Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/458e18c0-75eb-4f15-9171-0454864f3cc2.roa
File: 458e18c0-75eb-4f15-9171-0454864f3cc2.roa (raw, json)
Hash identifier: Jjo2C1czc7VWiBMtnWHxG+k4zsH/tcQ5JRipREOwaDY=
Subject key identifier: 05:9C:48:FA:38:B4:3C:79:BC:51:E8:95:D6:F9:AD:AA:98:2F:E0:68
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 61F0DE7CFCDAC17E6B08306BEE5ECCFAD8025621
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/458e18c0-75eb-4f15-9171-0454864f3cc2.roa
Signing time: Wed 16 Aug 2023 00:00:00 +0000
ROA not before: Wed 16 Aug 2023 00:00:00 +0000
ROA not after: Wed 20 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:f0:de:7c:fc:da:c1:7e:6b:08:30:6b:ee:5e:cc:fa:d8:02:56:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 16 00:00:00 2023 GMT
Not After : Sep 20 23:59:59 2023 GMT
Subject: serialNumber=71a690801e30faaf674d9df669cf519767ef740917e658f21445a1a90906f389, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ce:14:12:12:a1:cd:18:79:84:24:ae:85:90:
ef:f0:c0:9f:40:1a:4a:63:f1:33:18:af:1d:f2:c8:
70:ce:2e:f2:db:8a:1c:b6:32:f1:36:16:f3:95:a6:
86:18:88:34:64:64:97:9b:c8:1f:c6:7b:56:2c:9e:
2a:39:26:7d:2c:45:59:ac:a5:7f:61:ba:cb:3c:80:
24:43:2f:de:5a:1c:c4:28:b3:e8:7d:e7:98:5d:40:
89:45:3c:cf:82:5d:41:c9:7b:b3:98:8f:71:ec:54:
0a:8a:bc:0f:05:e3:8e:5a:5d:b7:a1:6f:a0:c8:a4:
e1:2c:b7:fe:dd:ae:32:ba:8e:bd:e8:75:7a:96:5d:
f1:bc:d4:9b:31:96:e7:cf:21:5b:99:3b:21:76:03:
4c:ff:4a:95:6d:43:fb:2b:ed:66:d9:8a:e6:14:17:
4c:a8:d5:f4:ce:b4:d3:f7:62:99:34:9e:67:ff:ff:
cb:fb:5e:73:16:4a:54:48:9c:fd:ba:e3:c6:0c:ff:
05:84:81:d4:07:fe:ab:69:fc:61:0a:de:91:24:03:
f8:2f:7d:05:df:d0:32:1c:2e:e2:13:65:82:6e:68:
c0:3e:91:8a:c9:cf:4d:fa:84:79:c6:59:0e:24:c9:
4a:cd:60:49:74:b0:60:5e:16:f8:cc:f6:b3:ab:8a:
05:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:9C:48:FA:38:B4:3C:79:BC:51:E8:95:D6:F9:AD:AA:98:2F:E0:68
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/458e18c0-75eb-4f15-9171-0454864f3cc2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
04:62:d6:8e:1c:59:99:76:ce:a9:7c:7d:8f:f5:0a:29:2a:d0:
7b:83:07:df:c1:2a:f3:a8:0b:d1:1b:11:07:82:c5:6e:2d:b5:
d8:8f:fa:46:20:14:39:eb:5f:01:90:d7:20:13:4d:6e:98:84:
09:24:62:67:f6:f8:f3:e4:26:7f:7b:1c:6a:bd:07:c4:35:6e:
77:9b:c3:4c:5d:b5:9b:df:47:6e:69:8c:01:f6:7b:78:de:be:
f8:8e:f4:0c:a1:ee:79:21:52:6c:79:24:ee:8c:87:0c:33:fe:
11:e9:52:3f:b4:05:38:43:70:03:b6:76:dc:e4:79:a7:b5:90:
1d:80:2d:85:68:3f:b2:f6:80:53:fb:6c:95:04:83:46:50:5b:
4b:43:ae:2d:25:51:f5:7f:30:a6:50:10:3a:87:33:a0:2a:8c:
1b:83:52:61:a3:80:b7:97:e1:a9:19:6a:c0:10:05:0d:b3:58:
8e:fa:34:a3:b2:47:fd:83:97:d0:cb:68:f9:9d:7f:47:bd:09:
1e:8f:00:96:0a:ca:81:08:e1:1d:a1:2b:7c:52:d6:1c:e3:56:
30:64:0f:46:6a:9d:14:eb:b9:06:ff:53:8a:b8:cd:a1:62:0f:
69:28:7c:10:1d:cb:8f:06:07:d2:fa:16:3d:21:c6:64:bd:d1:
91:59:17:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:08 2024 by rpki-client on console-ams.rpki-client.org