Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/33e3fc03-5f11-4b65-aaee-3b5d73aa23af.roa
File: 33e3fc03-5f11-4b65-aaee-3b5d73aa23af.roa (raw, json)
Hash identifier: 22temFfoT4kwb+VySRKM3EpUOUn+x6IcUnu1h1BqNlU=
Subject key identifier: 29:1F:AF:EB:3B:9A:69:8A:44:2A:B1:C3:DC:CD:72:BE:68:E0:13:02
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5FC9D615368201917276E54395474772DC037B49
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/33e3fc03-5f11-4b65-aaee-3b5d73aa23af.roa
Signing time: Wed 28 Feb 2024 00:00:00 +0000
ROA not before: Wed 28 Feb 2024 00:00:00 +0000
ROA not after: Wed 03 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:c9:d6:15:36:82:01:91:72:76:e5:43:95:47:47:72:dc:03:7b:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 28 00:00:00 2024 GMT
Not After : Apr 3 23:59:59 2024 GMT
Subject: serialNumber=77b981e5282a692e04c11fb8f5f791f6b7ef1faa2b969e87679fec7f14f13dae, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:02:cf:26:ee:e9:ef:bc:f6:f0:a4:f4:c3:c8:
cf:e5:38:8b:80:11:e9:6c:75:9b:3e:b9:63:4e:14:
75:0e:5f:ae:fb:55:d0:5a:15:19:b1:5b:b5:ab:fe:
eb:41:c5:f7:99:5b:29:93:5f:ca:e7:17:46:09:74:
83:d9:fb:af:12:56:d0:46:9d:c0:d5:3c:46:7c:cc:
76:28:01:9d:23:4a:a2:2f:a6:94:00:ef:ed:41:3a:
fd:5a:db:64:a7:2e:03:b5:44:b7:e8:71:09:f1:fb:
75:d3:c7:e3:c9:36:b6:4c:dd:48:93:88:33:88:3c:
b0:38:dd:b5:52:f2:8e:72:b9:23:e2:48:b5:3c:32:
86:2b:0b:35:c7:03:3f:ae:5f:41:63:3c:c9:9b:11:
c9:00:fa:29:39:3c:5d:a0:d8:1a:6f:5a:7a:3d:a5:
5c:c6:fc:54:d8:8d:f7:f4:7c:b4:de:5e:2e:e3:57:
68:8f:a4:90:d4:61:33:f1:de:d4:fd:6e:a6:7a:7a:
8d:63:c7:28:fb:89:63:77:cd:f0:7f:36:e7:04:0f:
ff:12:93:d6:c4:2b:cf:58:0e:ec:c8:ef:24:17:14:
b8:b0:3e:dc:69:84:3f:9e:67:11:38:60:76:1e:6e:
08:f8:1b:7b:58:c7:78:72:b1:7f:b4:7f:49:9b:0d:
75:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1F:AF:EB:3B:9A:69:8A:44:2A:B1:C3:DC:CD:72:BE:68:E0:13:02
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/33e3fc03-5f11-4b65-aaee-3b5d73aa23af.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
89:eb:25:1a:3d:51:e4:22:71:83:7f:07:b2:32:82:28:1b:77:
71:61:62:d4:4b:e6:ef:dd:80:c1:2f:5b:04:6f:4c:31:8c:67:
60:b3:5e:a4:2b:fa:9e:c9:27:7e:de:39:51:4a:7e:b9:65:de:
b8:c3:59:65:76:a5:9d:9b:af:05:8f:54:ed:42:56:85:64:3a:
0c:48:ce:ea:77:99:c9:52:3d:7a:8a:bf:73:cd:0c:93:37:d2:
bc:55:5e:20:ac:6f:a3:49:2d:e7:e5:7a:82:cb:92:a0:f1:3b:
98:5a:a8:94:4e:23:fb:3c:2f:d3:e6:06:e7:0a:68:f7:ae:5a:
09:74:9f:6c:f4:b5:15:79:1a:f0:fb:93:cd:f0:5e:9f:da:ff:
c7:49:c9:61:f9:e2:ca:85:88:3c:f9:67:44:9d:43:b6:a6:7e:
01:a4:5c:9e:72:8b:47:81:59:fe:d5:58:2b:c5:80:07:5d:1e:
f4:5b:60:53:ae:87:c5:73:81:4d:cb:13:3a:c7:c2:9d:9c:95:
53:93:f0:7b:4f:ad:2a:c3:58:2e:09:4f:65:32:fb:70:51:91:
82:2a:fc:85:13:b2:91:29:d1:a8:11:9c:7e:86:58:49:c6:c0:
70:d4:1d:cb:45:7d:e9:6d:d7:f1:2f:a5:e1:f3:9e:51:02:e4:
ae:34:16:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:00 2024 by rpki-client on console-ams.rpki-client.org