Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1f0bcad5-bb5c-498f-a409-25acdc94c9e8.roa
File: 1f0bcad5-bb5c-498f-a409-25acdc94c9e8.roa (raw, json)
Hash identifier: rKaBf8ja1tlEPCZtpT/YLPc90F1iLN1aQ16C927zxc0=
Subject key identifier: C8:D2:D3:F0:8D:D8:68:9E:85:F4:38:D9:A3:0A:7C:DC:B7:C6:C5:3C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2D41DF0571A59ECA749909798C8249809F287EC2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1f0bcad5-bb5c-498f-a409-25acdc94c9e8.roa
Signing time: Sat 24 Jun 2023 00:00:00 +0000
ROA not before: Sat 24 Jun 2023 00:00:00 +0000
ROA not after: Sat 29 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:41:df:05:71:a5:9e:ca:74:99:09:79:8c:82:49:80:9f:28:7e:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 24 00:00:00 2023 GMT
Not After : Jul 29 23:59:59 2023 GMT
Subject: serialNumber=ead80c4d9a1b4ac6a0293ef04cfbff0776f59e201a9c29613583307fcd895496, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:eb:3e:bf:e9:4c:e3:e6:58:0a:81:e1:58:92:
e1:b7:2d:2d:8d:d2:6b:d5:0b:fa:00:80:19:53:d4:
67:4f:5a:e3:f9:ae:fc:b4:d0:2b:fe:28:2e:e9:13:
62:8f:c3:86:50:51:67:d5:0b:6a:ff:51:6a:0f:79:
f0:3e:0f:8a:21:4c:91:7c:7d:85:b9:e6:2b:3a:c7:
b0:f6:66:4e:56:29:3e:88:87:d5:ad:8a:55:1d:de:
8a:f5:87:52:81:cc:bb:76:5f:94:9b:21:8e:f6:03:
84:79:ad:de:60:98:13:ce:5c:dd:80:c4:51:9b:bc:
fa:8d:5b:40:1f:0b:c2:ee:03:b5:52:5b:f0:22:99:
a0:40:6e:b3:f4:af:0e:c0:70:d8:76:04:8a:d0:b8:
3c:66:b7:de:8c:0a:ef:d8:4a:26:11:72:bf:b9:e1:
47:ee:f7:14:ac:a7:1c:31:25:61:06:56:4a:ca:27:
e8:0d:e1:2f:cd:6e:7c:3b:ed:7f:72:8d:fd:57:f0:
ec:23:0d:f4:3f:57:96:15:ec:66:35:19:d3:3e:0e:
67:76:dc:16:ae:aa:34:db:7b:58:94:6f:92:f0:dd:
00:d4:f6:9d:b8:f9:bc:44:08:8a:8c:38:cb:4f:ae:
6c:bb:9a:fe:7a:f4:7d:f3:b5:d1:1b:d3:c7:79:3b:
57:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D2:D3:F0:8D:D8:68:9E:85:F4:38:D9:A3:0A:7C:DC:B7:C6:C5:3C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1f0bcad5-bb5c-498f-a409-25acdc94c9e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:d0:f6:58:00:11:18:1e:47:d2:cd:13:30:56:1d:8d:89:f8:
2b:ea:da:b7:cb:47:9d:4a:6a:29:cb:e1:d4:da:d8:11:f0:84:
ba:5f:9c:9f:48:f2:94:ae:c5:4f:ca:27:9b:6f:eb:8b:80:90:
04:9a:32:0b:83:99:01:db:c2:da:34:00:33:df:ab:b6:30:4a:
c7:76:0d:58:84:0f:bc:4d:52:2e:70:22:19:00:a4:dc:dd:39:
02:1c:a3:4b:46:4d:e0:79:d5:28:66:6c:8e:1a:03:5d:00:6c:
f7:3c:5b:7a:6e:c3:77:51:5e:d5:78:7d:9a:ba:d5:08:36:38:
85:b8:5c:11:a7:4e:bc:6c:15:64:01:16:d8:9b:86:c8:69:7f:
8a:4c:62:d3:5b:d6:f5:52:b0:b4:ff:67:48:5b:63:ce:23:c3:
2c:74:c9:0a:f7:76:7b:ea:1f:98:d7:78:cc:1c:16:e3:3a:68:
6b:69:dc:b9:79:df:e6:40:f0:54:d1:fb:80:43:ed:30:1b:84:
e6:07:f1:4d:f2:64:12:7a:c9:b1:fb:e9:08:77:97:33:f7:3c:
33:85:e6:38:b1:0a:fd:1c:43:83:fa:a6:79:73:e8:a9:72:70:
6d:52:f2:be:e2:21:2e:6e:a3:f8:2c:ae:6f:9c:b2:4a:95:e1:
f6:0a:6a:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:55 2024 by rpki-client on console-ams.rpki-client.org