Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3216f429-5a75-4363-8dc2-7b248094beba.roa
File: 3216f429-5a75-4363-8dc2-7b248094beba.roa (raw, json)
Hash identifier: nPdV+zQwel8CffsMh8D4YdqwUl78LLERdxdJ0L9xlcE=
Subject key identifier: F9:82:2C:2A:F0:B1:2A:F1:30:E6:BA:FF:F1:06:EB:E1:62:B3:9D:D2
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 33D619DD88066ABF775F4AE75C7D2A19047DFF29
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3216f429-5a75-4363-8dc2-7b248094beba.roa
Signing time: Mon 29 Jan 2024 00:00:00 +0000
ROA not before: Mon 29 Jan 2024 00:00:00 +0000
ROA not after: Mon 04 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:d6:19:dd:88:06:6a:bf:77:5f:4a:e7:5c:7d:2a:19:04:7d:ff:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 29 00:00:00 2024 GMT
Not After : Mar 4 23:59:59 2024 GMT
Subject: serialNumber=f16180c88b0ea671450461acf93b675cffaee97df81da22ee64745f2e3145601, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bb:ff:f2:ae:e6:03:a9:77:94:f3:b6:a7:56:
b1:34:8a:fa:4a:b9:4b:28:08:0b:d7:26:11:19:18:
9d:d8:65:fe:bb:89:a4:d0:db:7e:a8:47:fe:aa:ef:
4e:57:3f:66:3c:93:4b:af:2b:a2:9e:09:10:55:f9:
d9:c2:f7:7d:a4:1d:88:23:65:e4:ac:71:00:cb:44:
36:f8:f5:d2:38:fd:96:05:d0:e0:1d:de:88:be:82:
ba:aa:6a:a3:ca:f2:64:5b:12:d1:1e:fe:64:b7:e9:
66:78:27:c8:dc:4a:1c:63:02:2a:42:0a:70:0c:ca:
d5:32:b2:d6:32:2d:e2:b7:2c:78:0c:e9:e8:45:25:
ec:b2:b6:b4:9d:f8:89:a1:ef:45:0d:e0:62:68:2b:
ce:57:0a:0b:3a:f0:04:b7:00:36:66:b9:1a:a3:61:
8b:6d:f6:51:cf:43:87:75:50:54:95:0b:82:a7:41:
09:e6:f2:f0:45:15:4b:b6:a7:81:8a:c9:dc:29:4e:
77:d8:75:4e:37:d1:a4:26:66:84:94:a6:a7:4b:ed:
38:e9:1a:e7:ae:90:b4:73:ff:ad:97:b6:da:8e:66:
2b:73:69:cc:c4:b8:42:76:6a:05:81:cd:79:6a:be:
c8:53:4b:33:08:7a:ea:58:ea:79:8b:06:6f:a4:ea:
2f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:82:2C:2A:F0:B1:2A:F1:30:E6:BA:FF:F1:06:EB:E1:62:B3:9D:D2
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3216f429-5a75-4363-8dc2-7b248094beba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:89:df:3e:90:d4:a8:fe:41:a8:d7:a0:43:fe:9d:16:4b:6a:
a7:ff:3d:e7:4c:13:a8:79:f3:9d:90:d7:dc:3a:cc:34:c3:55:
df:b3:eb:1d:43:aa:46:11:9e:8a:d9:71:8f:23:59:fa:28:07:
64:a7:c1:9c:2c:64:22:02:b5:a0:ad:de:bb:f4:55:56:d8:96:
5e:64:54:87:e1:0b:db:46:0f:85:61:18:9e:ab:fb:61:16:64:
de:73:5f:47:fd:39:f5:c2:c9:c1:0a:4c:7d:ff:fd:38:c5:e3:
7e:40:f7:13:6f:0a:c1:0b:26:41:9c:5a:41:0e:7d:1c:cd:25:
3c:37:29:46:eb:05:75:22:1c:01:e7:b7:b4:cf:30:16:fd:fd:
7f:43:94:e7:f7:c4:3e:87:d7:9d:1e:7c:d9:95:52:c0:54:76:
fa:61:95:2c:ca:53:49:cf:c3:33:0c:2c:fe:19:68:56:73:87:
bb:ac:88:46:e4:21:ce:1d:39:aa:46:7f:cd:08:bb:a6:68:a9:
c5:e3:16:77:1e:79:dd:76:01:f4:04:c9:c1:89:6f:0d:a3:2c:
dd:cd:3a:29:04:df:06:61:1b:03:7c:bd:9d:4e:c2:ec:a6:54:
d3:54:bb:bd:a4:85:a0:1a:69:ea:33:a5:99:97:58:d6:ab:a1:
2e:e4:e7:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:59 2024 by rpki-client on console-ams.rpki-client.org