Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/24d60e1b-b1ac-419c-80a7-c2ac50d61041.roa
File: 24d60e1b-b1ac-419c-80a7-c2ac50d61041.roa (raw, json)
Hash identifier: s2zPt79FoZqk3BlqZaJqSEi6dkrzaYYUfDcObcNsE58=
Subject key identifier: 44:F5:6A:AC:88:55:0E:4F:CB:BC:BE:B4:51:B7:E8:1B:7F:6D:F4:71
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6228ADF22384F1E9784F1910D19C1FE9CE1C9CFE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/24d60e1b-b1ac-419c-80a7-c2ac50d61041.roa
Signing time: Sat 07 Oct 2023 00:00:00 +0000
ROA not before: Sat 07 Oct 2023 00:00:00 +0000
ROA not after: Sat 11 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:28:ad:f2:23:84:f1:e9:78:4f:19:10:d1:9c:1f:e9:ce:1c:9c:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 7 00:00:00 2023 GMT
Not After : Nov 11 23:59:59 2023 GMT
Subject: serialNumber=75a6f5d5649188d16c89e792cd95dc072d51c987ac7a1a7c1d10335bc779b5ab, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0f:a3:4c:b7:de:2f:53:ef:62:22:8d:31:6e:
2f:7a:a9:00:be:f4:06:43:7c:a2:be:d8:fc:62:f9:
2e:e4:e0:15:72:c7:8e:93:d9:70:f0:33:35:8f:0b:
6c:b8:2c:b0:5a:37:b2:8b:5c:7d:05:32:31:d4:33:
fe:e0:d6:1e:8b:27:b2:49:af:f4:8c:f7:cc:6a:23:
cc:cb:18:7e:9b:b4:7f:a8:a0:b0:8d:ea:a5:2d:db:
02:53:c7:70:29:03:10:39:f2:51:3b:ec:9a:e5:ef:
26:5e:12:d6:09:75:34:f3:09:c4:7c:b2:20:d7:69:
61:48:86:b5:9a:ac:31:37:0a:6b:9f:57:04:e4:4f:
22:8b:1e:d6:dd:f0:9d:a7:3a:b0:70:97:e8:fb:6f:
c8:62:87:b6:ad:8f:1a:d9:22:7f:f2:3b:48:79:f6:
f8:90:92:08:81:1f:d9:ba:7b:fb:2e:a7:a5:f8:04:
76:f3:8e:ce:6a:96:63:e4:ed:f8:f6:54:72:44:db:
43:1f:65:2c:c4:73:73:a6:92:af:56:f5:c4:d4:25:
44:25:eb:79:cc:c4:bb:10:ba:c9:b1:69:c5:f9:54:
40:79:d2:77:ac:c5:6f:98:55:65:1b:5f:10:7c:4c:
29:99:99:53:73:79:c6:84:fb:83:63:e8:74:b3:e5:
bf:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F5:6A:AC:88:55:0E:4F:CB:BC:BE:B4:51:B7:E8:1B:7F:6D:F4:71
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/24d60e1b-b1ac-419c-80a7-c2ac50d61041.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
52:2c:b7:13:ad:77:8f:d1:13:62:da:59:0f:c6:e0:d2:72:c5:
4c:87:d1:69:f1:9a:e8:fe:60:db:a3:2e:3b:37:07:fe:73:e8:
07:58:f8:95:f4:f4:7e:bb:b2:5d:6b:33:83:f9:87:59:9e:dc:
bb:f0:cc:28:18:44:52:8b:09:9a:d8:af:83:f0:06:ef:e5:0d:
78:2d:ec:3e:a7:16:17:5a:1d:13:e1:d2:e5:b6:28:f9:ed:62:
25:96:ad:0a:5f:c5:e8:b4:72:e6:16:d9:90:2f:5e:7b:fb:fe:
52:96:8b:82:bf:f0:12:df:c5:2d:3b:a8:f3:f9:64:a7:54:58:
b5:8d:b8:e4:b8:5b:33:fb:b3:f6:26:35:d1:53:22:ee:ef:64:
ed:f8:38:f1:33:15:98:5c:77:da:e9:51:35:93:4c:38:d4:85:
d3:c6:da:5d:a1:01:9e:b3:85:0e:52:06:50:6f:55:7d:b0:1c:
ad:33:0f:3d:77:6c:94:f5:8a:cb:59:d0:dc:f2:f6:44:ae:2d:
78:4e:77:c7:5c:15:a4:a2:0b:80:b0:2a:52:d0:e1:ae:fd:2e:
b7:44:c4:1a:48:38:61:a6:58:91:67:44:c8:53:01:84:a9:c5:
6e:73:c1:4c:7e:3d:1c:7d:90:02:ff:fb:ec:87:e2:22:52:04:
11:49:b0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:56 2024 by rpki-client on console-ams.rpki-client.org