Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3b7d6de1-20c5-4184-b075-a2fb31674b74.roa
File: 3b7d6de1-20c5-4184-b075-a2fb31674b74.roa (raw, json)
Hash identifier: GrLR+QXQbuUfz2d11xrx0YIXOBIrd2j37NsPdoa9d+0=
Subject key identifier: 12:67:C7:F8:9F:22:FC:F7:05:51:14:0E:15:26:2D:14:30:DE:1A:33
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 575EB77522FD42EF6BE370011BA7D2A24530087F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3b7d6de1-20c5-4184-b075-a2fb31674b74.roa
Signing time: Wed 28 Feb 2024 00:00:00 +0000
ROA not before: Wed 28 Feb 2024 00:00:00 +0000
ROA not after: Wed 03 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:5e:b7:75:22:fd:42:ef:6b:e3:70:01:1b:a7:d2:a2:45:30:08:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 28 00:00:00 2024 GMT
Not After : Apr 3 23:59:59 2024 GMT
Subject: serialNumber=ad77435212d38bd1362526561ede49c91fcd72d8b6ff0dfc7f18b0ca4e68412f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9d:22:aa:94:2b:a5:c1:e0:cf:65:7f:8f:28:
9a:3e:d5:88:e9:63:1b:c0:48:c0:b8:19:df:5a:96:
3a:c6:f8:77:56:db:9c:d4:a4:ef:d9:58:80:f9:0c:
42:fb:a2:41:b9:1b:23:d6:ae:72:15:09:e7:c2:6b:
58:f4:ac:08:75:7d:7f:7a:37:33:7e:fb:82:71:64:
5c:a1:44:0e:a1:94:e5:14:82:9f:27:26:33:39:df:
4b:68:a8:7f:e5:e9:30:a4:a4:12:8a:9e:2c:7d:b0:
55:ed:27:c9:6c:5e:2d:25:7e:be:67:36:f1:2b:c0:
0e:3c:08:38:3f:93:7c:ca:26:61:06:9b:15:c8:82:
27:dd:ac:cb:f3:f5:4a:80:7c:7a:f4:51:7c:d3:32:
83:1c:77:65:71:62:6d:03:be:38:dc:83:30:42:0e:
0b:be:2b:03:dc:db:54:d6:8f:b4:0e:b6:47:be:52:
9a:7f:48:6d:42:8f:4f:2f:7e:42:98:76:59:b0:95:
0f:7e:c3:f4:64:2c:20:a3:08:82:41:11:a0:67:24:
eb:6f:ba:93:41:54:cb:3b:06:f8:30:49:33:f1:b0:
ef:62:54:0a:db:1f:d6:00:70:a3:f1:f4:e1:6d:5e:
70:bc:24:14:34:cc:26:84:eb:2c:15:7e:74:90:cb:
f0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:67:C7:F8:9F:22:FC:F7:05:51:14:0E:15:26:2D:14:30:DE:1A:33
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3b7d6de1-20c5-4184-b075-a2fb31674b74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:a3:05:5b:71:f3:1b:bc:dd:e1:8c:80:73:06:92:6c:4e:ec:
3a:7d:3c:ab:f9:e8:f7:9d:25:0d:75:2d:3c:35:7d:b8:3a:ad:
c9:1b:34:f2:e9:a6:dd:1f:1e:5e:df:da:4a:a4:45:66:3b:9f:
8b:e4:22:ea:36:7a:28:27:c7:bb:0f:eb:01:9c:8e:a8:fc:11:
bc:4a:97:b8:f2:b7:7c:34:c8:20:28:c6:c2:ac:2e:df:7a:b7:
51:3a:0b:30:26:e0:2d:39:91:2c:7a:85:0c:ff:ac:bb:f3:c5:
f1:b1:7a:ad:ec:f4:21:2f:e3:c9:ed:7f:b0:c9:3f:57:7f:ba:
cb:c2:8b:4c:3d:aa:6c:cb:89:8f:9d:5b:33:77:83:81:64:7c:
98:78:d9:d9:ba:bf:d8:05:05:a7:8e:92:5a:bf:f9:c6:40:13:
bd:54:06:35:bd:ab:dc:b0:b6:c2:03:0c:ca:e6:31:6e:66:f8:
f4:d2:f5:67:82:b6:85:08:bc:d4:04:4b:95:08:3f:36:b1:8d:
c7:d1:c3:db:65:14:5e:10:2f:41:35:11:6c:66:51:73:ae:a4:
2a:aa:4f:a9:8e:b1:b4:9c:13:cb:8c:cf:88:98:df:8f:48:b8:
fc:98:d0:6b:f6:2d:11:3d:4b:3c:0d:74:2d:cd:2d:fc:a1:f9:
7d:ab:1d:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org