Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d374fb8-d732-4fa5-991a-34e5dd6a653e.roa
File: 5d374fb8-d732-4fa5-991a-34e5dd6a653e.roa (raw, json)
Hash identifier: wQ9IVf7aq8iYlAMwAMHzKcySimYvE6e5tdxz898e5iI=
Subject key identifier: FA:ED:6A:22:8F:34:CD:33:1A:4E:57:5A:71:CB:1E:4E:7B:30:F4:CE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0449D4396964A80064C9017B74C4D40B83147CAD
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d374fb8-d732-4fa5-991a-34e5dd6a653e.roa
Signing time: Mon 27 Nov 2023 00:00:00 +0000
ROA not before: Mon 27 Nov 2023 00:00:00 +0000
ROA not after: Mon 01 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:49:d4:39:69:64:a8:00:64:c9:01:7b:74:c4:d4:0b:83:14:7c:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 27 00:00:00 2023 GMT
Not After : Jan 1 23:59:59 2024 GMT
Subject: serialNumber=d50b9ed9c78923dd66b508f019d48085e6d184f7e930a19eb3b3d250367685ae, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ef:93:0d:0c:33:ee:f6:ca:e7:0c:c8:d5:e9:
f2:e1:13:b8:e0:00:2a:cd:30:5b:f7:b8:c4:3a:7e:
87:22:c3:1f:5e:59:5a:66:31:5e:41:8b:d4:da:45:
5f:ef:2b:d7:51:a4:e5:7b:ab:27:f5:a8:4a:c6:77:
52:ed:ac:c2:8d:94:90:c3:f4:22:47:0a:46:5e:2d:
f7:2f:70:ed:77:ac:81:ab:f8:08:73:d7:ed:b0:dd:
ef:83:ad:bd:47:d6:ec:ef:fc:c1:2e:ad:cf:14:2f:
73:cb:89:dc:cf:9f:3a:8d:cd:9b:e1:49:62:e6:7c:
33:5f:56:64:ec:33:7a:41:0e:92:34:d7:82:3c:66:
a0:01:74:eb:d0:6b:29:18:03:f2:64:d5:08:11:ae:
fd:39:ba:e5:ac:c5:12:47:b7:4c:f6:d4:52:29:cd:
04:c8:80:f5:8c:d4:ee:72:f0:7e:fa:09:d3:fd:8b:
e4:60:f8:cc:e0:9b:31:cd:83:7f:3e:5f:60:79:db:
ff:72:e3:e8:50:67:c7:ca:1d:78:d6:0b:14:8f:f2:
54:ed:56:01:b2:af:2e:33:a1:98:5e:0f:c6:df:ec:
3e:87:eb:a9:55:ec:59:a6:42:95:79:a0:71:86:9d:
ed:37:7f:5c:28:9f:65:43:c0:0e:bc:23:93:a6:6e:
e6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:ED:6A:22:8F:34:CD:33:1A:4E:57:5A:71:CB:1E:4E:7B:30:F4:CE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/5d374fb8-d732-4fa5-991a-34e5dd6a653e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f2:66:b6:22:b7:cd:6d:58:4c:73:ab:51:87:d2:c4:78:be:
48:65:37:93:4b:ea:90:dc:b5:cb:6e:fe:b2:21:46:0d:03:d2:
84:76:f6:fe:d1:02:a2:8b:83:d8:d2:fa:98:59:a3:40:d0:15:
4b:47:a9:2a:c4:32:33:6d:7e:92:55:00:62:51:cc:e5:58:f5:
01:5d:3c:6c:5c:39:ad:99:a9:61:80:19:4d:8a:d6:91:66:49:
e2:29:8c:f8:c1:7f:ee:f0:6b:09:c1:c6:64:9f:82:98:6f:ae:
a9:b7:3f:c4:02:10:1e:a3:f1:f4:44:ea:ab:f9:37:42:e1:cc:
c2:b8:47:fe:78:d3:a1:1a:0c:86:d8:3d:91:a1:30:70:83:8b:
cb:11:97:23:c2:d2:28:24:07:d7:ef:26:ff:e6:40:c6:e2:33:
38:67:18:21:74:53:51:25:a4:85:42:40:22:b5:a5:9f:39:6c:
7d:d0:c0:ea:03:3a:c0:a6:c7:ef:a2:cc:13:2c:67:31:1b:1b:
bc:61:0e:fa:07:b6:7a:cb:19:a9:40:5b:ce:8e:b6:91:0c:37:
24:2d:65:c5:d7:41:e4:e0:5a:af:3f:c2:bf:e7:82:93:7a:03:
af:27:53:e1:47:df:f4:8f:9c:fa:ed:90:aa:7b:0a:18:c5:63:
37:d4:40:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:28 2024 by rpki-client on console-fra.rpki-client.org