Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2e752ce2-e18d-42fc-b5f1-15b1846ce292.roa
File: 2e752ce2-e18d-42fc-b5f1-15b1846ce292.roa (raw, json)
Hash identifier: n/3yIud1R3cqtDyouxgU7WzKxNyhaPqtWrz7bBCP9ks=
Subject key identifier: 00:0A:B0:71:D0:EB:3A:E6:95:91:3B:6B:0B:CC:99:6A:8A:27:E3:28
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 461ED1037CB4C67D295531F5623C51FE6BA3CC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2e752ce2-e18d-42fc-b5f1-15b1846ce292.roa
Signing time: Mon 31 Jul 2023 00:00:00 +0000
ROA not before: Mon 31 Jul 2023 00:00:00 +0000
ROA not after: Mon 04 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:1e:d1:03:7c:b4:c6:7d:29:55:31:f5:62:3c:51:fe:6b:a3:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 31 00:00:00 2023 GMT
Not After : Sep 4 23:59:59 2023 GMT
Subject: serialNumber=985b9708ed8709e0e99aefb61c779cd6953ff131e5fd6ff8d5a8907adf7c9074, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ea:eb:01:b0:13:af:19:c3:db:1a:5c:39:d2:
7e:dd:d5:3e:51:f0:b9:ae:77:df:6e:20:44:24:0e:
03:c8:b4:fe:0f:bc:ad:27:ab:87:48:b2:07:f6:6d:
c2:cf:94:73:a3:c8:c5:9f:84:4b:e6:58:88:7e:37:
dc:9f:df:b0:74:d3:60:70:26:2c:df:34:ac:46:eb:
39:35:57:58:11:f5:0b:8c:f7:98:22:eb:6f:bd:12:
0d:1f:7a:2f:78:23:ee:d2:ac:6b:61:af:bd:1d:d5:
c4:16:58:6d:04:2d:5f:5a:9f:d8:13:93:96:0e:79:
16:ca:87:bb:a5:dd:28:4f:9c:d1:a9:fa:0d:2d:3f:
81:b9:2f:72:0e:b4:92:ac:c9:33:f0:0b:c5:9c:96:
1f:bb:7a:7a:88:e9:95:37:3a:30:b8:0d:b8:f6:9a:
e3:c9:d9:e8:ec:a6:41:dc:35:47:d0:72:9d:6b:c8:
8a:67:86:12:0b:cd:be:b0:f8:d2:77:3e:86:08:ac:
b7:11:48:e1:92:b3:6a:d9:6f:65:c6:aa:a4:0f:34:
b6:b8:a8:73:87:45:31:37:4b:61:19:3b:43:23:a4:
d1:e4:50:9d:13:b2:7f:d6:6c:a2:c5:ba:29:05:fc:
9c:ed:cb:8c:17:f8:dd:9c:c9:bc:bf:15:06:3b:6b:
58:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:0A:B0:71:D0:EB:3A:E6:95:91:3B:6B:0B:CC:99:6A:8A:27:E3:28
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2e752ce2-e18d-42fc-b5f1-15b1846ce292.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:73:4f:ca:1e:56:4e:3b:b7:12:b7:35:7d:32:f9:80:2d:69:
ed:66:bf:9b:21:ae:6b:51:b8:73:c2:d0:3a:a6:c8:10:32:a0:
52:56:ee:87:38:13:e1:f9:8a:f3:31:c6:68:b9:24:eb:0c:e2:
da:73:66:42:ab:12:46:cf:5d:6c:9f:f9:3b:67:e2:7e:04:2e:
d3:cb:8c:a1:8f:2e:33:74:f0:7d:64:7d:8b:98:10:15:e0:23:
1a:3c:16:63:46:33:98:3d:4a:60:8d:ae:86:5d:34:bf:cf:fc:
77:1d:80:7b:98:62:28:62:2c:b2:27:83:ff:99:f3:10:bc:8b:
d0:f0:38:1c:f7:c2:ed:37:8b:27:fd:fc:a0:31:59:c4:a0:79:
90:f0:5c:64:86:b7:58:22:4e:8a:ce:36:bc:15:50:24:18:fe:
9e:75:fa:3f:97:af:db:f7:13:26:a3:28:39:7f:e8:5a:60:c3:
bb:6e:56:98:59:7b:c7:b0:ef:f7:23:ae:96:ff:6a:db:71:2a:
c8:ea:dd:dd:47:18:ad:a7:9f:a6:4c:43:14:7c:70:7e:a5:a7:
a9:56:8d:52:bf:d2:2a:9e:55:93:bd:e8:35:21:56:80:ac:69:
08:2a:cf:88:94:37:1b:2f:71:78:81:5d:e5:c8:77:2a:d0:e6:
cc:ba:a3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:16 2024 by rpki-client on console-fra.rpki-client.org