Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d6abc13-32f5-4568-a58a-e62629a4eae4.roa
File: 2d6abc13-32f5-4568-a58a-e62629a4eae4.roa (raw, json)
Hash identifier: pfxBQ8lV402C0KCmUtfpME/784sJoBuw10tQN/xh7vw=
Subject key identifier: F5:E0:78:94:82:52:3E:98:53:16:02:5A:57:14:7F:51:93:7C:4C:87
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0A1E70DAE095246058617D4BEF279D7F16D81192
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d6abc13-32f5-4568-a58a-e62629a4eae4.roa
Signing time: Sun 30 Jul 2023 00:00:00 +0000
ROA not before: Sun 30 Jul 2023 00:00:00 +0000
ROA not after: Sun 03 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:1e:70:da:e0:95:24:60:58:61:7d:4b:ef:27:9d:7f:16:d8:11:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 30 00:00:00 2023 GMT
Not After : Sep 3 23:59:59 2023 GMT
Subject: serialNumber=4d465a9a81428fd76dd8e0925d3dfb4d9c9f4a44587ab11d25f3550b93e55b55, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4f:7b:6f:ea:21:1b:2d:6b:2f:03:f6:32:72:
d3:2b:6d:59:15:d4:5f:59:c3:6d:62:23:4e:c9:e9:
0d:d0:66:38:a9:5a:66:5a:25:65:a2:e8:73:78:a5:
a0:a9:09:4c:e6:96:91:f9:e0:da:78:d0:53:eb:66:
5b:05:e1:96:47:27:c2:68:3e:6b:7b:92:14:c8:d2:
8b:d5:41:42:aa:1b:0c:b0:7a:71:80:43:cb:4c:7b:
f9:ba:39:52:95:24:ef:b6:5d:dd:fa:fc:06:70:66:
1f:b9:8b:4c:d0:b0:63:99:ba:13:ee:d1:0a:d0:0d:
15:ec:b6:67:c5:92:45:87:a6:44:c0:cb:56:c6:4d:
9d:36:2b:35:fd:c5:0b:10:cd:94:19:1c:38:04:2e:
b2:59:7b:61:69:65:f5:66:23:0b:dc:7a:fa:85:d8:
ac:a7:7b:c8:7c:e9:f9:42:f1:95:0e:e9:e0:a9:47:
fc:0c:4c:e6:78:5f:bc:c0:4b:15:e3:8b:ce:3c:98:
54:bf:3f:c6:14:59:62:10:34:33:8f:af:09:af:d0:
e6:28:bd:7d:90:a7:f7:5e:55:d4:7d:d0:7a:a8:8c:
79:a8:06:68:ad:79:0c:6a:53:a1:da:f4:33:7e:f6:
86:2b:85:c8:e5:f8:de:de:77:55:dd:a7:3c:54:92:
83:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E0:78:94:82:52:3E:98:53:16:02:5A:57:14:7F:51:93:7C:4C:87
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2d6abc13-32f5-4568-a58a-e62629a4eae4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
58:9f:a6:6c:39:4f:2d:02:37:fb:68:a5:bd:be:58:69:5a:81:
3a:87:2d:31:94:a5:da:5a:ce:32:73:60:de:5a:e3:80:5c:32:
ff:b7:48:28:a6:92:a7:d4:b5:43:82:1b:05:f9:5c:fb:d2:2d:
a3:44:06:00:c0:85:28:5d:2c:26:32:19:d3:75:84:02:c7:47:
dc:93:19:a9:a0:7d:ec:c4:6a:e7:92:f2:b8:be:8a:56:21:d0:
27:b1:7a:7c:e9:26:35:b5:1f:87:bc:58:e4:47:f5:fd:ca:3b:
88:c8:51:4a:63:71:e0:4c:b8:28:dc:fc:87:d4:3d:cc:5d:eb:
71:68:5d:bf:c9:05:1d:de:1b:62:19:e4:68:1e:30:f9:a8:15:
68:67:f7:31:7d:25:7e:d2:d4:fe:de:a7:0f:f0:a7:c0:6d:d1:
92:17:23:94:ef:e9:c0:8e:49:d4:6c:06:07:63:f0:f8:69:73:
31:ef:23:05:dd:e2:3c:0f:5e:63:9a:42:06:5b:6e:6c:4a:7c:
41:f5:ce:29:54:1d:5d:24:46:16:7e:2e:d7:9d:0c:15:30:9a:
69:97:54:4b:7b:b6:93:a4:a5:fb:69:16:14:65:61:b8:a5:ec:
83:7e:3f:0d:31:c2:97:9c:f0:dc:37:cc:29:59:d0:ab:ec:53:
17:fe:e2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:16 2024 by rpki-client on console-fra.rpki-client.org