Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/29ef1447-dee7-4a81-a4f7-dcd6355da602.roa
File: 29ef1447-dee7-4a81-a4f7-dcd6355da602.roa (raw, json)
Hash identifier: 5PU0lC1PGJVJUxXViSy+AsBrDThvXp0uWitNVYfaT2g=
Subject key identifier: 98:23:29:9C:B5:C3:82:7D:43:3E:4E:F4:62:6D:63:03:87:20:94:29
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 244C8377AB9DB305B10E95EC4ABA6F2D1DEF6E81
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/29ef1447-dee7-4a81-a4f7-dcd6355da602.roa
Signing time: Thu 10 Aug 2023 00:00:00 +0000
ROA not before: Thu 10 Aug 2023 00:00:00 +0000
ROA not after: Thu 14 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:4c:83:77:ab:9d:b3:05:b1:0e:95:ec:4a:ba:6f:2d:1d:ef:6e:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 10 00:00:00 2023 GMT
Not After : Sep 14 23:59:59 2023 GMT
Subject: serialNumber=2a22c2efea7ae1a45d515bd84566cc651c7149a0ebef5e1852242acdd347b69e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2a:fa:bc:41:74:95:4b:df:1c:c7:6d:ff:a7:
af:bd:42:88:fa:b5:00:e4:58:dd:4a:e0:67:7c:64:
a8:9f:37:6f:a8:55:78:29:27:e6:9f:e4:66:84:09:
82:c3:90:b4:c9:5a:cd:9e:93:58:a8:aa:85:b2:f2:
56:4a:7d:7c:a4:31:1a:3c:57:24:ec:8b:c2:32:0f:
28:0e:41:01:f7:6c:a6:cb:d1:5d:53:03:22:70:aa:
49:7e:f2:26:81:52:5b:77:a8:24:42:56:2b:3b:e8:
8b:00:74:ce:40:14:64:36:85:34:7e:c2:f8:6f:c4:
37:83:d2:f1:ee:84:45:e5:a9:cb:b8:25:5b:b1:79:
e4:ab:09:82:6e:34:16:10:61:a1:64:85:88:39:6b:
3e:7f:06:00:72:ef:36:0c:e1:32:19:d9:10:d6:a4:
ce:b1:18:e9:fc:4a:cd:7f:17:e0:be:15:93:a7:84:
15:1b:67:65:25:61:1f:20:92:3f:8e:e6:bf:e0:8d:
97:5a:6c:66:22:50:76:61:9e:de:6c:14:86:a0:e1:
e3:9b:7b:12:34:aa:d0:2e:e7:ee:62:33:ac:f8:00:
9d:1b:cd:02:a2:f2:f2:9d:4c:23:79:cb:07:aa:d8:
af:4a:46:03:d6:e1:7a:47:ba:6d:eb:db:3a:9c:65:
db:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:23:29:9C:B5:C3:82:7D:43:3E:4E:F4:62:6D:63:03:87:20:94:29
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/29ef1447-dee7-4a81-a4f7-dcd6355da602.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
01:1c:33:c8:3e:f3:c5:0e:56:b8:0c:97:5d:55:4d:2d:e9:c7:
11:e0:ba:04:73:e3:1a:9c:8b:e2:e2:a2:04:23:eb:f7:82:99:
b8:b9:1f:4b:a0:42:5c:13:f8:0c:14:33:dc:0a:28:73:c5:9a:
2d:8d:4a:b7:13:4e:21:56:f4:f3:13:e1:bf:b5:f4:4f:95:1f:
38:bf:4c:f2:90:68:20:c4:ff:98:1f:fd:29:eb:2b:6f:ba:26:
2b:70:97:7f:de:71:b2:1c:2b:06:35:81:da:64:7a:8e:9f:20:
99:cd:d5:94:3b:ea:b6:8d:f1:ae:c6:54:b2:27:62:6f:41:57:
36:21:63:a4:d0:c5:97:69:76:cf:76:42:80:51:6b:a6:45:11:
4f:f2:50:93:68:6a:63:bc:cd:85:f0:46:80:e9:3c:eb:32:09:
6c:42:d0:8e:d9:9f:ed:9a:d8:c2:d5:47:62:e6:39:5f:75:e0:
8d:35:46:95:e2:14:f2:08:27:d1:2d:a1:13:e0:fc:26:e7:57:
6d:48:72:a2:65:40:3c:70:ec:db:4a:ff:05:d7:84:10:a4:06:
4d:42:5c:ce:17:12:ad:c7:e5:a3:40:65:fd:8a:87:52:64:2c:
08:9f:9d:a4:53:18:9d:8a:54:30:da:33:51:58:a1:4a:1d:22:
6a:47:c3:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:57 2024 by rpki-client on console-ams.rpki-client.org