Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4612525c-6618-42c6-8a2e-f0c77b19c46f.roa
File: 4612525c-6618-42c6-8a2e-f0c77b19c46f.roa (raw, json)
Hash identifier: d9qVQ5TOk+Idspyn14dK5RidFrAQctJyNko7s5pv63U=
Subject key identifier: CF:7B:89:9C:B9:14:27:2A:35:C6:09:6A:55:00:67:DB:66:65:EC:2C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6CA42A18DB1D0AAE25CEF5DE00820CAF71746DE0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4612525c-6618-42c6-8a2e-f0c77b19c46f.roa
Signing time: Tue 18 Jul 2023 00:00:00 +0000
ROA not before: Tue 18 Jul 2023 00:00:00 +0000
ROA not after: Tue 22 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:a4:2a:18:db:1d:0a:ae:25:ce:f5:de:00:82:0c:af:71:74:6d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 18 00:00:00 2023 GMT
Not After : Aug 22 23:59:59 2023 GMT
Subject: serialNumber=135f50281865b7543e52dbb2ba0f26ec03d55891ab53de757b6940d5a1f44f63, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:75:a3:24:23:f4:2a:b6:fa:5e:13:71:e9:f6:
11:35:d3:c7:f8:5b:3c:73:58:79:66:1c:e3:1b:a7:
7f:08:67:e3:0f:f6:53:83:25:8b:6a:17:5a:3e:d8:
45:95:8f:30:16:7a:98:1a:9f:f3:04:80:1f:a7:15:
4f:e1:e0:66:07:18:cb:02:cf:ce:b2:cf:dd:b5:34:
1f:bb:95:75:a9:bf:a4:ef:84:4d:35:5d:c7:5e:10:
d6:29:6a:80:60:c2:7c:7e:52:e4:4a:70:55:1f:34:
6e:40:70:64:84:7f:81:25:56:6f:96:34:9f:72:ee:
28:4e:3b:58:ad:95:5f:ac:5e:a2:ab:31:b0:64:03:
61:80:d2:3d:dc:b3:e3:8e:32:e8:10:4e:ad:58:cf:
8f:98:25:18:c9:98:27:7f:31:c6:79:9e:4f:f6:d6:
45:42:b5:0f:3f:a4:b5:28:42:2b:08:2a:f4:30:4a:
37:bc:3f:c6:30:c8:c4:78:c2:e1:24:de:41:79:ea:
56:be:15:56:53:55:1b:de:34:3a:73:29:df:d8:39:
d0:0c:2c:f0:16:d7:4b:cc:52:4b:48:84:95:50:92:
8f:e5:67:74:55:88:7b:9b:08:d4:92:f4:bb:c5:ff:
a1:90:60:ee:c6:55:0c:ec:99:a0:df:58:b9:c3:70:
d2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7B:89:9C:B9:14:27:2A:35:C6:09:6A:55:00:67:DB:66:65:EC:2C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4612525c-6618-42c6-8a2e-f0c77b19c46f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:2c:33:ca:d5:1e:1a:29:1f:ea:22:c2:8d:a6:6d:b7:cc:9f:
ee:61:df:22:d4:1f:54:a2:8f:d0:45:d0:26:98:a4:6b:67:01:
79:5a:f5:14:c3:79:1e:79:a6:1d:b2:88:a9:ce:6d:63:b3:81:
85:50:4e:a7:83:19:d1:7e:7f:05:31:a9:b2:09:fc:44:34:b1:
16:42:4e:bf:09:bb:19:4a:cc:09:67:05:92:18:c3:b7:2c:41:
50:a6:ec:f0:56:f7:d5:91:8f:f9:f6:0b:07:f4:d3:d5:b7:3e:
32:d1:80:82:c5:6c:bc:03:f5:60:d2:0f:99:2e:ba:04:ab:b6:
88:10:f1:e3:52:e0:ca:0f:5b:05:c8:84:cb:f8:ff:4c:38:ac:
93:5d:b4:78:71:9b:74:e4:ec:83:c1:3f:f9:f6:d9:55:89:b7:
aa:0e:1b:56:53:63:02:c9:84:08:a5:58:67:0e:a1:0a:ce:f5:
b3:e0:3e:73:40:52:af:79:58:8c:73:32:b7:a4:f8:05:1f:fd:
9a:84:a7:a3:17:48:f7:e5:7c:d7:ff:b1:c1:7e:26:ff:c4:7f:
9e:34:08:4d:4e:a4:29:45:38:92:9c:43:21:a8:27:a8:28:00:
bf:06:1d:a6:b3:bd:1b:d3:06:fe:ca:b3:77:cf:87:e2:b0:8a:
2b:94:02:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:08 2024 by rpki-client on console-ams.rpki-client.org