:c3:d5:
d9:c9:38:5f:02:0a:96:e9:91:1f:cb:44:7d:5b:5f:
21:bb:4c:74:da:64:af:6d:cf:e6:85:90:44:47:b3:
54:71:12:85:85:5c:3d:b1:4a:1b:1c:7c:7d:c8:c9:
29:f1:84:b1:5d:e6:60:9d:46:39:75:ea:b1:3a:ec:
15:02:2c:36:93:b0:b7:ad:ba:37:a0:de:c6:5a:85:
49:09:a5:8d:60:46:e2:f3:06:df:f6:00:46:21:f1:
6e:ba:b5:b8:2f:0a:fb:41:c3:cb:e6:09:a5:03:0e:
52:23:27:ce:1b:10:e4:94:f1:f9:fb:d7:60:04:bf:
9a:50:a2:20:dc:fb:87:9b:f2:d1:d3:63:26:8c:77:
71:ba:ef:a1:48:a9:b7:63:95:bc:78:01:c7:b0:db:
e1:8d:ce:6d:18:cb:51:85:89:a3:d9:07:b7:82:1c:
10:fc:ea:fb:6f:63:0e:29:3a:42:e9:b7:d7:e8:e8:
cb:29:75:54:15:0a:56:c1:fe:71:9a:df:22:d7:6b:
76:73:d2:72:10:e1:02:e3:aa:d2:9e:73:dc:fe:22:
8d:39:7b:c4:93:9c:ee:f4:a6:66:24:11:ed:3a:6b:
2f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:CE:BA:C5:0E:B7:FA:AA:16:D9:4C:D5:E9:DE:67:09:C9:88:AD:99
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0bd72158-9a5c-4bf4-b9f7-ada2de72ae7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
69:92:c4:96:40:5d:cd:c1:c5:92:5f:15:b4:f2:d0:74:f0:f6:
26:7d:b7:9a:1d:4d:26:4a:9e:e2:89:ee:c4:bd:1e:e8:94:18:
4f:04:bb:b0:25:d8:2e:cf:da:0c:01:6b:c6:6d:84:56:f4:d0:
35:92:7b:f4:5e:52:6c:05:29:38:e7:b5:de:75:41:cd:96:b7:
e3:39:51:82:2c:10:4e:42:c7:5e:17:b9:61:1d:9d:fc:3c:13:
42:b5:ee:de:0b:a9:1e:79:f5:40:fc:ff:3e:92:52:54:20:1c:
6c:4b:5c:f2:ca:86:34:7c:81:1f:24:96:c8:84:4f:e7:e5:c0:
06:9a:7b:d8:d5:bc:42:cc:20:68:d5:6b:9c:09:42:0a:46:4f:
d7:fa:0c:fb:9f:0e:15:0f:ef:71:73:85:17:08:ca:e5:6a:a0:
65:70:dc:6a:c9:40:8b:54:1b:47:ab:b8:b9:88:7f:da:d6:1b:
c2:df:7b:ee:c7:6a:ae:12:7c:90:ff:fc:bd:22:69:5b:0f:40:
43:ad:0a:0a:1f:03:b6:53:df:59:10:f7:8d:8c:3b:76:6c:8c:
4e:47:c6:f6:ef:de:cb:31:9a:ba:55:b8:83:b2:8c:74:8c:84:
69:38:f8:04:80:d2:ee:4f:92:67:1b:c9:06:79:f6:18:f2:c3:
72:0a:a9:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:11 2024 by rpki-client on console-fra.rpki-client.org