Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25a1855d-2bf4-4ab2-9e40-25ac19a8be0d.roa
File: 25a1855d-2bf4-4ab2-9e40-25ac19a8be0d.roa (raw, json)
Hash identifier: pki3ThsXXtqisN9Q/GY0TMB7qYTyYp0BGUenG6DACZA=
Subject key identifier: 96:44:62:AD:B4:E0:DF:E8:89:EA:D5:AB:B7:91:87:ED:97:CD:BE:2F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5B75D83728F402AEBABA1D5567A947EAE50C3C7A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25a1855d-2bf4-4ab2-9e40-25ac19a8be0d.roa
Signing time: Thu 14 Sep 2023 00:00:00 +0000
ROA not before: Thu 14 Sep 2023 00:00:00 +0000
ROA not after: Thu 19 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:75:d8:37:28:f4:02:ae:ba:ba:1d:55:67:a9:47:ea:e5:0c:3c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 14 00:00:00 2023 GMT
Not After : Oct 19 23:59:59 2023 GMT
Subject: serialNumber=00e6ab0f38d258f4723dda096f4e566634bff15d37145126e0b6aa9572cf9dae, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:72:43:0a:cc:4c:ed:41:54:19:03:d6:32:cc:
cf:c9:97:94:9c:3c:3d:81:b1:49:a1:ba:17:35:d4:
d4:3d:3e:83:88:97:ae:48:48:27:c1:74:9f:cb:e3:
c9:cd:51:0d:02:0a:48:6f:35:f8:19:93:da:ab:ac:
e7:08:5e:02:a1:78:77:ee:c1:42:a5:86:44:3d:fd:
ef:b5:99:d1:b8:34:8a:c6:5b:c7:27:7c:ba:a8:b6:
23:9b:3f:9c:b1:7a:c1:b0:23:24:a2:af:6a:22:3b:
22:43:63:b0:d6:54:2f:14:0c:5f:8c:f9:9d:cb:48:
56:36:1a:3f:82:70:ca:24:22:83:df:5f:d1:a7:31:
96:eb:09:d8:14:08:cd:42:19:d6:e8:1f:24:c1:ec:
2c:08:05:f3:fe:02:36:07:6b:20:ba:71:c7:c7:bf:
5d:2f:27:04:29:10:4c:a2:91:db:77:de:e0:6f:74:
0d:59:e7:72:53:95:ec:c2:67:2a:68:29:6d:9f:cd:
3a:45:84:86:58:d5:b7:19:4e:f7:70:01:fc:48:d6:
07:ac:a2:e5:2c:b5:ab:53:1e:d9:8c:ef:c8:e1:5a:
d2:a1:c5:03:89:7d:bd:ad:74:b4:21:5a:8d:19:a7:
fc:71:01:3f:59:2c:10:e4:ec:5d:d7:62:70:ae:a6:
dc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:44:62:AD:B4:E0:DF:E8:89:EA:D5:AB:B7:91:87:ED:97:CD:BE:2F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25a1855d-2bf4-4ab2-9e40-25ac19a8be0d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
79:36:7a:e6:f6:42:7c:08:bf:40:58:eb:9d:b2:fb:3a:1f:57:
eb:eb:a7:98:63:4d:54:bd:0f:68:07:e1:3a:39:8e:d4:29:d7:
af:86:e1:1e:30:a2:9e:d2:0e:fc:06:c0:95:c3:bd:fe:fa:50:
ef:24:f4:6c:31:a8:93:13:c1:e0:5e:99:17:9a:82:7e:41:b7:
71:fd:1b:7b:f3:8b:b2:05:bd:e1:05:92:c2:f9:b3:da:d9:d7:
a4:c9:d3:21:21:4c:c8:9f:7c:c0:af:8a:a0:8f:19:a3:6e:ea:
54:60:97:32:03:f2:fc:95:e6:b9:4e:f4:ec:85:7a:26:d5:8c:
02:1b:a5:1f:d5:9a:d0:f3:1f:32:40:2c:d5:f2:2d:47:43:b5:
56:2a:e7:54:aa:34:21:55:70:ca:a1:33:c5:33:5e:02:83:0b:
63:77:0b:0f:ef:6b:7c:9c:05:83:8b:22:67:0d:6e:d1:bc:2f:
83:c2:f5:31:15:fb:bb:2a:da:0e:7e:24:f7:c0:0f:1e:6c:e6:
92:c6:28:7b:69:29:97:60:c4:ab:04:13:36:ca:d3:88:d2:4e:
01:07:33:b8:e3:fd:97:5a:90:c1:f3:08:76:09:2c:ee:b4:73:
1f:16:58:d1:ef:e0:2c:d3:34:3d:09:21:46:33:6c:11:f6:b8:
70:8d:f0:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:57 2024 by rpki-client on console-ams.rpki-client.org