Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1fcd664b-fccb-4130-8580-50f03f994b4a.roa
File: 1fcd664b-fccb-4130-8580-50f03f994b4a.roa (raw, json)
Hash identifier: hgLTyaeWtxQM9o9w3zxK9NE2DhHmVl5/14Ot/23TdTs=
Subject key identifier: 7B:9E:98:88:C4:7E:1F:BB:BF:F3:7B:33:98:41:C5:EC:50:D5:3D:4E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3DF82EDB7C16F762EF97B9643DADE46782755C48
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1fcd664b-fccb-4130-8580-50f03f994b4a.roa
Signing time: Tue 05 Sep 2023 00:00:00 +0000
ROA not before: Tue 05 Sep 2023 00:00:00 +0000
ROA not after: Tue 10 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:f8:2e:db:7c:16:f7:62:ef:97:b9:64:3d:ad:e4:67:82:75:5c:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 5 00:00:00 2023 GMT
Not After : Oct 10 23:59:59 2023 GMT
Subject: serialNumber=3349c8c37af8d0ae1f384f2f6f7cc0182e89780b2d8dc59300e94035e6ec0c12, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e1:59:ab:92:c4:8c:29:34:9e:12:43:88:c0:
47:ad:f4:c0:3b:c1:c4:30:a9:f6:37:8e:ad:9f:f5:
b0:3b:27:cd:2a:9a:4d:99:cb:a2:1b:ed:4b:0a:9e:
fd:51:df:b3:d4:3a:b2:fc:3b:d0:d9:5e:bf:5f:99:
61:ad:49:e6:ad:b6:2c:cd:42:da:24:c1:d8:22:2f:
15:e5:00:41:d8:8f:ef:89:fb:59:e9:9c:a6:70:11:
e9:71:f1:a1:20:59:c5:e3:27:b3:cb:37:b3:d9:82:
4e:2a:9f:d0:0c:c5:cc:bd:49:7b:15:01:08:3a:cd:
da:35:31:af:da:13:c5:e2:bb:a9:a8:b9:ed:9c:fd:
9b:8a:a3:6a:61:ec:67:b3:79:32:78:61:1f:df:8d:
91:41:a9:6e:7f:bb:45:5a:2e:0b:41:a4:ab:87:dd:
08:c6:8b:f0:e5:d3:65:53:81:bb:9c:0c:65:0d:03:
ed:3a:67:b2:86:be:cf:2a:39:7d:a1:39:41:e9:51:
d2:ab:ca:cc:28:91:d2:ed:f0:a6:e6:e7:b2:0e:24:
01:11:02:16:63:b6:1e:bc:ff:35:fd:84:74:59:2d:
94:9b:26:90:3f:85:74:f8:30:8c:05:2f:45:15:0b:
73:9c:a7:e2:69:9e:9f:e2:ac:9c:92:34:e3:0d:72:
01:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:9E:98:88:C4:7E:1F:BB:BF:F3:7B:33:98:41:C5:EC:50:D5:3D:4E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1fcd664b-fccb-4130-8580-50f03f994b4a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
34:9e:cd:fe:3d:91:ea:3b:f3:48:0c:a9:43:67:23:61:6e:11:
94:f6:31:f3:38:33:19:e6:9f:8d:32:bb:37:dd:86:01:40:bc:
b4:99:8b:32:a6:d2:19:b4:33:a5:8c:16:f5:ba:01:d5:9a:2f:
88:df:77:62:29:5d:49:ca:c9:b5:c3:f2:22:42:35:81:be:0a:
c4:d7:54:8b:97:79:58:fa:7b:d7:17:33:e6:7c:b5:45:21:91:
35:02:66:d7:70:6e:67:a2:77:5a:5a:94:5a:93:c3:4e:10:19:
f4:a7:00:e1:2f:e0:b6:ff:b2:03:ec:34:2f:c5:a8:4b:ba:75:
68:03:dd:29:f3:4b:94:99:9c:73:ec:80:44:d2:13:49:0e:8a:
fd:3d:b4:0c:b8:d3:a1:8f:ea:d7:df:94:51:41:2b:20:50:d7:
58:53:3f:ee:76:7a:48:25:b7:56:76:9b:69:ac:8e:21:ee:41:
ba:50:28:78:8c:95:cc:36:98:55:0c:84:5a:69:f5:f9:c4:b8:
d8:c1:6a:03:74:43:bd:de:32:6f:e1:06:aa:ae:2b:4f:d5:1d:
f4:7d:07:34:04:72:02:27:89:47:ca:98:82:2d:ef:4c:25:74:
d5:bd:6b:74:e3:c4:87:d9:8e:9f:d7:ac:c9:cb:de:4a:71:b2:
e4:4b:41:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:14 2024 by rpki-client on console-fra.rpki-client.org