Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/274921a7-a1f9-45fa-ac01-9c144fc0f66c.roa
File: 274921a7-a1f9-45fa-ac01-9c144fc0f66c.roa (raw, json)
Hash identifier: fC+2YU3WMPc5ZFn16VQPdVc6THzcqpKKvk+IZrgIPdM=
Subject key identifier: 7D:E1:C3:84:D7:E0:73:0B:63:1C:16:7A:53:83:A0:53:ED:1C:6C:27
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 42F73E9093C40B944248761E692A807F00BB7535
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/274921a7-a1f9-45fa-ac01-9c144fc0f66c.roa
Signing time: Mon 04 Sep 2023 00:00:00 +0000
ROA not before: Mon 04 Sep 2023 00:00:00 +0000
ROA not after: Mon 09 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:f7:3e:90:93:c4:0b:94:42:48:76:1e:69:2a:80:7f:00:bb:75:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2023 GMT
Not After : Oct 9 23:59:59 2023 GMT
Subject: serialNumber=b12a6118f4a5e018a1a0358aff7318170a763c3856b2d41dcded0c562d958e33, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ab:dc:70:40:f7:51:6b:da:99:66:e9:9d:1a:
0e:69:42:aa:06:43:02:49:ff:5a:d1:48:74:ac:f6:
4e:48:c6:85:92:23:e2:01:da:7c:70:ba:98:89:0d:
1c:47:23:d8:03:e5:3a:cc:9b:b6:a5:92:3e:ae:1b:
47:5b:cf:44:c5:7f:50:8d:36:95:b1:c4:28:3d:cb:
fe:6a:43:fa:9b:cf:33:48:b0:12:f2:62:df:c6:32:
8d:4b:c1:74:1a:2f:da:4a:b1:61:4d:ea:86:4b:68:
e7:ee:85:44:3f:0d:f0:18:55:5b:27:d2:4e:21:0d:
2a:54:96:54:86:2c:37:3d:70:b0:e4:b6:f6:cf:2a:
88:46:67:59:81:93:9d:f0:33:1f:70:5c:63:35:d1:
ae:0d:a4:72:4d:0a:b4:d5:16:2f:d3:00:21:85:75:
05:09:a2:26:55:3a:b7:52:15:77:63:08:f5:5c:3a:
27:17:77:f8:4c:e1:a4:54:89:b6:4d:99:e1:72:6e:
ab:29:45:91:69:ea:d5:b5:b6:a1:6f:f3:3e:5b:71:
5a:19:39:c6:7b:12:37:03:62:11:69:d8:4c:58:56:
70:46:5b:76:0a:ae:57:cc:af:39:14:bd:13:66:d0:
39:a1:b1:f7:c5:a5:03:0b:1c:a7:a9:cc:a6:0a:a6:
7b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E1:C3:84:D7:E0:73:0B:63:1C:16:7A:53:83:A0:53:ED:1C:6C:27
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/274921a7-a1f9-45fa-ac01-9c144fc0f66c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
80:32:6c:64:44:94:ce:d9:3d:5e:f0:47:cf:e3:14:d1:cb:a9:
07:ae:d3:d2:c9:33:07:d4:1f:bc:4d:aa:19:cc:12:0e:5a:a7:
f4:f7:7d:1e:d9:4a:6d:6e:94:e1:7c:2c:12:e3:a1:05:b1:ec:
e3:5b:2a:ad:23:3a:d1:7a:20:11:27:63:31:a3:37:58:a7:9f:
6f:9a:18:b1:7a:b8:1f:b7:91:c6:49:25:fc:74:e7:6c:24:df:
0d:24:89:0d:5f:c9:ce:eb:0f:d6:7a:dd:ec:7b:86:df:5a:fe:
52:69:d6:b6:a8:01:3e:0d:4e:2d:d9:49:fd:e1:f9:eb:10:ca:
cd:54:d8:1f:6f:83:c3:5b:3e:b0:4c:c0:32:ef:5d:0b:4f:d5:
de:c9:55:37:70:cc:cf:61:23:a3:d6:ab:7c:93:42:1f:90:1e:
70:35:a6:e2:f3:07:99:e0:f4:28:42:f2:04:9a:35:ff:c1:ee:
63:52:75:77:c6:01:32:6f:a8:7b:cd:ad:66:cb:48:38:ee:26:
a0:3c:e9:62:8c:a2:88:f9:58:57:d2:38:38:b9:cc:43:45:74:
b8:4e:0b:84:d9:5a:7d:76:10:45:3d:49:9c:18:b7:ed:b7:73:
9b:34:56:1d:d6:0b:f8:39:bc:e8:17:ae:f7:fe:78:5d:30:ef:
0c:71:91:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:15 2024 by rpki-client on console-fra.rpki-client.org