Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1722b691-5e74-424e-9b0d-4a4dc7add16a.roa
File: 1722b691-5e74-424e-9b0d-4a4dc7add16a.roa (raw, json)
Hash identifier: TWqt0QysFNcCrk0nexehzu8GGw38roErC9JIyaN0Z2U=
Subject key identifier: F0:4B:72:B9:6F:0D:3D:30:86:27:0F:9B:85:AE:A3:9F:08:39:32:7E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5FDBFE123E74D052F4D192758B98D1B8C10BB3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1722b691-5e74-424e-9b0d-4a4dc7add16a.roa
Signing time: Sat 14 Oct 2023 00:00:00 +0000
ROA not before: Sat 14 Oct 2023 00:00:00 +0000
ROA not after: Sat 18 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:db:fe:12:3e:74:d0:52:f4:d1:92:75:8b:98:d1:b8:c1:0b:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 14 00:00:00 2023 GMT
Not After : Nov 18 23:59:59 2023 GMT
Subject: serialNumber=63b283accba4599a931b4369bfa533b20553e23d50ab056e49cab49477cb8a20, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d0:3f:19:6a:9c:eb:ac:e7:f1:df:72:84:4c:
81:80:7d:98:97:3f:76:e7:1c:0f:97:92:86:71:07:
28:41:e2:f0:af:cd:a3:46:c4:bf:1e:94:52:d2:f6:
76:88:ff:89:91:af:9b:7c:78:49:81:9d:fa:c5:d9:
e9:6a:c0:4c:34:04:d3:b3:1a:92:8b:a8:ea:82:54:
d8:53:04:21:3c:20:09:64:af:9c:a0:3a:24:98:23:
b7:b7:cd:cd:d6:75:88:96:d9:81:a6:6d:3d:33:96:
a8:db:2d:be:de:54:17:86:1d:5a:97:69:9d:a2:af:
cd:23:06:74:02:54:31:28:8e:70:83:f4:88:78:da:
90:55:e5:40:34:e4:d0:95:3e:b6:43:99:72:99:a5:
ea:76:87:b1:84:ee:ff:e9:66:8a:fa:ed:b7:db:58:
e7:dd:b3:25:46:60:f9:c0:97:f0:ea:32:5b:b4:fe:
c5:20:96:f6:12:fe:a6:d2:ac:58:ff:92:e3:21:d8:
74:e1:58:7e:6f:31:9e:b5:30:a2:b1:d7:55:70:b3:
4a:a0:43:c9:08:61:dc:34:28:79:21:fc:dd:44:a1:
d6:3f:05:b1:00:2c:93:5c:33:d3:4b:76:40:a3:df:
0d:c3:34:ca:ad:c5:bf:f1:ff:25:f9:9d:0a:68:4a:
b0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:4B:72:B9:6F:0D:3D:30:86:27:0F:9B:85:AE:A3:9F:08:39:32:7E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1722b691-5e74-424e-9b0d-4a4dc7add16a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:66:94:aa:90:fa:d3:f7:09:89:be:59:69:b1:2c:d5:4f:bf:
a2:77:47:9f:96:6d:b9:6f:6a:19:12:8a:0a:19:2c:ab:07:31:
22:75:5a:69:6c:c7:76:4e:28:fd:74:09:c1:49:6b:4c:03:d4:
b7:19:65:32:3f:ca:c6:c4:5c:96:f6:39:58:53:31:0f:4f:8b:
ac:53:e4:41:b5:7a:b4:85:38:dc:69:dd:42:1f:1e:56:01:b4:
88:c7:db:72:a1:eb:ef:42:f0:9f:7d:d0:6b:c5:d8:6d:e2:ba:
4f:af:b3:86:4d:a4:34:23:2e:5b:1a:ff:e8:43:85:9d:7f:e7:
dd:58:8d:8e:17:66:94:4f:51:bf:87:12:f5:8e:7f:f8:99:53:
4c:59:fe:d6:d7:fe:88:98:cd:f8:33:7b:a9:32:3b:1a:f7:54:
73:5c:e5:4c:96:79:a1:13:60:f3:fd:eb:d8:0c:a4:8f:25:e8:
d9:c6:75:6f:51:36:fb:1c:ac:db:0a:9d:fc:6d:b7:ea:fa:0b:
2b:fc:f4:76:8a:74:bc:93:59:ef:db:90:37:c0:a9:b2:15:d1:
a6:2a:a4:71:a0:92:0b:81:bd:9b:82:c3:aa:4f:dd:6d:e5:a8:
68:3d:38:15:ba:83:11:b1:da:44:88:65:6c:53:44:f5:e5:8c:
75:d8:1f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:49 2024 by rpki-client on console-ams.rpki-client.org