Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/571abb0d-0e13-4b66-ad76-023f94ba0089.roa
File: 571abb0d-0e13-4b66-ad76-023f94ba0089.roa (raw, json)
Hash identifier: YBlTX+7Ko+oC6r/9wdTd2+4atP6BcIHvmV6Ik47u9IM=
Subject key identifier: 31:0B:5D:D3:ED:CB:86:92:84:06:13:D2:53:68:F5:D3:63:49:FC:E4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 263048A75998CA29CCAB89237E2C1F0BE55EFD7A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/571abb0d-0e13-4b66-ad76-023f94ba0089.roa
Signing time: Sat 05 Aug 2023 00:00:00 +0000
ROA not before: Sat 05 Aug 2023 00:00:00 +0000
ROA not after: Sat 09 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:30:48:a7:59:98:ca:29:cc:ab:89:23:7e:2c:1f:0b:e5:5e:fd:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 5 00:00:00 2023 GMT
Not After : Sep 9 23:59:59 2023 GMT
Subject: serialNumber=230fad6163aefd308472ee38496e43f7bbe967e9eb6c3cfb08dfb92d15397ba6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:3e:c8:5d:eb:7e:a8:39:df:6a:b6:2d:8b:0d:
30:1a:a8:39:b6:cd:d5:fa:66:5a:6f:2d:de:7b:6b:
cf:6b:55:22:ba:44:4b:72:b5:22:7b:b2:38:57:d2:
7e:1d:d0:33:ca:47:43:01:7e:4e:e6:71:b7:4a:a2:
68:8f:ce:e7:19:4c:72:bd:d1:4c:d4:12:63:ff:70:
7f:30:61:a8:42:ce:6f:dc:72:78:4e:ea:d2:2b:4e:
0d:ae:1c:3a:c0:8b:af:ed:3c:1b:49:f1:bc:db:d7:
ce:5f:a8:da:78:0e:42:e6:8d:5f:06:6c:de:1e:04:
43:6f:8f:3e:d2:fe:7a:12:1e:38:e6:9a:a3:fb:9c:
03:74:18:b8:99:dc:3e:27:84:e4:ff:25:f7:e1:c4:
09:99:c7:76:f2:39:dc:16:d3:88:cf:10:5c:d8:4f:
94:94:b2:77:ab:87:3e:43:e6:cb:96:31:7b:86:f5:
f4:74:4a:1b:9a:a1:78:94:61:6e:80:90:7b:d9:d0:
41:23:88:6e:0f:2b:17:ea:6c:8f:71:fb:81:0e:1f:
a5:a7:9e:14:c1:81:54:b8:26:fb:fa:f0:c2:59:c5:
09:ad:f0:03:58:c7:0f:25:7a:59:70:d9:67:51:bb:
6d:ae:ee:1c:1c:9c:13:d2:94:6c:dc:8a:4b:a8:99:
b1:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:0B:5D:D3:ED:CB:86:92:84:06:13:D2:53:68:F5:D3:63:49:FC:E4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/571abb0d-0e13-4b66-ad76-023f94ba0089.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:e0:44:d7:c1:a7:fb:7b:9b:0c:2a:a5:0f:9e:92:8c:ac:75:
54:81:c7:08:c3:86:92:f9:34:88:90:45:c4:f1:a6:03:a3:29:
f0:8c:b3:e0:89:f5:5c:f1:99:a5:61:33:58:a1:52:03:df:20:
8e:0b:49:e4:d7:4a:0c:2a:c0:a2:bb:94:72:7a:37:1c:d7:83:
a2:01:ed:77:83:f3:6a:98:df:8e:d9:79:b5:95:cd:fe:2d:d1:
d0:17:88:d3:3d:b2:54:43:f1:fe:36:d0:74:c8:43:24:c6:d0:
3b:41:bf:c4:ba:bc:bc:32:fe:49:b4:14:93:42:3f:c7:08:bb:
a4:d5:6c:21:a9:f9:47:78:c6:97:16:1d:aa:b9:f2:81:73:e7:
a5:f1:87:4a:cf:e1:f2:6e:c3:31:d1:7b:e2:68:41:ab:ec:0d:
6f:ae:58:34:ad:93:a0:55:9c:92:8a:8a:90:10:c3:a5:2f:21:
cc:a1:2a:69:43:1c:fe:a5:cd:c3:c9:a8:95:6f:6c:34:a8:8f:
6c:6e:5e:0c:ae:60:20:cd:d2:cc:39:a1:3a:f9:97:08:77:d3:
ab:17:e3:47:36:83:64:41:b7:ee:e6:ee:24:5d:fa:89:43:87:
1f:22:c6:2d:7b:a8:61:0b:9d:25:18:05:9a:26:90:3c:bc:d1:
5c:6d:7f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:47 2024 by rpki-client on console-ams.rpki-client.org