Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/22340df5-cb1f-4c72-8b42-dd1cfb624c64.roa
File: 22340df5-cb1f-4c72-8b42-dd1cfb624c64.roa (raw, json)
Hash identifier: XnZXU/z4h3r5vEHYxigv4CR/L9fxPMRg1HBRJOUiW+Y=
Subject key identifier: D0:2D:DA:A3:BC:C7:F8:4F:4D:69:A3:D9:A0:94:86:62:5E:7E:D4:76
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7F6C3F2742AC2C5F5954222293370180750042F5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/22340df5-cb1f-4c72-8b42-dd1cfb624c64.roa
Signing time: Fri 22 Mar 2024 00:00:00 +0000
ROA not before: Fri 22 Mar 2024 00:00:00 +0000
ROA not after: Fri 26 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:6c:3f:27:42:ac:2c:5f:59:54:22:22:93:37:01:80:75:00:42:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 22 00:00:00 2024 GMT
Not After : Apr 26 23:59:59 2024 GMT
Subject: serialNumber=dbd9aaf3b24c4557a7a75f7e394a4941963266fb19c67976c9f10e536cccc495, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f2:d0:83:18:b1:aa:6c:8c:2f:5b:41:63:c0:
d5:5b:0f:65:a7:f2:6b:94:2b:11:dc:a1:a2:0b:c5:
8d:63:bd:f8:40:63:7c:29:a0:e7:4c:16:10:e7:64:
d7:10:f4:fa:55:c4:9c:54:71:d8:48:59:62:49:bd:
90:e8:3d:d7:14:02:1b:55:04:5b:af:bc:03:26:16:
42:63:de:e0:99:f8:79:09:91:ac:76:e7:8c:3a:18:
f7:38:1e:b7:67:b7:7d:a7:86:2e:70:ff:1c:a6:af:
d8:b8:c1:82:fb:80:28:ae:99:ea:4e:c9:59:2f:cf:
58:60:ab:ec:69:71:18:55:ef:c6:ff:92:ec:3b:df:
b7:70:4c:eb:43:65:12:0d:fb:40:9e:26:81:55:7b:
b5:8c:61:e7:02:05:41:a0:a6:30:f0:61:19:df:b8:
10:19:0b:13:9a:e0:64:fa:30:1b:4f:8f:9d:98:39:
b4:c1:19:c4:3f:96:9a:f1:3c:7b:db:fc:8d:cd:17:
54:8a:fc:76:40:45:76:d6:4e:a4:e1:32:11:a6:e7:
8f:45:af:6d:7e:3f:3b:cf:16:3b:8b:11:19:61:55:
c3:41:6d:3b:1f:f5:8d:a8:f7:17:68:c2:e6:62:5d:
de:be:8a:17:ae:1a:01:1a:1e:54:81:07:35:d0:e7:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2D:DA:A3:BC:C7:F8:4F:4D:69:A3:D9:A0:94:86:62:5E:7E:D4:76
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/22340df5-cb1f-4c72-8b42-dd1cfb624c64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
49:db:8f:d3:4b:84:31:e1:85:8d:7d:99:b4:e4:75:ac:cd:a3:
ba:e9:84:76:d6:f7:1d:c5:25:5c:63:8a:37:1e:ce:ad:27:08:
5e:23:8e:52:ef:53:be:dc:52:c8:87:2e:0d:74:31:d1:69:b7:
f1:df:de:2a:54:bd:e2:18:68:a8:9d:db:67:aa:1f:7c:d0:5e:
26:4c:2d:fb:a9:88:d6:aa:7b:ec:29:d0:ef:4c:76:a0:d2:bf:
b7:3e:e9:cb:dc:0e:90:31:23:b6:24:0a:90:d1:45:45:e7:58:
4f:10:20:a3:b8:12:bf:ac:4a:f8:99:be:6a:12:fa:a9:80:9f:
a4:79:a8:7b:1e:86:0a:b5:b5:6d:9c:91:2d:d8:be:f6:72:00:
8d:19:c9:d6:da:d3:44:ec:c0:ee:d9:ed:bf:58:0b:27:37:cf:
a3:f3:fc:29:82:19:b8:08:c4:22:3a:ca:ca:9d:9d:58:51:7d:
be:7d:11:81:5b:be:9d:0b:eb:68:9d:e1:bf:45:b8:4e:7a:03:
8b:ae:7c:a1:18:7e:24:77:3e:b1:61:f5:8f:c2:9a:2a:c3:d7:
0d:16:0e:cf:a7:55:01:02:ff:48:ea:ce:58:33:62:cc:76:c0:
80:8c:e4:d8:4e:55:39:22:8b:69:d7:05:37:33:4f:a8:a2:12:
ed:34:ec:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:56 2024 by rpki-client on console-ams.rpki-client.org