Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c464505-f781-4e97-9acc-618cfb50bb75.roa
File: 3c464505-f781-4e97-9acc-618cfb50bb75.roa (raw, json)
Hash identifier: pA98r15jwnyA0r4QnS7XDc0jAkSwkfhV12Xioc1fTxo=
Subject key identifier: 51:5F:DF:F0:61:07:AC:13:34:15:64:C9:2D:E8:9A:25:14:8C:D4:35
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 115F98F461E93F8A3AB71774B16226D0071280DD
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c464505-f781-4e97-9acc-618cfb50bb75.roa
Signing time: Tue 16 Jan 2024 00:00:00 +0000
ROA not before: Tue 16 Jan 2024 00:00:00 +0000
ROA not after: Tue 20 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:5f:98:f4:61:e9:3f:8a:3a:b7:17:74:b1:62:26:d0:07:12:80:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 16 00:00:00 2024 GMT
Not After : Feb 20 23:59:59 2024 GMT
Subject: serialNumber=66a0525bcc1c361441c0038cd65fc26397b21a60d287c7590b30e9c36b3d98db, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:09:a8:30:9d:0d:a5:fa:2d:6b:68:20:45:c0:
4a:33:4e:f6:99:71:0b:25:3e:04:f2:57:ad:f1:5b:
c3:3e:50:86:73:0f:19:5f:40:d5:52:b7:42:ce:9e:
13:f8:75:45:e9:20:d3:8f:2e:81:6b:f3:b2:e9:83:
6b:cf:87:00:b7:7a:33:ff:25:ed:18:03:44:c7:fa:
e4:cc:01:cc:84:d7:2f:54:51:ba:8d:4a:67:d3:71:
a7:42:4b:79:af:58:41:a7:10:29:31:ea:06:ab:8f:
73:f7:1b:c1:2f:28:e9:2e:e7:1f:30:ad:5d:7f:38:
de:27:86:d0:07:80:ef:92:a7:15:8a:3a:19:59:fc:
86:cf:55:3c:ec:39:d1:65:ec:d7:be:ce:16:a8:dd:
67:16:be:e4:50:91:60:b0:b4:8a:4c:18:b9:ba:37:
b0:a5:11:75:a2:37:52:8d:2e:ae:a4:c3:39:5e:15:
9e:ba:ce:a4:16:fe:8e:94:3d:66:0e:23:66:e5:60:
7e:d9:26:b3:8e:57:70:fa:60:68:96:81:db:14:f6:
d7:93:e1:bf:5a:fd:d3:e9:35:54:ca:09:21:ae:97:
cf:16:2b:c0:71:9f:68:e7:21:04:6c:da:b0:f7:5a:
3f:5f:51:3e:e8:96:09:ee:b8:2f:e5:71:fa:eb:54:
a7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5F:DF:F0:61:07:AC:13:34:15:64:C9:2D:E8:9A:25:14:8C:D4:35
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c464505-f781-4e97-9acc-618cfb50bb75.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:da:22:95:43:f1:58:e1:6c:fc:70:a4:0b:45:c1:fb:98:ee:
d2:d5:c5:c2:e5:0a:bb:ce:84:36:91:36:70:34:8a:b5:b6:ab:
75:49:14:6b:2d:58:80:a3:cd:ea:30:dc:7c:ad:31:9c:1f:ef:
b9:af:02:43:53:02:47:ec:66:e3:f9:92:9b:b4:7c:ac:9c:e3:
3d:b0:56:d2:5b:30:8b:f8:65:34:ab:4b:23:5e:07:0d:d0:54:
38:5c:23:cd:b3:2b:c0:ca:ea:b5:92:ef:62:40:dc:93:2e:7a:
48:bb:27:e9:4d:c7:98:f1:44:28:18:85:16:e3:97:9b:5a:0c:
f6:bd:33:4f:29:b6:37:81:7c:b1:87:23:8f:71:c2:d3:9f:90:
92:41:6d:c8:da:16:0d:de:06:5d:31:0d:d1:d9:af:03:d6:47:
6e:7a:5b:52:09:d1:0f:28:c1:fc:f8:0c:cc:20:30:ca:aa:70:
87:4c:1e:75:04:e8:a4:4d:ad:b6:64:fa:fa:e2:f1:3f:1f:b1:
1c:8f:83:7d:60:5f:a0:7f:7f:a9:c8:6f:07:d5:ad:ea:93:56:
32:d7:b3:84:e0:1d:0b:5d:29:be:cb:f2:b0:f2:be:57:87:1d:
f1:1e:3c:01:a3:43:be:3c:32:19:be:2c:12:5f:e0:4c:b0:e1:
57:fa:64:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org