Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/31c7bc5d-9823-4aeb-b4ed-630e84d7a0ae.roa
File: 31c7bc5d-9823-4aeb-b4ed-630e84d7a0ae.roa (raw, json)
Hash identifier: WpgYNMo3zqgHP1Db+GpNaoLa2mxi9SimKhXAP7v5aQw=
Subject key identifier: 32:9A:A0:D0:B5:8E:8A:BE:A0:ED:FB:48:B9:1F:85:5C:E3:E7:AE:91
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 39A70C9B18F385F09D7AAE448D2516C460401353
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/31c7bc5d-9823-4aeb-b4ed-630e84d7a0ae.roa
Signing time: Sun 16 Jul 2023 00:00:00 +0000
ROA not before: Sun 16 Jul 2023 00:00:00 +0000
ROA not after: Sun 20 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:a7:0c:9b:18:f3:85:f0:9d:7a:ae:44:8d:25:16:c4:60:40:13:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 16 00:00:00 2023 GMT
Not After : Aug 20 23:59:59 2023 GMT
Subject: serialNumber=4ef791fed424224bd8de4ccc31b6f5dfd3a328e69fea679e7aad09d5e76eb1b1, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b0:76:a5:5d:b3:67:6c:2f:d0:db:aa:63:72:
09:ea:a4:96:95:a7:17:4c:2b:63:13:32:bb:a8:ec:
c9:9d:b0:dd:de:15:17:6e:f7:4e:e9:71:ba:12:08:
22:fc:04:42:25:53:69:d3:29:95:2b:73:70:fa:ad:
8e:a4:e6:fb:b2:7a:f1:b1:cc:10:70:c8:96:77:5a:
af:c4:5b:4f:87:9c:a9:ff:77:a1:fb:c4:cf:bd:88:
ac:46:d6:13:e5:a0:8d:79:2e:1d:4e:4e:67:e2:82:
ea:1e:63:df:27:62:ea:44:aa:a4:32:d5:03:04:46:
3b:44:11:a3:a3:79:76:a9:49:f3:f7:5f:c8:85:7e:
30:22:a8:df:2b:91:ae:4a:d7:8e:62:be:8f:f8:b5:
a1:b1:8b:d2:b4:30:3a:36:65:a5:0e:6b:b0:66:38:
8a:90:6d:d5:ac:79:19:c6:0a:44:d8:a4:a7:60:b5:
82:95:dd:ff:16:a2:36:6c:a1:cf:b1:cb:c8:f2:e9:
57:60:bd:c3:a4:61:63:6b:7c:cd:f8:e5:9a:99:d7:
f0:78:0a:d1:f7:81:6d:71:fd:20:f3:f5:36:5d:f9:
b8:93:46:9b:03:83:91:2c:8b:c4:ac:81:7b:3f:c2:
89:d3:0c:f8:e6:a5:1a:e4:29:07:be:f3:cc:b0:b4:
c3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9A:A0:D0:B5:8E:8A:BE:A0:ED:FB:48:B9:1F:85:5C:E3:E7:AE:91
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/31c7bc5d-9823-4aeb-b4ed-630e84d7a0ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
62:6d:76:41:2a:3a:03:e5:3e:a6:0d:df:db:ff:96:62:7b:47:
dc:36:e4:25:f4:07:67:36:de:18:e4:fa:53:fe:9e:57:57:8c:
00:6c:3f:e2:0c:f2:e0:35:0e:0e:e6:e1:33:18:e5:a2:88:e8:
78:8c:af:f2:42:61:0f:f6:5a:b4:ba:80:67:a8:a9:3c:e8:9d:
4b:2e:95:3b:92:00:2c:ce:ad:39:f5:2f:1f:0d:2d:3f:86:3c:
0d:c5:dc:95:ac:80:6d:6b:7f:0e:e5:5f:cc:9b:5f:19:59:6f:
8b:f2:16:76:43:85:1e:04:6c:b1:5b:18:19:b8:c5:8c:f8:37:
af:f9:10:e0:cc:5b:43:bc:07:84:28:cb:1e:eb:65:3a:3c:9b:
97:07:40:46:48:39:a2:f0:dc:f2:be:dd:79:e4:e7:59:a2:75:
04:cd:b5:c9:01:99:0b:88:bd:0a:b4:8b:02:a7:02:40:18:86:
5f:2e:c6:e8:57:86:2c:26:24:6c:93:f1:53:01:47:ba:6a:4c:
98:4b:21:fc:e3:b4:47:a5:eb:c7:bf:27:43:4d:18:32:90:73:
b8:ce:7b:d6:94:68:01:58:23:db:0a:70:ed:64:ed:c4:61:ba:
13:83:5c:03:b9:9b:e2:06:6a:fa:02:31:3d:0f:85:f2:09:5d:
57:18:c7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:16 2024 by rpki-client on console-fra.rpki-client.org