Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/623ba53a-bd34-41a7-a5ae-c279ec5947ce.roa
File: 623ba53a-bd34-41a7-a5ae-c279ec5947ce.roa (raw, json)
Hash identifier: VpftfVsAnqChNc8qTphMn0rhhBICPTn/sZjJh2mgp+U=
Subject key identifier: 8D:A3:A7:47:E8:61:FF:62:31:2C:B9:93:85:1D:59:A9:57:FB:9E:1B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 46D47887334B34BF6A37113E9D30E83AFC79912B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/623ba53a-bd34-41a7-a5ae-c279ec5947ce.roa
Signing time: Tue 08 Aug 2023 00:00:00 +0000
ROA not before: Tue 08 Aug 2023 00:00:00 +0000
ROA not after: Tue 12 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:d4:78:87:33:4b:34:bf:6a:37:11:3e:9d:30:e8:3a:fc:79:91:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 8 00:00:00 2023 GMT
Not After : Sep 12 23:59:59 2023 GMT
Subject: serialNumber=1c5a00ab71553f54a853a58d38cf868416f5b1476c1fd84f3f85b5bf0d76a8e2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:db:b1:02:f8:ed:26:25:1f:c4:23:3b:47:3a:
bb:b5:3f:96:f8:31:ed:5a:38:47:b4:92:66:50:b6:
df:4e:56:0f:35:12:d3:a3:28:a4:8f:cb:84:b4:04:
20:13:89:48:3a:49:74:7f:4f:00:c3:b5:85:fb:7c:
81:aa:85:b0:cd:df:60:ca:fd:f5:d5:e5:e2:83:6c:
0a:e4:34:f3:75:3c:b5:9c:4b:32:28:34:cd:8a:2f:
0f:1a:47:23:ab:18:36:ec:92:49:d4:6e:d5:81:9d:
44:51:05:2c:42:bd:89:c5:41:d3:2a:98:d1:64:15:
72:43:38:b7:b0:c9:2a:c9:73:f7:2c:7d:3a:1e:99:
a6:40:2c:aa:91:64:a9:c3:d9:eb:6b:3f:fd:5c:b4:
81:1b:c8:9f:46:a3:e1:3f:a4:ce:c8:47:e5:ac:c8:
e0:42:d3:c5:95:08:9f:46:c2:68:72:e0:9c:26:ed:
51:f1:a0:d1:ab:e2:28:55:ad:37:38:45:d5:b8:67:
d5:23:f9:71:1b:f3:be:37:1b:88:15:8c:8c:35:6e:
dd:93:70:8f:a1:a5:0d:6a:31:18:c8:9f:ae:2d:e8:
9d:8f:a2:db:84:07:e6:5a:50:d3:fe:e3:1c:6d:48:
83:88:08:9c:bf:22:5e:54:bb:75:4e:34:e3:ae:90:
aa:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A3:A7:47:E8:61:FF:62:31:2C:B9:93:85:1D:59:A9:57:FB:9E:1B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/623ba53a-bd34-41a7-a5ae-c279ec5947ce.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:62:1c:f6:8f:c2:e4:68:ef:ac:da:fc:39:6f:06:f1:cf:e8:
04:38:50:a0:00:08:11:61:ad:88:59:88:06:77:dd:b0:7b:e0:
cf:b9:1e:de:76:57:de:cb:06:12:a9:cf:47:00:2b:f9:c7:72:
5e:d8:d1:89:41:f2:ea:76:3b:9e:61:7b:b0:e5:4e:2b:f5:81:
c6:de:32:0e:7b:43:f6:dd:0e:e8:97:ef:ad:7f:f7:e8:0f:5c:
34:44:0b:b2:7b:cb:90:6a:54:0c:b7:38:1c:d3:67:d7:8a:96:
0f:62:44:55:f8:77:68:8c:03:e8:4d:c4:b4:7d:f4:a5:22:a9:
f0:6e:ab:bd:d8:66:22:7d:e7:18:55:b6:40:ab:4c:a5:62:40:
3f:5a:d7:ef:8a:04:49:8f:cc:6e:24:77:5e:31:b3:21:7a:51:
0b:4f:23:cc:67:e3:81:ba:88:f8:36:ee:f7:cd:19:31:54:2c:
fa:ac:1c:98:06:d4:9a:61:58:3a:bd:01:1e:90:49:81:77:90:
6f:39:f6:1a:82:a7:7e:7a:7f:04:0b:cb:52:0f:5e:04:de:8f:
31:3d:5e:1a:03:3b:c7:c1:03:7b:2a:6c:5c:ff:d8:c0:92:ae:
b3:a8:1d:b7:7d:22:ac:70:10:f8:3d:fe:e7:15:79:b6:71:c0:
a1:a1:7a:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:49 2024 by rpki-client on console-ams.rpki-client.org