Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5be05a25-ca55-4c3d-ac0c-22451f8cfa59.roa
File: 5be05a25-ca55-4c3d-ac0c-22451f8cfa59.roa (raw, json)
Hash identifier: sIXrTIxb2PMr0FRKd/iLBRSObr7/ACVbAcIR8Uff8Uk=
Subject key identifier: BE:8E:7F:E7:8B:60:C1:29:CC:2C:41:47:BE:F4:35:5D:86:32:ED:73
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 42A7ED0142000A485F44B8933CCAA3E3773636CF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5be05a25-ca55-4c3d-ac0c-22451f8cfa59.roa
Signing time: Mon 04 Sep 2023 00:00:00 +0000
ROA not before: Mon 04 Sep 2023 00:00:00 +0000
ROA not after: Mon 09 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:a7:ed:01:42:00:0a:48:5f:44:b8:93:3c:ca:a3:e3:77:36:36:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2023 GMT
Not After : Oct 9 23:59:59 2023 GMT
Subject: serialNumber=d33429bdb78fff19236fc2d9e6eaffa95820b83acbce50e1059fe2203ad016a7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:1b:8f:b4:8c:d7:1e:04:1e:87:c0:04:b0:
dd:d3:b6:01:a6:10:18:c9:31:59:ac:c5:bc:77:11:
43:9e:e7:f4:b8:d6:b8:c9:13:75:34:91:96:a3:39:
77:62:c6:b6:24:3d:9a:e8:b4:e7:dd:66:be:4e:d0:
74:d8:44:4b:fa:a6:e6:a8:a3:fe:c8:e7:f3:84:df:
0b:5d:e3:e5:09:94:80:99:f2:a0:c1:6b:10:b7:4f:
7c:62:85:bf:2a:c7:f5:d8:f6:60:a8:7c:af:84:d1:
a6:c8:9a:82:55:32:de:dd:00:fe:55:6f:94:44:6c:
de:35:fd:02:76:6a:f8:c5:93:c9:04:80:ec:b2:4d:
01:9f:63:d4:e1:da:9d:c6:ef:92:c0:83:b3:92:51:
c7:6e:61:36:d2:b8:f9:82:15:77:f1:96:55:f9:a2:
f3:37:bb:3a:7a:07:d5:78:2a:8f:7d:5b:83:fd:9b:
df:eb:e9:d4:a8:67:f9:6c:06:f1:ad:04:e6:cc:3f:
fe:f7:38:1e:f9:e6:93:8b:f9:24:d8:20:0a:c3:85:
16:4d:61:67:45:08:72:95:20:a4:d0:51:4e:5b:1a:
42:23:af:a9:8e:1b:81:46:95:6d:85:62:73:c4:98:
e0:0e:02:1a:4d:55:d7:f6:70:3d:c1:3e:c5:94:8a:
66:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:8E:7F:E7:8B:60:C1:29:CC:2C:41:47:BE:F4:35:5D:86:32:ED:73
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5be05a25-ca55-4c3d-ac0c-22451f8cfa59.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:43:87:39:3a:13:75:be:8d:41:be:8b:b4:c1:85:6b:ca:68:
0e:6f:8a:a7:00:09:1b:cb:dd:cd:fe:bb:46:9f:df:31:2f:c4:
d8:e3:df:ae:4f:0b:80:c4:4e:b1:26:2a:91:cc:b8:b1:71:2f:
9c:9f:c9:4c:f6:21:de:b0:f9:2d:b7:58:e6:39:b8:bb:10:86:
7b:dc:51:e4:e9:ac:81:d7:ee:e6:af:70:6c:82:c8:5a:29:70:
30:83:c2:51:f4:f5:fd:71:fb:24:76:8f:66:8a:33:62:cc:a4:
ce:ac:90:24:cb:59:8f:1a:80:f2:e9:9f:f0:6a:6b:35:4c:ee:
48:a1:20:7f:1d:4b:12:ba:e8:68:ec:9a:0f:bb:bf:01:71:7a:
aa:d2:5e:e0:57:83:32:c6:b5:5a:a1:80:f8:aa:c3:80:70:7e:
0a:23:63:75:f6:67:ff:e6:17:36:66:ef:8c:5c:a2:eb:69:7a:
04:e9:ee:74:83:93:dd:cd:0a:30:17:28:67:b8:a8:42:96:5f:
aa:81:91:73:0f:65:91:72:09:9c:3a:72:49:f1:b0:81:76:d7:
1c:a0:e5:c3:ed:e5:ad:52:af:a7:ba:38:08:fe:27:a6:6e:b1:
f1:a9:2a:61:31:f9:72:4b:cb:0f:e9:03:6d:ec:d4:8d:96:4e:
df:51:7f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:48 2024 by rpki-client on console-ams.rpki-client.org