Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3abb02f4-743d-4a66-90c1-2df4451c0b96.roa
File: 3abb02f4-743d-4a66-90c1-2df4451c0b96.roa (raw, json)
Hash identifier: aDOwuILq1wln1i0tnPFAy8Og1sN7wk4PaD8d4GohlaM=
Subject key identifier: D5:D5:BB:FB:1F:24:5C:F6:69:8E:BA:61:8B:FA:41:0B:B1:A0:F3:C2
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 123462C36BD15A0949F2399C6BA8038D23C46794
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3abb02f4-743d-4a66-90c1-2df4451c0b96.roa
Signing time: Fri 09 Feb 2024 00:00:00 +0000
ROA not before: Fri 09 Feb 2024 00:00:00 +0000
ROA not after: Fri 15 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:34:62:c3:6b:d1:5a:09:49:f2:39:9c:6b:a8:03:8d:23:c4:67:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 9 00:00:00 2024 GMT
Not After : Mar 15 23:59:59 2024 GMT
Subject: serialNumber=f761a7c5869076a64a4a580e8a98d2f7b387ee6a73faf8ab94c5915470d139a9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:62:ff:37:2e:e7:3f:90:d3:31:f2:1c:a6:4d:
ef:63:4d:5f:72:03:f7:27:b2:d1:ce:2a:9b:61:65:
71:c5:5f:88:94:3a:2b:5d:d3:98:df:61:b9:b4:c6:
a7:14:e0:0a:e7:9a:83:63:3f:8e:f6:48:1f:c0:60:
ba:6d:21:69:5b:04:a0:76:46:8b:dd:bb:39:59:f1:
54:02:2a:44:04:0f:fb:c9:48:54:93:67:27:cb:71:
68:ba:a2:97:c5:ee:f0:7e:b9:5b:c7:c9:e1:c4:14:
ff:96:79:6f:86:d3:78:57:f5:f9:c1:7f:51:da:2f:
bb:65:5c:3a:b4:6e:a4:8c:2f:e5:77:9c:97:ba:f3:
1e:1f:c2:7f:48:18:c1:e7:a6:8e:df:5b:1b:b6:dd:
9e:96:1f:04:46:9a:64:fe:5a:6e:d5:15:3d:4d:4e:
46:f5:fd:20:06:b7:b4:48:9c:fa:b0:24:66:1e:cb:
78:9e:4f:74:dd:30:63:2c:15:43:45:2a:27:5e:bf:
c5:9c:46:af:aa:5b:99:7b:33:33:f5:f5:74:37:63:
1d:f8:13:c4:66:03:8c:f3:57:2c:32:46:52:3d:94:
ca:39:13:70:99:2f:49:f2:02:14:f6:c8:8a:8c:b1:
d7:6b:bb:01:17:f7:32:2a:70:2f:d7:f8:07:89:1c:
c7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D5:BB:FB:1F:24:5C:F6:69:8E:BA:61:8B:FA:41:0B:B1:A0:F3:C2
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3abb02f4-743d-4a66-90c1-2df4451c0b96.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:73:23:34:4a:7a:a7:96:b1:22:fe:b4:09:e0:af:28:08:65:
1c:67:67:dd:75:11:70:fd:04:de:b8:75:30:a8:73:aa:e8:31:
ab:5f:1a:be:ca:d6:06:5e:14:83:53:22:de:bb:a3:f6:1d:03:
c9:25:77:31:a4:40:cd:14:41:23:7f:97:f1:26:01:67:1b:cd:
03:73:16:3f:bc:9e:24:84:ec:8e:3f:34:30:e6:84:b6:77:c8:
8b:65:58:23:64:c9:0f:1d:b4:b4:e9:7a:75:d1:20:6d:ac:0b:
a2:a3:e5:28:3b:9e:81:3c:aa:69:ca:0d:94:87:4c:2a:db:05:
c8:d7:0a:c4:5c:a9:42:08:36:24:ff:54:a7:24:32:f5:f5:1e:
7b:f9:f7:c6:f7:4f:cc:45:00:b2:ed:11:9e:ff:b8:e8:8e:ee:
b8:6f:7e:14:a6:cd:e0:b7:d2:91:a7:89:85:9e:fd:c8:9c:4e:
9e:03:77:cd:29:ef:60:e6:86:e3:64:4b:b7:96:89:11:2e:81:
31:03:25:cf:e7:47:4c:d6:a1:4e:09:01:a2:d0:a4:05:b8:37:
c7:b5:a0:73:fd:9b:cf:9d:37:06:6e:c6:73:ec:c3:2d:ac:cf:
e7:53:7d:4b:a8:d1:0d:71:ba:11:a5:2d:20:87:ad:d6:90:a7:
5e:db:54:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org