Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59fb6cf0-97da-45b8-9f3e-e5c006f0180f.roa
File: 59fb6cf0-97da-45b8-9f3e-e5c006f0180f.roa (raw, json)
Hash identifier: ZVXTg/vSBgHT62+nApMio25Udx+CanH/i+fu7gYCZFU=
Subject key identifier: C2:DC:AF:82:C4:2D:D3:29:F5:0F:52:B3:0E:6C:C8:2B:44:84:30:CA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 16E4A8209EC60C91A5037D2C42C55EF5CBFFCFBB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59fb6cf0-97da-45b8-9f3e-e5c006f0180f.roa
Signing time: Thu 06 Jul 2023 00:00:00 +0000
ROA not before: Thu 06 Jul 2023 00:00:00 +0000
ROA not after: Thu 10 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:e4:a8:20:9e:c6:0c:91:a5:03:7d:2c:42:c5:5e:f5:cb:ff:cf:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 6 00:00:00 2023 GMT
Not After : Aug 10 23:59:59 2023 GMT
Subject: serialNumber=1ee90f6d4a1b23f3f1cf8cc9c491b328187eb829deb75711fb302f96dd36cef4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:35:97:2f:76:dd:0a:6e:44:8f:78:96:49:0e:
a6:09:fb:c7:eb:a6:f3:bd:25:57:33:f1:b5:64:a9:
c9:27:bd:8a:38:ec:bd:fe:10:4e:f6:55:a6:57:5f:
f8:4e:ab:b5:68:6c:b4:99:7d:76:70:fa:21:ee:f7:
fe:c5:43:36:32:4a:25:d0:f6:fb:f8:52:38:12:24:
47:3c:4f:59:fc:2e:9b:0a:a2:93:9f:1b:b0:14:d7:
1c:41:51:6d:3e:cf:6a:b0:c6:6b:a8:36:19:06:85:
d6:6a:7c:31:6e:74:0b:b0:c0:55:05:f6:5e:4f:29:
40:16:f1:f0:03:fc:c1:cc:ed:da:51:ab:84:63:26:
2a:c2:42:46:88:d9:13:96:b5:85:d1:08:eb:3e:b0:
1c:92:49:6e:22:f6:58:04:e8:97:b7:8e:a7:84:13:
b4:e0:e6:44:e0:13:6b:d1:51:84:47:56:35:24:1e:
0a:7a:34:cb:da:3d:e6:84:37:5e:80:25:06:64:1b:
3b:c9:df:e4:7a:ff:38:8c:aa:77:40:29:10:db:67:
1b:12:8f:a1:f7:8d:a1:47:da:5d:74:52:16:18:b3:
d9:da:b3:66:02:05:99:89:85:27:af:b7:04:30:07:
97:72:2d:a2:87:52:2c:7f:89:2d:37:65:af:7e:c5:
c3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DC:AF:82:C4:2D:D3:29:F5:0F:52:B3:0E:6C:C8:2B:44:84:30:CA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59fb6cf0-97da-45b8-9f3e-e5c006f0180f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a9:41:9e:48:4e:94:93:63:db:8c:f3:10:f7:6c:1f:2a:93:
bc:cf:a5:7b:02:37:70:b6:53:5c:66:fc:c8:c5:ac:d9:59:7d:
78:f1:47:e6:d0:63:7d:47:95:c3:f9:db:18:c1:51:c5:8d:b6:
73:90:a2:bf:06:1e:0c:31:d9:5e:cc:52:2c:fb:b5:f6:00:19:
e0:82:64:59:ad:06:ac:d0:4d:7c:70:77:b1:ad:cc:e8:f3:5e:
90:5b:4d:86:99:e5:4d:9b:ba:91:c4:98:5e:da:95:bb:ec:c0:
12:07:60:5c:e7:fb:7b:90:7d:7e:60:88:f4:09:7a:7d:76:ce:
0d:b2:c4:6c:08:38:95:c3:f5:c9:9e:14:24:cf:34:96:e3:e2:
65:3e:ff:4f:5c:93:ba:61:1f:9b:c8:c6:1b:50:c0:49:d9:ef:
a7:44:d7:7b:9e:8e:e5:76:c0:cb:af:26:59:bd:63:78:75:92:
48:12:2e:ab:fe:be:de:8d:e4:3b:5e:f9:b4:6f:50:30:ca:d4:
db:7b:de:70:c3:e6:b6:4b:a8:9b:65:61:b9:12:c4:d2:4c:40:
45:83:8c:ea:84:02:74:5d:0d:2a:52:e5:fc:64:66:53:47:10:
9b:a2:dd:8b:5f:6d:3d:7c:f4:7e:e1:41:ba:7e:b1:64:14:bb:
36:b1:e2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:47 2024 by rpki-client on console-ams.rpki-client.org