Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2be9b7a4-8638-46d6-8bf4-ce27f167308a.roa
File: 2be9b7a4-8638-46d6-8bf4-ce27f167308a.roa (raw, json)
Hash identifier: 4jH7ZM3AbkWB+dny8bEGgjTh9ZoX78EeyItT3Mx8h5o=
Subject key identifier: 6F:BD:FF:7C:27:AA:83:30:43:C9:B3:56:F7:E7:22:4D:A5:09:AF:FB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 54C518F985666EAD8C6D63198B8D493767E02531
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2be9b7a4-8638-46d6-8bf4-ce27f167308a.roa
Signing time: Tue 12 Mar 2024 00:00:00 +0000
ROA not before: Tue 12 Mar 2024 00:00:00 +0000
ROA not after: Tue 16 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:c5:18:f9:85:66:6e:ad:8c:6d:63:19:8b:8d:49:37:67:e0:25:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 12 00:00:00 2024 GMT
Not After : Apr 16 23:59:59 2024 GMT
Subject: serialNumber=409c28b43e59eb81e71ad2fc956a0986a546573dc88fc1dd7d82ee38d0c3d861, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4b:47:26:ba:7c:3a:b4:29:3f:ce:5d:f3:9a:
61:a0:cb:33:fa:bf:f2:20:9d:f3:a9:fd:cd:a0:40:
65:a2:cb:c7:38:ba:ae:66:1e:78:7d:e2:a4:2c:d3:
7b:01:d8:15:7d:12:fb:32:1b:d1:dc:eb:86:c8:77:
c4:78:d1:92:db:e4:72:b4:3d:86:3a:a4:d4:12:f8:
eb:bd:f2:23:32:13:61:3c:60:ef:8f:80:a4:f1:dc:
13:30:72:c4:85:e3:55:65:ad:f8:dc:ee:34:fd:bf:
64:44:67:91:21:be:1d:1f:ba:71:1a:0f:51:aa:7f:
89:24:3d:56:0c:b0:ff:e6:35:f4:1b:73:1d:42:86:
9b:7f:de:87:6a:b3:2b:89:4b:90:bf:d0:42:f5:ab:
16:0c:ec:c1:57:77:95:25:d4:dc:b2:81:71:d5:3f:
96:88:91:6b:a1:f1:66:51:2a:b4:5d:05:ba:a7:3e:
90:83:d0:86:70:79:68:95:be:91:bc:42:b5:8e:6e:
34:0d:2c:a0:07:a5:70:44:1c:98:e0:a5:44:4e:c0:
6a:7f:ec:db:29:9a:cb:0f:ca:80:22:c2:23:18:eb:
ad:e9:3b:49:81:2c:2b:5c:2a:ba:b6:75:e2:b6:cb:
5e:67:a3:eb:7c:83:3b:ce:d5:6a:3f:1c:00:a9:41:
bb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:BD:FF:7C:27:AA:83:30:43:C9:B3:56:F7:E7:22:4D:A5:09:AF:FB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2be9b7a4-8638-46d6-8bf4-ce27f167308a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
00:0c:8d:f6:52:c7:65:ae:e8:ec:a7:d9:52:81:16:2e:0c:55:
5b:09:90:0c:e5:78:e7:c9:e3:67:69:d2:dc:29:b5:ac:fc:0e:
d1:95:d5:c8:5b:b8:13:c2:72:ab:13:90:6c:e6:38:91:e0:38:
65:98:d1:bf:73:62:f7:a2:90:94:68:89:02:90:29:a8:1d:1a:
84:57:ba:58:8a:97:29:bf:de:a7:d8:a0:b6:88:6b:57:e2:59:
8d:ba:b8:d3:98:99:7e:dd:fe:74:e2:9b:85:d2:74:79:1e:09:
48:58:53:0d:73:65:53:31:8d:ba:d5:ba:c9:98:53:9c:df:6c:
ae:6d:09:14:91:3f:24:0b:ea:7a:5c:6e:4b:f3:a4:2c:4c:41:
1a:8a:3f:1c:b3:0c:8e:84:4f:9a:7d:72:d4:48:f8:25:46:5a:
d4:09:5b:10:e2:3f:6d:73:21:82:c4:ac:b6:bf:44:31:55:1f:
c1:b0:15:ac:a7:d1:4f:7e:1e:04:47:3d:d8:e9:00:44:21:48:
ba:16:c7:af:59:5b:13:f0:99:cc:e8:bc:df:5f:51:69:30:4f:
ba:76:7e:92:e7:91:ed:2e:11:b2:d7:23:d7:da:8f:05:12:3a:
c1:01:2c:53:97:f2:d4:34:78:08:b0:bc:fd:fe:b9:2e:70:6c:
51:d2:9b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:58 2024 by rpki-client on console-ams.rpki-client.org