Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4092d77e-c57c-4976-ba5c-04ea39611679.roa
File: 4092d77e-c57c-4976-ba5c-04ea39611679.roa (raw, json)
Hash identifier: 2rprgECvncXDP507EwCUAsVF4zmO2Xzd8k4PQYQRm5c=
Subject key identifier: BE:78:07:22:9A:69:C5:3C:6B:CF:F6:A4:B4:72:BC:BC:47:58:38:F0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0A206E082CC04082E5D0DB8361B313DA1290D489
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4092d77e-c57c-4976-ba5c-04ea39611679.roa
Signing time: Fri 01 Dec 2023 00:00:00 +0000
ROA not before: Fri 01 Dec 2023 00:00:00 +0000
ROA not after: Fri 05 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:20:6e:08:2c:c0:40:82:e5:d0:db:83:61:b3:13:da:12:90:d4:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 1 00:00:00 2023 GMT
Not After : Jan 5 23:59:59 2024 GMT
Subject: serialNumber=fba57437dff5a09bc50e126a9fe34c4db0f5ab642a2e031bc3317a218732c90e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5a:c1:c1:c5:76:16:ed:62:c4:49:6e:67:41:
03:18:65:bd:ab:ce:5e:05:43:f2:bd:c1:a2:dc:62:
cb:6d:69:12:ea:63:3b:09:81:ad:fa:66:ac:f1:5c:
ba:85:7f:b5:01:60:33:e7:92:fa:42:86:1a:1b:c0:
e6:18:0c:ed:b5:e9:1f:a2:db:1e:37:8f:b4:09:56:
1e:38:1a:70:ca:f9:c9:1e:4a:54:0c:1d:fd:65:a4:
4c:03:c9:88:52:f6:1c:1f:26:d1:a3:16:cd:4a:21:
53:de:d5:0e:66:c9:2c:90:d0:3c:0b:d4:95:25:ee:
c3:44:6a:dd:be:a3:8d:89:df:8e:42:da:85:c1:c9:
ea:f1:4c:fc:35:0a:92:0c:c5:01:32:4e:a4:b3:36:
e8:bb:40:71:c2:67:f7:ec:3e:17:2b:8a:c1:08:e0:
70:27:f9:08:3a:1b:ad:b6:2e:cc:cf:53:b3:c5:f9:
ed:d6:66:89:48:8a:99:13:13:7a:2c:95:c6:9c:fe:
06:13:40:dc:dd:37:45:fc:96:87:f3:79:c2:6b:7b:
67:5f:e2:8c:a2:6c:e0:77:ae:b4:c9:62:d7:4a:75:
3c:89:ec:7b:a3:43:e1:28:ca:44:bb:bd:36:8c:6d:
3c:71:fe:3a:59:d0:f5:fc:ac:fc:0e:cf:97:fa:f2:
4b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:78:07:22:9A:69:C5:3C:6B:CF:F6:A4:B4:72:BC:BC:47:58:38:F0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4092d77e-c57c-4976-ba5c-04ea39611679.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
08:a8:f4:b6:64:99:41:d4:f9:cd:be:07:05:f8:9a:8e:81:54:
4c:3b:d2:c4:db:96:e4:ad:25:84:42:86:9d:3b:a3:c4:08:49:
a2:a4:55:fa:c4:1d:b5:e5:85:34:14:03:1d:25:90:bd:c1:ff:
90:0c:db:ee:d4:ef:47:d0:38:a9:88:45:a1:fb:eb:88:e3:7a:
e7:fb:dc:1f:a8:4b:65:1a:70:91:d2:85:e5:01:2c:6f:d2:c4:
12:bf:d3:d1:08:3b:64:9d:ac:7a:0a:ea:79:8a:b0:12:1c:de:
d9:c3:8b:e9:84:7d:9a:c4:b0:26:0e:49:0c:10:2c:97:41:89:
1b:9f:d8:14:8b:ef:68:ec:3d:7f:39:15:7f:b2:30:9f:be:23:
67:70:02:bd:a2:1a:b6:36:99:43:d2:fb:c5:23:61:89:30:dd:
e9:e5:e0:fe:57:be:59:25:af:11:89:67:28:97:08:2c:04:4d:
49:4d:7a:3f:7e:f3:94:9f:ca:29:6e:a9:cf:62:e1:97:0e:54:
27:d0:25:13:42:4d:6f:a4:ec:f5:89:fb:89:39:83:52:67:ee:
c7:13:6e:73:b7:bd:73:1a:06:af:c7:6c:80:f1:d2:f5:aa:e8:
6f:9e:8d:b2:b4:a5:56:5c:66:a9:6a:a7:c1:03:ad:cc:e5:39:
97:33:b1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:07 2024 by rpki-client on console-ams.rpki-client.org