Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1c870bf9-6673-4aec-b4a4-183284e786a8.roa
File: 1c870bf9-6673-4aec-b4a4-183284e786a8.roa (raw, json)
Hash identifier: aHa5EtwuVQ2QLp+JHicEjdvvFsTNSAFbYNqW1rUkVko=
Subject key identifier: 67:93:89:22:90:21:95:89:7E:97:84:73:18:F8:84:7B:C7:7D:73:13
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6FF8B21A53CDA3A4C00E5F66C5336CAE325E4BC2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1c870bf9-6673-4aec-b4a4-183284e786a8.roa
Signing time: Thu 07 Dec 2023 00:00:00 +0000
ROA not before: Thu 07 Dec 2023 00:00:00 +0000
ROA not after: Thu 11 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:f8:b2:1a:53:cd:a3:a4:c0:0e:5f:66:c5:33:6c:ae:32:5e:4b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 7 00:00:00 2023 GMT
Not After : Jan 11 23:59:59 2024 GMT
Subject: serialNumber=2d77702d3b265345b5438cd70841537671f387dfc4ebadaad58378ebd4ad5cf6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0f:f5:81:b4:a5:67:cb:83:77:60:46:ab:49:
ab:e0:0a:52:36:a2:7f:26:95:9d:36:aa:ca:30:62:
b2:8f:c7:4a:36:5d:4b:88:5c:0e:42:2f:d3:6e:b7:
6f:30:2a:7c:1d:78:39:73:ab:11:5a:e0:77:41:54:
a1:3f:db:c3:3e:43:a2:7d:d6:f7:9e:96:50:c7:dc:
cc:47:2e:5a:18:a1:6f:8d:26:95:cc:ca:a4:7d:f7:
af:b9:26:d2:91:42:31:09:01:37:28:fa:7a:9a:ca:
92:97:10:0b:cf:d0:b8:07:bc:6d:0d:33:6a:6e:7c:
e1:e5:f0:04:75:f1:be:bf:93:f5:da:8e:08:00:c6:
0a:1f:6a:8d:7e:63:6e:01:51:37:db:d1:08:de:46:
ff:f0:b3:16:c9:74:4b:34:cd:7d:52:8c:bd:dd:f8:
35:c9:e4:7f:25:be:38:72:2c:81:a7:8c:b2:af:47:
2b:f5:8d:ae:74:58:1e:11:a3:d3:12:7a:88:8d:19:
a8:7e:55:35:86:86:9d:dc:fc:77:53:d5:29:6e:8d:
92:a5:1a:16:25:d5:42:ce:97:69:51:70:53:a5:d2:
b1:d4:21:8d:4f:1d:d3:72:de:0c:e8:94:cf:00:6f:
40:e3:33:1d:50:c9:f8:bc:19:e5:0f:94:be:4b:1e:
d5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:93:89:22:90:21:95:89:7E:97:84:73:18:F8:84:7B:C7:7D:73:13
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1c870bf9-6673-4aec-b4a4-183284e786a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:99:6e:c7:08:f0:5d:35:cd:cd:89:db:5f:b5:07:0d:0e:d9:
e7:aa:ee:cb:83:8a:f9:0b:00:4f:52:07:07:91:30:94:e7:4a:
64:d3:e4:51:0c:0a:34:4d:ab:59:6d:8d:69:e1:e2:e0:47:fb:
99:61:b9:cb:6f:39:b0:bb:51:7e:72:ba:a2:e1:51:dd:9a:cb:
ee:5a:7b:d3:bc:09:eb:55:a0:49:af:13:9a:50:e1:03:7f:d7:
89:32:0b:aa:72:3e:c7:8a:7a:de:67:1d:e5:dc:7f:f1:c6:a7:
b8:05:81:fa:6b:26:00:c2:c3:a3:60:3e:ab:f0:bb:1f:59:09:
98:01:1e:27:84:4d:19:94:da:d3:e0:82:4b:8c:56:7a:db:b0:
08:40:c4:d5:2c:4e:74:03:14:ee:32:60:48:86:e3:df:e3:49:
49:9e:73:e3:fd:ba:65:f1:80:f4:86:5a:1b:2d:d7:f3:a2:ec:
d2:1c:cc:45:43:8e:a6:59:d8:8a:f3:17:90:00:2b:28:17:10:
ef:50:c2:3c:a0:77:6f:c1:42:a6:39:81:f3:55:d7:eb:c7:f8:
2d:9c:8d:d0:7f:0a:9d:3d:b9:e8:0d:25:7d:f4:3c:0f:26:f3:
c7:55:6d:26:82:bf:04:5f:2f:67:03:be:4d:98:40:31:77:30:
53:3c:9d:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:13 2024 by rpki-client on console-fra.rpki-client.org