Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b475c8f-2589-4769-a939-af82d85370b7.roa
File: 1b475c8f-2589-4769-a939-af82d85370b7.roa (raw, json)
Hash identifier: +iqVTqthGPS8TXrzU3LrKjUEBW5exLa2SZV6Kexeg+I=
Subject key identifier: 38:EF:EA:16:CB:87:CC:EA:40:81:7F:C1:49:6F:68:41:A6:9B:99:D9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 609AFEAE028AF6751F717DB2E4B275B2A4D5833B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b475c8f-2589-4769-a939-af82d85370b7.roa
Signing time: Sun 16 Jul 2023 00:00:00 +0000
ROA not before: Sun 16 Jul 2023 00:00:00 +0000
ROA not after: Sun 20 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:9a:fe:ae:02:8a:f6:75:1f:71:7d:b2:e4:b2:75:b2:a4:d5:83:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 16 00:00:00 2023 GMT
Not After : Aug 20 23:59:59 2023 GMT
Subject: serialNumber=8f48304bbf7b97a9689fff9b9d8c77daa8ad1938986ca80c420df3bb9a81a895, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:88:1e:4e:91:be:e1:33:8c:1d:95:6c:6a:5d:
b8:17:9f:39:f7:ae:02:be:3a:75:0a:3d:f9:1f:47:
76:b5:e5:58:88:0e:66:09:7f:a0:0f:02:7b:d9:4c:
87:3e:d8:8e:17:f9:2d:a7:64:0b:f7:69:2f:06:44:
aa:74:e0:f3:ee:ec:03:18:82:98:4d:01:31:f0:a8:
24:b3:30:18:53:5e:d3:48:7f:7d:23:ff:03:45:5d:
bd:37:65:59:06:9e:22:1a:8e:9b:31:37:ca:82:dc:
af:03:d3:78:8e:cf:0d:35:55:18:72:15:10:f0:03:
95:c3:54:e8:62:62:49:e0:e7:09:64:b5:2a:48:34:
ae:16:28:17:75:5b:f7:b7:1c:cf:ee:b5:ae:e9:f2:
cc:80:15:50:c3:64:4d:ff:b3:b4:cc:8c:3e:94:5d:
13:c9:30:ee:36:07:b6:fb:ef:be:64:09:2b:ba:e6:
c7:0a:45:42:6b:f7:72:2c:01:c8:de:6c:84:f3:35:
c6:65:c9:0f:0f:de:c7:68:ee:8d:1f:49:ae:9c:7e:
b8:fb:37:ee:97:be:a4:2b:d1:e1:a6:d2:c2:1a:d5:
e0:13:84:d7:2b:9c:48:61:d1:e1:6d:4d:ce:4f:49:
72:10:a7:30:2a:fb:47:22:f6:7a:ae:56:fa:b5:2b:
3f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:EF:EA:16:CB:87:CC:EA:40:81:7F:C1:49:6F:68:41:A6:9B:99:D9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1b475c8f-2589-4769-a939-af82d85370b7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
71:99:5a:42:cf:fa:62:d5:6f:44:10:0d:5e:42:b7:79:14:ff:
ae:f3:fb:94:98:c1:64:a1:55:9b:9d:ff:36:21:2d:c5:01:6f:
f0:8b:73:d8:e1:a3:ae:60:4a:41:27:0b:42:83:ef:72:5a:f8:
8b:80:f4:49:1e:9a:db:6c:ea:91:b6:64:84:8c:fd:c4:e1:66:
d5:a2:69:7e:18:4a:8c:8f:c0:38:49:18:ae:1a:13:d5:8f:00:
1d:be:f3:9e:b7:9d:df:70:e5:58:2e:f2:13:ce:e3:9b:ef:0a:
c5:6f:fa:02:74:ea:20:87:39:93:cf:85:08:7b:0d:ee:2c:77:
ad:ec:f6:e7:cd:e3:c1:ea:f1:c4:4d:bd:93:3f:f6:f0:b8:94:
17:08:bb:b3:d6:72:f0:56:5b:55:24:73:25:2c:a8:8b:3c:06:
41:c0:d9:92:6f:3c:66:8b:28:e2:0b:b2:5c:87:06:b9:27:cd:
bc:cf:29:f7:11:b8:07:43:c1:40:88:a3:97:46:01:37:6d:55:
36:78:a8:0d:52:f0:c2:6d:e7:ca:70:b4:5e:26:a3:f7:e8:eb:
76:4b:ff:49:17:47:8a:4f:c2:a3:27:07:06:fa:f7:eb:43:29:
c5:8d:8f:eb:e9:24:f0:ee:9e:af:8f:66:02:14:1e:51:9e:37:
ea:18:fb:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:50 2024 by rpki-client on console-ams.rpki-client.org