Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/613cdd03-3883-4a88-8c6a-249cbb5e24f1.roa
File: 613cdd03-3883-4a88-8c6a-249cbb5e24f1.roa (raw, json)
Hash identifier: GQReraaAn6WekNm33m94EJWq6EvbEJVHur2qGrURiSI=
Subject key identifier: B5:BE:36:C0:44:18:C6:A4:76:5B:C8:97:D4:87:D7:37:99:72:C1:F3
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3A37ACD633ADED693A1A83521C33B45E1ECDDB0F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/613cdd03-3883-4a88-8c6a-249cbb5e24f1.roa
Signing time: Fri 27 Oct 2023 00:00:00 +0000
ROA not before: Fri 27 Oct 2023 00:00:00 +0000
ROA not after: Fri 01 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:37:ac:d6:33:ad:ed:69:3a:1a:83:52:1c:33:b4:5e:1e:cd:db:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 27 00:00:00 2023 GMT
Not After : Dec 1 23:59:59 2023 GMT
Subject: serialNumber=5a72263f6ff4db291be8b59e7d36d1a39c8ac3165db6dad510497b720701832f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c1:5e:0a:56:58:51:33:44:ae:96:4a:c6:34:
ab:3a:a2:3a:85:ea:bb:47:ab:ff:cf:f3:0f:24:f5:
3f:7e:b0:18:27:5e:2a:48:da:b0:80:da:35:c3:2b:
fb:3e:a6:20:49:c3:f2:12:32:4b:7e:76:c6:6b:b3:
9d:98:55:95:2e:54:ee:e0:5f:3d:c7:3d:8b:f8:21:
27:e4:3c:6b:77:3a:7e:e8:09:00:e8:32:23:de:97:
f0:50:12:b4:12:02:9e:d4:37:68:bc:1b:40:56:95:
d8:0d:54:4d:fb:4e:e7:b1:f1:54:28:67:15:f0:ba:
e4:e6:c8:81:01:c8:2e:8a:7c:93:ea:8c:d4:ff:80:
30:68:1a:06:7c:76:63:4d:26:e4:41:af:2e:d7:0b:
49:f8:bd:69:75:83:c7:63:44:35:ca:e7:66:37:b4:
b8:81:8a:2b:d0:d9:fa:22:19:5d:be:c8:44:94:02:
94:2b:fc:2a:6f:fe:13:6c:2d:e5:c4:99:07:36:ea:
ac:3b:d1:8a:0d:72:70:dd:f2:dc:23:8e:ee:5e:03:
b3:b5:d7:d3:66:c4:9f:3f:65:91:3b:e7:79:04:73:
3e:43:08:8c:80:db:f5:e2:75:39:fa:ef:2f:20:d7:
de:7c:e1:93:fa:f7:f0:e6:ba:73:3f:8e:52:3c:6c:
48:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:BE:36:C0:44:18:C6:A4:76:5B:C8:97:D4:87:D7:37:99:72:C1:F3
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/613cdd03-3883-4a88-8c6a-249cbb5e24f1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:ea:5b:88:e5:87:2d:97:f0:7e:04:d4:0a:53:a9:d2:5c:4f:
f1:7a:f8:57:9f:45:e7:c5:8b:b4:46:f0:73:7c:17:aa:1f:02:
6f:7d:63:8c:73:b7:b2:1e:6b:79:bd:58:20:09:17:f4:d4:89:
99:b4:cd:60:c5:b4:33:ff:59:e1:18:f7:ad:67:f8:13:6b:ae:
cf:e2:34:aa:26:c1:27:4d:64:e3:17:5e:02:1f:2e:a4:db:76:
52:7e:9b:4b:27:a0:07:e7:6b:e2:50:ff:58:0b:99:ed:61:84:
94:8c:62:6c:6c:9c:6a:57:0d:50:ec:aa:8d:53:5f:3d:b8:8d:
b7:01:11:0e:6f:69:2d:f1:ad:4f:28:00:cc:6d:d9:4e:d5:26:
d1:e1:4e:15:82:4b:b3:01:c9:e9:74:e8:06:ce:4c:54:b3:bd:
69:3d:d8:a4:ef:9d:b3:ce:55:54:0e:13:b5:96:a2:64:33:18:
6e:b1:12:67:85:18:a7:b4:43:c8:4a:c2:d8:54:5e:18:a6:bc:
02:cf:7c:d1:20:a9:4f:7f:21:27:10:30:fc:ae:b0:56:4a:69:
d3:68:0f:b5:ac:6f:06:73:b0:f1:f4:54:cc:f4:4b:f0:dc:ef:
f6:af:a5:f6:df:14:47:f0:5b:e2:66:d7:a0:c6:43:2c:8d:9d:
74:2d:20:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:29 2024 by rpki-client on console-fra.rpki-client.org