Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1aedb1c0-bd8f-4246-8e81-747ce99eab3d.roa
File: 1aedb1c0-bd8f-4246-8e81-747ce99eab3d.roa (raw, json)
Hash identifier: anpV2InaNb1SJZvHgWSzkg11ib4KXqdAWojW39xMzmc=
Subject key identifier: 0D:87:B6:6E:65:14:06:DA:70:EC:41:C0:3C:FD:A4:F7:00:BB:13:43
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 783F5CF8877AE27A3DADD998636453D0F76F2748
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1aedb1c0-bd8f-4246-8e81-747ce99eab3d.roa
Signing time: Thu 14 Sep 2023 00:00:00 +0000
ROA not before: Thu 14 Sep 2023 00:00:00 +0000
ROA not after: Thu 19 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:3f:5c:f8:87:7a:e2:7a:3d:ad:d9:98:63:64:53:d0:f7:6f:27:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 14 00:00:00 2023 GMT
Not After : Oct 19 23:59:59 2023 GMT
Subject: serialNumber=6c5bb8547c01b7748e40fddea557fa9318c16da9f84e8ff5b35622bac30aaeef, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:40:96:ee:d9:94:bb:40:9a:5d:01:49:e4:f8:
34:39:88:d6:69:e3:d3:2d:1f:0c:b5:13:ab:ea:ec:
dd:1e:a7:5c:4a:40:79:71:e3:f0:8d:78:66:65:99:
36:af:82:43:62:57:6a:02:9a:35:ad:7a:69:12:ae:
83:1d:4d:62:dd:fc:e6:9a:99:40:45:8c:59:f1:bc:
af:f5:c9:e6:80:2b:1c:e3:29:ca:2f:3a:f8:e9:7a:
c3:9f:43:c2:99:bb:ea:40:10:67:e0:70:25:85:67:
4d:f3:8a:81:b6:5c:b9:56:dd:67:a7:5e:5d:3c:de:
14:49:08:1b:87:f8:14:5a:2e:8b:8d:c8:e0:14:a5:
0e:1e:da:91:4d:e1:cb:8f:a6:4c:b9:55:aa:5c:fd:
1f:1d:6d:92:9c:3b:69:5e:7b:56:0e:92:52:fc:39:
e6:b2:67:3f:6d:40:d3:f3:34:0a:8d:49:a0:1f:46:
fd:fe:46:b8:31:aa:53:b8:f5:34:64:92:5e:74:41:
b4:65:b6:3c:b9:d7:2e:e7:8d:e1:a5:e6:65:9d:80:
e6:7c:7c:de:ca:f6:e7:ef:e2:47:08:ef:09:1f:04:
ef:59:ee:30:82:92:27:77:3f:19:c9:fb:a3:ee:23:
1d:7e:00:b2:7d:07:70:be:d7:3b:d6:e6:34:59:de:
ef:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:87:B6:6E:65:14:06:DA:70:EC:41:C0:3C:FD:A4:F7:00:BB:13:43
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1aedb1c0-bd8f-4246-8e81-747ce99eab3d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:4e:95:fa:39:ba:1a:7f:4a:e4:29:30:eb:9d:e5:ac:66:c3:
24:1d:90:61:a2:dc:e4:3d:4f:91:21:63:a0:fc:40:07:c6:7c:
a1:4a:f9:d3:69:23:45:73:5b:d5:a0:31:0d:ff:b7:88:dc:8d:
46:ad:2e:84:7e:1e:95:e8:f6:50:e0:c4:16:a1:33:f7:0c:69:
a5:7f:d7:a9:eb:df:12:d3:18:ab:fe:76:3f:5f:ed:97:08:64:
9c:5d:6e:0c:af:44:78:e7:5c:4a:ba:c7:3d:17:34:49:28:df:
09:be:02:29:53:15:77:75:f6:3d:5a:8b:2f:c9:c3:fd:14:2b:
af:1a:8e:28:93:a2:f3:79:f2:e5:7a:ad:43:66:ae:a3:3a:67:
da:14:a4:3d:fc:1d:fd:0c:a6:76:93:6c:45:13:7a:b9:4b:a0:
7a:3c:dc:c2:80:bf:08:52:40:8f:66:6e:46:eb:c4:7d:b5:8d:
af:cb:d5:d0:aa:66:4a:05:30:c6:f0:ca:91:29:93:ce:ea:a6:
9c:ba:40:16:3f:8d:a2:d5:ba:7a:8e:23:93:56:67:5e:d3:9b:
b5:f0:22:38:16:99:20:c2:bf:e7:99:dd:e5:37:92:fa:05:6f:
11:5d:aa:dc:6f:2f:03:d3:3a:c0:2e:45:8e:18:de:71:43:87:
ae:fe:4f:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:50 2024 by rpki-client on console-ams.rpki-client.org