Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25e13b65-8050-4427-b5f3-15da550267a9.roa
File: 25e13b65-8050-4427-b5f3-15da550267a9.roa (raw, json)
Hash identifier: lFKWnlyDMGGLhWzBReI5e/Op9prEYo4MuhmPvdaGaak=
Subject key identifier: 22:8D:41:C8:38:FE:03:C5:53:E0:A7:E9:40:80:5F:53:42:F5:6C:F7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 52A47DF2A6861AACF75E2F94F37B82C50DCDACC5
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25e13b65-8050-4427-b5f3-15da550267a9.roa
Signing time: Mon 25 Dec 2023 00:00:00 +0000
ROA not before: Mon 25 Dec 2023 00:00:00 +0000
ROA not after: Mon 29 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:a4:7d:f2:a6:86:1a:ac:f7:5e:2f:94:f3:7b:82:c5:0d:cd:ac:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 25 00:00:00 2023 GMT
Not After : Jan 29 23:59:59 2024 GMT
Subject: serialNumber=e5398eba5722d3cc0cd6e3de73420d6796d544a1a05a39e03ff3f29d3d103dfb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:08:c8:dc:e0:44:93:10:ba:0b:1b:92:6a:70:
50:96:e2:95:88:d7:f0:15:96:bb:3d:da:43:8b:81:
fc:c9:a7:fd:13:8c:4c:be:77:7e:39:21:29:d4:14:
31:68:c8:10:68:04:2d:6c:ba:f1:6f:7e:e6:d2:bb:
df:e8:ce:fc:b6:39:8c:4e:79:7b:a0:a4:8d:96:fe:
90:9b:f5:f5:48:84:42:ae:23:99:48:8c:44:7b:05:
4a:e8:99:bc:53:3b:0a:61:e5:24:90:3e:83:4a:69:
03:2b:5d:97:0c:39:e9:cb:ea:43:2f:a0:19:24:3d:
6e:29:26:66:54:1b:9e:a1:c8:22:2a:e8:48:21:b6:
ef:5f:9f:b9:01:3e:67:4d:56:cb:e0:3e:d2:02:94:
b3:ad:bd:7a:24:3b:78:00:14:7e:8c:cd:49:ac:4b:
0b:5c:30:5e:00:be:f1:24:cf:34:e8:8f:5c:08:4a:
1c:28:bc:90:a9:dc:61:28:68:05:16:23:f8:3f:6c:
7f:0f:59:c1:3b:40:a9:5a:91:cb:2c:63:a5:aa:b8:
c1:3f:b5:56:7c:a2:ec:00:51:c0:48:7b:30:b1:5b:
f8:f3:8e:54:73:46:d3:99:f7:f7:4c:0c:d2:17:60:
aa:97:f4:3a:b2:41:96:20:8d:66:67:35:56:f8:b9:
5e:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:8D:41:C8:38:FE:03:C5:53:E0:A7:E9:40:80:5F:53:42:F5:6C:F7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25e13b65-8050-4427-b5f3-15da550267a9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
02:2e:5e:15:b9:35:94:1c:61:ae:32:28:fc:e9:8c:18:55:00:
d0:f3:7b:98:db:5b:57:cb:a0:c0:c3:44:65:20:81:fa:65:45:
c2:76:78:de:53:a3:46:49:4f:e4:02:0b:bb:17:af:e7:e9:86:
13:df:a9:1f:97:5c:97:e4:64:46:bc:ed:99:71:61:16:1d:d3:
ae:61:5a:61:d9:0d:86:06:b5:96:43:48:16:c3:e7:66:39:87:
eb:03:fc:39:2e:30:6f:56:1f:18:fa:14:25:d0:2e:71:56:5d:
b1:92:88:67:39:dd:bc:0c:0f:b9:b9:e2:35:a4:33:0b:0a:be:
cb:b7:a8:66:5d:bc:ea:90:35:ed:f7:a8:9f:93:a5:90:91:df:
e1:ca:86:d3:9b:6b:df:48:4d:08:c1:8a:68:d7:14:64:3c:42:
d5:80:1e:8c:9d:07:af:b6:21:de:56:5e:d2:e1:24:93:7d:9b:
9a:9e:9b:aa:96:e8:aa:83:d2:59:3b:f8:22:97:5f:59:c2:18:
55:89:1e:a0:21:9e:a2:d6:e1:e3:8a:b9:c2:fa:b7:19:99:18:
44:7a:64:93:49:0a:4d:9d:af:ab:4a:c2:da:bf:58:86:d0:39:
eb:b5:27:4d:5a:de:c5:d5:12:b1:a0:ac:14:c5:09:6d:14:54:
14:33:56:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:15 2024 by rpki-client on console-fra.rpki-client.org