Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d3c0c17-edb9-4f5b-859e-491d2f577b2c.roa
File: 3d3c0c17-edb9-4f5b-859e-491d2f577b2c.roa (raw, json)
Hash identifier: aB8yBwjocE1Fxlbt0/jAnQbF63wuMTYose7XcV+ctkc=
Subject key identifier: 4C:53:4B:E2:58:B2:47:01:68:AC:36:F8:4D:9E:4D:B1:69:4D:2C:12
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2E2D584C1B63CF2058D797C86A874B287375E3FB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d3c0c17-edb9-4f5b-859e-491d2f577b2c.roa
Signing time: Mon 21 Aug 2023 00:00:00 +0000
ROA not before: Mon 21 Aug 2023 00:00:00 +0000
ROA not after: Mon 25 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:2d:58:4c:1b:63:cf:20:58:d7:97:c8:6a:87:4b:28:73:75:e3:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 21 00:00:00 2023 GMT
Not After : Sep 25 23:59:59 2023 GMT
Subject: serialNumber=fb9578b71178d28bb042d95ebb694255ec08f1cb0c48ca09791ff74869494239, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:10:11:48:71:3a:ad:81:fe:37:69:31:8c:39:
f4:e8:9a:6f:84:42:67:2b:1f:1e:eb:66:17:98:bf:
50:0e:47:a9:86:cd:3a:41:8c:74:5e:17:ff:a7:9c:
01:05:47:f1:c3:86:d9:5b:bf:b1:a0:d1:18:ba:a2:
e6:c5:0e:f8:6b:83:8b:f8:47:69:8b:74:88:be:11:
5f:da:b1:d5:64:a3:17:62:a6:ee:d6:40:4f:47:a9:
90:5f:d4:fa:30:96:c7:18:e7:62:a9:e5:80:e7:de:
78:60:26:22:af:81:18:71:49:41:58:c8:88:fa:16:
6b:ad:d1:04:50:3c:2d:04:0b:b4:6e:e9:d3:b7:d9:
cc:fb:40:27:ed:de:a5:16:72:b8:95:53:ae:6f:34:
a0:1c:65:cc:a1:05:0a:5c:1f:13:74:68:98:60:ac:
ac:52:89:62:3b:dd:47:52:54:5c:25:c4:79:61:94:
ca:c6:23:65:8d:99:a4:d2:aa:ca:e9:45:ca:e0:5c:
81:14:36:94:da:6c:c5:09:29:21:c3:2f:6b:dd:be:
33:45:a7:c7:80:d5:91:6f:16:67:28:90:ba:3b:b6:
0d:45:9f:38:90:aa:fd:24:8b:ff:66:a4:77:94:bd:
b8:7f:12:c4:c8:be:c2:68:62:9b:30:e1:5c:cd:c8:
ac:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:53:4B:E2:58:B2:47:01:68:AC:36:F8:4D:9E:4D:B1:69:4D:2C:12
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d3c0c17-edb9-4f5b-859e-491d2f577b2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:de:d7:01:a0:38:73:08:00:95:02:ea:4f:bd:7b:a1:fc:ae:
99:a1:72:5a:a2:89:f8:ea:69:a2:de:04:8e:c7:e6:f2:d2:90:
6e:f8:cf:1d:a4:ad:c8:e6:18:01:9a:84:b0:53:bb:d2:27:22:
55:06:dd:21:8d:bd:2d:85:35:37:7b:e2:70:62:7f:ce:ec:7b:
cc:28:c6:ef:bf:d4:7d:a0:17:b9:3a:06:1b:eb:59:3e:7d:c8:
7b:ff:4d:d1:9e:f6:ed:39:90:3b:1a:7e:54:11:5d:04:a1:50:
b5:91:df:27:a6:ea:23:01:62:5f:69:38:4d:a5:b7:97:9f:96:
7c:73:55:43:86:d8:da:26:c9:5a:be:4b:43:b5:40:f8:fd:93:
c4:2a:ef:7e:8f:b3:db:58:45:9f:a8:7a:37:bd:2f:64:8e:54:
9c:61:d4:e4:70:25:43:07:ba:7f:44:e0:a8:40:ca:6a:e2:b4:
83:dc:b8:8e:09:00:b4:97:d5:3e:f2:8f:70:e5:17:39:91:34:
01:27:02:1d:1d:4f:9d:63:4e:41:15:47:00:ca:c0:4a:b8:e8:
39:11:c6:05:b3:f5:27:6a:ef:f7:0a:10:af:a0:29:48:1b:f9:
c1:fe:1b:15:d5:e5:a7:4c:47:76:57:1e:e5:9d:20:c1:d3:a0:
e3:65:ab:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org