Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36208d8e-3439-4349-be8d-3fcc6c93c5fb.roa
File: 36208d8e-3439-4349-be8d-3fcc6c93c5fb.roa (raw, json)
Hash identifier: myb11yu1S9s1qmFzOWps0wa6irrVVuVUHVnqWNxN8vU=
Subject key identifier: 40:EE:D1:A2:E8:71:0F:FF:8D:6D:D1:0D:9F:95:C3:46:38:F4:FF:4B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4C8D92CF0A352FE6898FFF53B4AC8D94B0B0F417
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36208d8e-3439-4349-be8d-3fcc6c93c5fb.roa
Signing time: Tue 03 Oct 2023 00:00:00 +0000
ROA not before: Tue 03 Oct 2023 00:00:00 +0000
ROA not after: Tue 07 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:8d:92:cf:0a:35:2f:e6:89:8f:ff:53:b4:ac:8d:94:b0:b0:f4:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 3 00:00:00 2023 GMT
Not After : Nov 7 23:59:59 2023 GMT
Subject: serialNumber=47fc54e9ca73133e29e560193417d92f5a07fa20fa0afbb7b1f616f482b984a5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:2e:bb:f8:91:d3:81:da:65:5c:c0:5f:eb:
30:18:be:02:71:ac:0e:8f:43:e8:63:f6:f4:5f:39:
80:42:2e:23:47:68:8f:e4:cc:55:8b:8b:03:2a:3e:
33:c0:86:d3:a0:30:bb:f8:7a:76:a9:5a:33:85:65:
dc:21:2a:36:9c:8d:ec:62:cb:4f:b9:79:dd:8f:90:
6c:04:19:83:c4:69:ef:af:26:cf:7e:55:6a:57:fc:
5f:ae:47:4d:e7:df:45:72:89:b9:93:1a:62:71:5b:
63:b5:f0:98:41:f2:d8:d0:76:a3:74:01:b4:96:e3:
3c:6d:24:3b:ea:89:ca:8c:13:ca:4f:0b:66:f5:4c:
9d:d5:41:9d:d1:21:59:4f:0b:5f:42:a0:9e:35:25:
ce:10:c4:ef:ee:fd:ef:5d:7a:d4:84:a9:66:68:82:
f3:5f:23:81:28:c8:f3:f8:4a:b0:0a:aa:a7:1c:af:
95:5a:21:44:ab:dc:8a:65:f5:9b:56:87:10:1c:1f:
8a:6d:29:a6:2e:d5:df:5c:86:88:2e:d4:36:60:9e:
38:6c:b6:e5:94:7c:26:b2:fc:95:de:8f:ff:a6:62:
d0:3e:81:4d:bb:cb:e0:76:81:e0:b9:b8:78:74:cb:
10:ed:af:df:0b:0e:64:58:ed:00:cd:3f:4c:74:0b:
55:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EE:D1:A2:E8:71:0F:FF:8D:6D:D1:0D:9F:95:C3:46:38:F4:FF:4B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/36208d8e-3439-4349-be8d-3fcc6c93c5fb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
61:98:16:a3:4f:c4:92:ae:0a:d1:c9:ac:6e:71:c0:aa:db:7b:
2a:ed:e5:5e:6d:54:01:a0:db:67:bc:73:23:85:c6:ce:8d:17:
47:3b:9d:6b:8e:3f:ee:79:75:b0:44:0c:84:ed:3f:cb:ea:ce:
36:37:2e:4e:6f:5f:a6:90:9b:cb:99:15:1d:f2:c7:c0:10:03:
f9:42:2e:50:46:85:2a:46:5c:c5:ea:b1:2f:9d:47:3a:34:5a:
12:c8:eb:fc:93:d6:07:cf:f0:31:af:7f:1f:37:e3:89:ab:2f:
59:db:d2:41:d5:e5:33:f8:e3:9d:bc:84:b2:98:6f:3c:ac:db:
ed:3c:62:d4:a1:96:f8:cd:19:90:fb:ae:8f:38:56:63:57:50:
9c:10:74:23:e6:f8:a1:6e:64:23:48:8b:cf:63:85:23:33:8a:
00:d9:fc:3b:d1:ce:9f:cd:cb:51:3b:b2:e1:29:34:11:e6:c3:
f6:37:e0:59:df:71:3f:46:7d:88:07:14:d4:12:a3:9f:49:04:
09:46:ce:0f:2b:37:ec:74:41:3f:69:c9:72:42:48:b2:c3:9d:
13:41:e7:c1:f9:27:f3:6b:33:0e:d8:78:47:55:53:be:b3:9f:
20:48:f2:9b:ec:de:b4:22:63:58:04:80:ee:8a:84:3f:75:ad:
28:dc:76:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:00 2024 by rpki-client on console-ams.rpki-client.org