Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/618388f6-acfc-4a0f-8626-4e5da47ef1ce.roa
File: 618388f6-acfc-4a0f-8626-4e5da47ef1ce.roa (raw, json)
Hash identifier: CLZxwRRwufQoESffwC4mHmegmJ/n5IW9687taTwVDmc=
Subject key identifier: 23:41:6A:DD:20:B5:B6:0C:CE:DB:88:B3:4E:B2:6B:8B:7C:F7:4E:FB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1B202B6F53F232F55CCAE51B7759E2EFB8FF872C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/618388f6-acfc-4a0f-8626-4e5da47ef1ce.roa
Signing time: Tue 18 Jul 2023 00:00:00 +0000
ROA not before: Tue 18 Jul 2023 00:00:00 +0000
ROA not after: Tue 22 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:20:2b:6f:53:f2:32:f5:5c:ca:e5:1b:77:59:e2:ef:b8:ff:87:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 18 00:00:00 2023 GMT
Not After : Aug 22 23:59:59 2023 GMT
Subject: serialNumber=fee8edf8b6088e264723ace9106c97d5bbe667533b1f92ab850b06a20aba2943, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:92:0f:62:40:01:ff:49:15:79:73:68:b8:59:
24:3f:b9:66:e0:68:ad:8a:2c:49:4a:88:f5:0e:58:
f7:5a:6d:ef:bb:eb:8e:49:bb:8f:d4:9f:0c:07:1a:
de:44:6f:b1:7b:b2:8a:cb:53:70:51:ba:c2:41:38:
43:dc:6f:85:34:34:89:43:31:3d:ad:41:91:42:3f:
28:e2:bb:2c:b2:18:42:17:8b:6a:76:9e:1f:2f:80:
bc:91:77:14:6e:43:37:71:0f:f9:d6:95:68:bd:6b:
3c:c9:ad:b5:3c:b7:33:d1:e0:c6:e5:cb:d9:9e:95:
01:72:81:5e:58:ac:98:aa:73:78:b2:ef:4d:d2:95:
11:71:9d:74:e1:17:26:07:f0:f9:b7:b9:ed:92:42:
42:62:b5:1e:d5:db:dd:82:8b:8c:87:1b:d5:76:7b:
ac:7c:b9:c9:48:b1:66:88:7e:0e:8d:71:fb:77:d4:
77:a2:ee:83:7e:86:4c:80:54:58:21:76:8a:4f:ad:
d7:64:9c:e0:35:c7:66:38:32:2f:eb:45:6a:e6:d3:
e2:bd:d6:32:3b:41:76:d3:55:90:bb:a6:bf:68:54:
de:5d:2d:8b:d1:36:cc:81:e8:67:a6:86:38:72:94:
e0:e3:b1:46:f2:0a:c2:e4:b0:06:3a:64:04:c8:01:
b2:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:41:6A:DD:20:B5:B6:0C:CE:DB:88:B3:4E:B2:6B:8B:7C:F7:4E:FB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/618388f6-acfc-4a0f-8626-4e5da47ef1ce.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
86:02:e6:04:5a:04:f5:32:01:b0:5c:26:33:92:f3:4d:f9:0f:
63:36:b8:c4:5e:ae:38:61:3b:5f:95:6b:1b:97:5d:bf:ae:d3:
a3:fa:61:d3:d7:60:42:a5:dd:b0:6d:d3:fd:27:86:8c:c8:e7:
82:6c:af:0f:0a:21:a4:d6:06:9e:6d:6f:ee:b2:b5:db:24:ee:
23:3c:a2:2d:8f:76:fd:82:ab:7f:3b:04:c2:b7:88:4c:34:3e:
11:7b:c4:e8:84:0d:7d:59:0e:ce:c4:03:33:c4:5c:4e:5c:5b:
90:87:5c:ed:b7:14:3d:f0:8c:39:a5:7b:1d:80:84:61:75:8c:
56:66:19:43:b3:21:d4:10:f3:c3:d4:2a:dd:77:33:84:68:a7:
91:ef:5a:e9:35:fa:72:a2:d0:bd:d1:17:67:df:88:13:2b:83:
d8:0f:f3:8a:54:32:43:e9:61:7a:f2:ac:02:8e:a8:11:52:65:
f5:18:4f:63:37:53:d1:0b:64:f5:47:c6:34:8c:c8:5a:49:ca:
71:b5:2c:ad:cb:0b:58:45:9d:58:50:0b:9d:60:04:78:d7:94:
a7:e1:ad:f7:08:01:3c:06:e2:4f:3c:4a:73:b4:e7:ed:b5:a8:
14:65:a9:88:e1:7b:e4:59:07:c2:39:74:da:66:15:04:a1:f8:
96:61:c4:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:29 2024 by rpki-client on console-fra.rpki-client.org