Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5bb08f7e-0197-4c91-9141-1341596e4793.roa
File: 5bb08f7e-0197-4c91-9141-1341596e4793.roa (raw, json)
Hash identifier: 7W7/AKeNR1couhpjbO6JUp8D4q4gg0Vsi2NwYXD3pzo=
Subject key identifier: 41:99:6C:79:4D:29:FB:6E:D1:93:2C:2D:31:AC:BF:59:44:11:6D:CA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5490EDF9C48480FB2C046F3A3295C3E4AC21464F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5bb08f7e-0197-4c91-9141-1341596e4793.roa
Signing time: Tue 31 Oct 2023 00:00:00 +0000
ROA not before: Tue 31 Oct 2023 00:00:00 +0000
ROA not after: Tue 05 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:90:ed:f9:c4:84:80:fb:2c:04:6f:3a:32:95:c3:e4:ac:21:46:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 31 00:00:00 2023 GMT
Not After : Dec 5 23:59:59 2023 GMT
Subject: serialNumber=0d3a4adb00d01e3ef952d5dce949e1e6b05fadcebec87c9423fe4a7ae405ef71, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:55:d4:4b:06:4f:ee:30:22:be:7e:a8:7c:df:
38:08:74:72:51:f0:cd:ad:5c:94:2b:57:83:a0:f8:
76:63:91:ba:9b:a7:10:3f:35:14:c2:7e:13:aa:c6:
02:0b:df:4a:0d:89:95:ec:78:e4:94:07:3c:a3:23:
4f:8c:c6:26:ec:df:9e:fd:19:8b:91:8e:bb:58:15:
48:1a:5f:0c:f8:02:35:8b:88:3a:d5:3b:a1:ba:e2:
80:8e:fc:ba:3a:73:a5:15:2b:7c:ca:89:64:7a:4f:
3e:7d:8e:4e:8d:ec:12:38:7f:9f:3f:43:67:af:a1:
6b:2a:60:9e:fa:09:34:bd:19:e6:2c:84:a2:4c:4b:
a4:13:f2:8e:4b:48:95:dd:33:79:7d:b4:8d:79:07:
5a:66:94:fc:7c:b7:47:c8:f2:94:2a:dc:4e:64:f8:
35:38:30:81:8e:9b:09:80:1c:88:1c:be:39:d1:bc:
e1:c7:98:58:b9:81:44:37:ed:50:c1:15:64:58:84:
09:21:1b:a7:5e:15:0c:e9:0a:1f:9e:4c:da:b7:9f:
a2:a9:71:d0:e5:de:84:fe:47:78:3a:21:6d:40:7e:
db:82:84:11:6b:6d:a4:a6:9d:d6:6e:4f:0c:63:9f:
00:53:f1:4e:3c:68:48:8f:43:66:de:6a:1e:b1:07:
2b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:99:6C:79:4D:29:FB:6E:D1:93:2C:2D:31:AC:BF:59:44:11:6D:CA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5bb08f7e-0197-4c91-9141-1341596e4793.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
75:e0:f3:2d:62:72:20:15:bb:84:2a:9c:99:5a:76:e5:da:46:
b8:ac:7e:44:2e:8e:54:d0:06:f4:d8:fd:08:a8:21:ef:b2:c3:
23:5b:4d:63:55:88:a3:fd:74:9b:9a:04:1c:0d:57:99:85:13:
ff:83:37:d8:45:16:fd:a3:00:9a:ce:3e:6a:c5:1a:cf:ba:94:
40:bb:4d:0f:bd:f5:e0:f8:0e:76:08:4f:ca:4b:60:0e:7b:e9:
10:c9:06:0e:3d:56:13:84:3d:22:d3:c7:7a:53:1b:72:2f:6b:
fa:5d:8b:41:5c:10:2d:43:4f:99:50:71:12:cd:3f:89:bc:88:
f2:fc:06:49:d2:04:2e:a1:8c:1e:f7:5a:fa:3b:d9:bd:01:c5:
01:14:09:93:08:88:0c:5f:6c:63:9a:22:fa:42:fb:d3:b2:bf:
f3:36:cc:46:6a:38:8e:27:4c:0e:f3:08:5e:68:c6:b3:ab:df:
6d:a4:ce:77:bb:f1:ac:83:d7:b1:cb:c8:10:7c:4a:30:e1:9b:
27:77:ef:c4:d7:c6:3d:36:98:df:4f:3b:a5:eb:05:25:de:57:
24:cb:b4:5d:a4:ee:79:fa:b2:48:0b:b1:8c:2b:61:63:c0:db:
cc:35:6a:24:9d:3a:6c:f8:39:e2:b2:2b:a0:39:46:3c:3a:d9:
21:fd:f1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:48 2024 by rpki-client on console-ams.rpki-client.org