Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/17fe30be-fbc1-4eeb-83c7-f40bcdcf6d20.roa
File: 17fe30be-fbc1-4eeb-83c7-f40bcdcf6d20.roa (raw, json)
Hash identifier: 4d81avH5jws6FIg7+AsC2UA8+0Keffrc2qcAB7lifKg=
Subject key identifier: E2:A3:6B:8B:61:88:C8:88:1C:34:C7:7E:6F:0C:5A:00:33:E3:CC:9D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2B62CE90AB833802F79257FF3C887D7A64A5A147
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/17fe30be-fbc1-4eeb-83c7-f40bcdcf6d20.roa
Signing time: Fri 30 Jun 2023 00:00:00 +0000
ROA not before: Fri 30 Jun 2023 00:00:00 +0000
ROA not after: Fri 04 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:62:ce:90:ab:83:38:02:f7:92:57:ff:3c:88:7d:7a:64:a5:a1:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 30 00:00:00 2023 GMT
Not After : Aug 4 23:59:59 2023 GMT
Subject: serialNumber=2c5ed2dbdc892c22e3bc3681a67a35f55fa344350b716d4d86f27e27a1f29b34, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:22:72:c0:01:58:bf:f0:20:06:12:14:8d:98:
c3:b1:6f:79:59:d7:1b:b9:56:ef:c7:7f:5d:9b:b4:
79:3d:a6:6e:3a:97:3f:f6:46:fb:08:6f:17:09:00:
09:4b:48:f8:7d:71:57:43:5d:d5:0b:d1:92:50:4a:
fd:af:9a:3a:10:14:45:23:75:44:3f:56:56:1d:76:
4f:7d:fe:32:06:38:37:59:88:9f:e9:9a:75:06:ea:
28:11:3d:a6:19:b7:d9:be:53:4a:91:3d:34:f0:eb:
03:26:38:16:f5:30:a5:44:1a:66:ff:d1:97:7f:53:
85:19:47:64:44:38:da:e5:a5:17:fa:5a:8c:dd:3d:
49:c2:93:18:a5:0f:cf:76:2f:f3:fb:54:5c:45:39:
fc:bb:33:7f:5b:e2:1e:0c:6f:33:af:c0:3f:e0:2e:
72:6f:83:33:9f:97:25:fe:e9:f8:31:37:94:c7:ef:
fc:fe:c1:90:ec:33:67:90:17:b2:e4:78:78:8a:6d:
18:e5:73:86:43:45:c6:ea:a5:53:13:41:7f:3b:b8:
21:f6:fe:69:6f:0a:4b:c2:cd:b3:0d:8d:83:93:52:
43:54:88:9d:78:e7:17:b4:e5:16:af:e0:bf:c3:86:
25:02:e4:1c:11:a3:f4:f9:a3:a5:e0:46:ce:f8:2a:
ca:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A3:6B:8B:61:88:C8:88:1C:34:C7:7E:6F:0C:5A:00:33:E3:CC:9D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/17fe30be-fbc1-4eeb-83c7-f40bcdcf6d20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
19:d4:f7:35:dd:50:f8:38:21:dd:29:10:a9:d1:98:51:86:5f:
d1:41:fc:b0:25:79:cf:f4:8a:b9:39:89:75:9d:1b:16:22:d6:
8c:55:d0:10:99:54:aa:89:89:df:71:78:71:d8:7d:13:ee:64:
bf:4e:82:fa:31:d1:61:ad:15:b5:e0:7e:4f:d8:ce:2f:ec:87:
2c:8e:eb:7e:72:a2:bf:91:7d:b0:63:98:80:ea:da:24:e0:e3:
aa:be:15:9e:a6:71:85:25:1a:5c:fa:5f:de:b5:dc:15:f1:55:
b2:d9:8d:e4:0d:a6:a6:e3:da:44:32:1d:23:36:fa:e2:32:f3:
3a:bd:ff:78:86:66:0e:ea:4d:0c:0e:09:2b:68:74:41:d9:e1:
d1:11:76:13:76:8d:12:f0:14:5a:e1:1a:ae:d4:7f:28:fa:74:
8f:4e:e9:a7:bf:b7:2b:54:d1:7a:4c:57:0e:f1:93:de:d5:28:
67:74:35:0f:68:57:1a:ab:d4:38:f8:aa:5f:52:27:01:55:d3:
db:71:f5:02:ef:b5:5f:ea:11:ea:39:a0:5a:a8:6f:86:7c:45:
6d:e0:15:84:a3:fc:dd:18:f2:4d:31:11:76:c3:1e:8f:b8:39:
67:31:6d:1c:39:78:20:d8:bd:82:87:6d:78:02:6b:f1:8b:99:
22:7b:d6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:50 2024 by rpki-client on console-ams.rpki-client.org