Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2cf12857-a7bf-49f7-a5b5-dc566647e29f.roa
File: 2cf12857-a7bf-49f7-a5b5-dc566647e29f.roa (raw, json)
Hash identifier: 7jiiLgzjUbUOH+ZMD0wpopV+jE85mYMeVzAHj1wDkGo=
Subject key identifier: 07:9C:06:18:F3:CA:A8:4D:AE:E5:36:49:73:48:EB:52:D5:CB:C7:9B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 71A441EBEF3D09556A6E26DAAD7B40C30AD48155
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2cf12857-a7bf-49f7-a5b5-dc566647e29f.roa
Signing time: Mon 04 Sep 2023 00:00:00 +0000
ROA not before: Mon 04 Sep 2023 00:00:00 +0000
ROA not after: Mon 09 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:a4:41:eb:ef:3d:09:55:6a:6e:26:da:ad:7b:40:c3:0a:d4:81:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2023 GMT
Not After : Oct 9 23:59:59 2023 GMT
Subject: serialNumber=9063ad399663dafbda7f5d770fc847b4b62555a36f03b832a7246e79dd338fd2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1a:fe:68:2b:f7:6a:bb:b8:6a:96:65:01:1b:
f1:4c:76:aa:c8:e0:37:10:a3:0e:6a:0b:bb:ca:07:
0d:89:84:0a:94:77:6b:cc:25:2d:a1:f9:58:11:93:
bf:38:07:68:b3:5c:1a:65:6f:b9:c6:c6:9d:e9:5b:
d3:f8:09:6f:fe:fd:7a:87:bf:76:84:41:17:60:4f:
f6:22:3b:3b:1d:a7:22:5b:d7:73:e6:38:6d:c0:ca:
d3:dd:0d:54:04:d8:12:50:6c:13:64:e7:cc:91:93:
11:0e:cf:27:6a:39:5f:b2:48:8d:09:7a:9e:20:52:
74:07:69:1f:91:8c:34:db:82:7e:d8:13:ed:30:5d:
a8:65:78:80:57:5b:74:9a:fa:0d:53:a0:7c:7d:ff:
b8:f5:95:4a:28:35:ea:cd:18:91:fd:f8:07:5f:c4:
e3:5b:c2:9a:d8:50:e3:65:b6:b5:79:cd:22:a8:6b:
94:7e:e7:8f:2d:17:2b:95:4c:2c:4d:eb:56:a2:34:
c7:df:93:2b:06:20:8b:48:cf:83:81:70:3f:17:32:
53:c1:9a:4f:ab:e7:b8:54:c8:15:c2:a6:54:3a:00:
7f:88:e0:a8:f5:12:8b:e7:39:da:db:9b:ea:89:a3:
af:64:99:f7:c6:80:d7:cc:54:ae:cd:73:a9:db:3a:
3d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9C:06:18:F3:CA:A8:4D:AE:E5:36:49:73:48:EB:52:D5:CB:C7:9B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2cf12857-a7bf-49f7-a5b5-dc566647e29f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:04:14:af:e7:6f:a1:f8:81:32:14:35:7f:06:b3:26:6a:f1:
91:69:29:7a:f3:05:31:b2:10:35:a4:22:73:ce:89:32:ad:e4:
ab:9d:4e:d7:b8:a1:7c:ff:0b:ab:70:92:da:76:13:5c:df:61:
07:89:41:fa:6e:70:57:42:04:54:b3:c1:30:f5:09:76:ca:90:
44:01:c9:9c:ea:d7:70:96:ef:f9:3d:03:d2:85:e3:75:a7:da:
c9:92:73:f6:60:0f:ef:c2:c1:f6:78:b9:48:90:d1:86:55:61:
63:ef:1f:ca:a7:0f:d5:0b:a5:85:d0:ca:88:9a:98:fe:dd:c5:
50:fe:f3:dc:62:5e:a4:af:68:ed:0c:bf:2d:eb:f6:9e:b5:d2:
68:47:83:2b:35:a9:28:18:79:b1:92:66:8e:b4:07:6b:a8:a9:
56:30:ea:3a:63:bc:bb:c8:82:f9:07:65:af:89:21:ca:ad:cd:
54:35:88:66:78:17:b8:6d:97:47:1a:57:05:d1:ab:01:04:be:
2e:85:b2:0f:1c:4e:3b:71:fb:43:2c:85:ef:71:66:42:ad:a9:
60:01:7b:72:dc:83:9f:5e:b0:7a:dd:5d:26:59:5d:8e:a3:e6:
c8:7b:51:05:54:ff:53:a6:f9:eb:90:05:8d:f1:63:a1:4f:8e:
78:d3:c5:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:58 2024 by rpki-client on console-ams.rpki-client.org