Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20f3eacf-f2a3-445c-9034-0e342cd236d1.roa
File: 20f3eacf-f2a3-445c-9034-0e342cd236d1.roa (raw, json)
Hash identifier: oIKx1JAoLuv99L2NaJZcOp0wP8aiH7b+AhqMSkzxrqY=
Subject key identifier: 82:F8:B1:EC:BC:BA:3F:F1:49:A9:E9:9D:61:59:30:DB:3C:72:22:64
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 79250455B80C8AA906662698C7ECB0A46B44E405
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20f3eacf-f2a3-445c-9034-0e342cd236d1.roa
Signing time: Wed 27 Sep 2023 00:00:00 +0000
ROA not before: Wed 27 Sep 2023 00:00:00 +0000
ROA not after: Wed 01 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:25:04:55:b8:0c:8a:a9:06:66:26:98:c7:ec:b0:a4:6b:44:e4:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 27 00:00:00 2023 GMT
Not After : Nov 1 23:59:59 2023 GMT
Subject: serialNumber=0c968f3c1f35d2234e683b614d5422a3545f2f1586db6074e78f2988a8f02af8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2f:9b:9b:b2:79:ff:bb:1f:5f:c8:32:47:01:
b8:e3:be:76:82:a9:f0:30:9d:39:f4:58:3b:b1:d9:
85:df:8e:99:5f:9e:eb:da:3a:01:1c:bf:ee:4d:d7:
b4:86:1d:f6:bd:a4:2e:e0:89:7f:05:bf:f6:ae:0d:
29:df:49:30:0c:7e:e7:4e:23:ee:94:d2:6f:fb:2c:
c5:25:83:5a:2c:b0:fe:f8:0e:b8:6b:a8:c0:60:25:
17:fc:29:aa:55:0d:b9:b3:63:c5:81:59:8d:10:48:
59:d0:0a:87:0a:cd:cf:b1:96:b6:8d:b1:82:96:83:
53:b2:7c:13:17:22:f4:be:b8:a6:15:d7:72:86:67:
18:13:a3:76:87:6f:96:17:9b:06:0f:6f:49:25:53:
24:96:c2:21:c9:9b:9f:f5:4d:0c:48:f7:88:af:16:
63:7f:7f:a3:96:81:01:78:73:3f:be:e7:d9:d9:9f:
33:ce:4c:62:4c:21:cc:ee:e2:77:55:c5:d1:76:4a:
69:8a:72:81:40:f0:c9:4f:36:ac:37:22:73:ea:2b:
f7:53:85:57:ce:08:8b:23:a3:e2:89:43:a2:b4:1d:
f0:1a:cd:df:46:3a:80:4b:15:19:a7:48:8d:4b:4b:
80:2b:a6:44:ba:19:1f:50:32:35:fb:3c:1c:cb:3e:
6a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F8:B1:EC:BC:BA:3F:F1:49:A9:E9:9D:61:59:30:DB:3C:72:22:64
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/20f3eacf-f2a3-445c-9034-0e342cd236d1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:22:10:d7:bd:c2:4c:06:a8:6e:ce:76:9f:b6:ae:b1:2a:36:
aa:27:70:d3:0c:1a:d7:ef:7f:9b:b6:2d:14:d5:da:6d:20:ba:
97:b5:fa:fa:67:a4:11:db:7f:69:8f:99:a1:45:56:10:bd:10:
df:95:d7:1f:36:25:ae:7a:cf:eb:1c:5c:f5:a9:4d:be:0d:d9:
aa:0a:e5:a3:9c:84:9c:90:23:fd:8d:01:0c:2c:fe:64:ff:de:
35:34:1f:ff:95:fb:c9:76:be:01:ef:c4:99:b0:8c:10:4f:80:
0d:98:7d:86:53:15:e7:ed:18:ef:a0:46:5d:7f:50:24:65:17:
df:28:4f:03:4e:08:43:13:ac:42:cf:ae:17:50:75:8e:87:65:
fb:99:80:f4:05:3e:95:e1:e9:2b:ab:f9:65:5c:ce:5d:f6:9a:
90:7f:2c:2b:f3:ae:bd:d4:c3:4c:ac:bd:aa:d4:35:f1:47:91:
b3:cb:d4:52:b2:0d:6f:65:2f:de:ce:83:0d:36:cb:2e:5f:f5:
4e:c4:a6:fb:fb:b3:c5:26:28:0d:f9:3e:87:5d:29:64:1b:46:
42:9c:7f:a7:1f:64:8e:93:25:fa:5b:ec:c4:95:6d:a9:d8:1f:
31:67:ba:2e:16:b7:87:70:8d:6a:93:d5:5d:9c:81:ab:65:11:
76:8e:bb:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:55 2024 by rpki-client on console-ams.rpki-client.org