Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/62d1cb95-254b-4b25-bf4f-9cb0a84b6971.roa
File: 62d1cb95-254b-4b25-bf4f-9cb0a84b6971.roa (raw, json)
Hash identifier: iK/DYfeHNVknOtW0+FPyGUGk9ZYi8DBkEt39wRDrbmA=
Subject key identifier: C9:B3:B5:AF:C5:84:89:81:FB:AF:69:7D:38:63:65:8D:37:32:18:5A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4BE4C3C18D4FB52073D4EDDE471B9241BE4B8BFA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/62d1cb95-254b-4b25-bf4f-9cb0a84b6971.roa
Signing time: Sat 16 Mar 2024 00:00:00 +0000
ROA not before: Sat 16 Mar 2024 00:00:00 +0000
ROA not after: Sat 20 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:e4:c3:c1:8d:4f:b5:20:73:d4:ed:de:47:1b:92:41:be:4b:8b:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 16 00:00:00 2024 GMT
Not After : Apr 20 23:59:59 2024 GMT
Subject: serialNumber=3648dfce78642220d383b2264d2bac4d9eab0c63782a004b534236ff38dd0ee9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:82:32:8c:db:86:7e:10:ec:82:b3:a4:96:b0:
60:26:77:01:e9:7c:41:01:ec:c1:51:2b:17:46:63:
8c:be:2a:5a:9e:eb:d7:2d:71:ce:72:4e:a4:97:fe:
ea:94:b0:0b:73:a9:26:72:18:9a:99:45:80:66:32:
89:44:a8:95:8c:33:02:3b:e2:0c:fb:b3:6a:97:46:
3c:05:56:49:17:31:10:ce:4d:07:c5:5d:c3:f9:60:
61:5d:8d:55:e6:a0:ff:11:7a:67:75:98:33:f3:62:
4d:41:db:e5:4b:44:10:dc:78:d7:9b:97:a7:ac:33:
69:f2:a1:66:6b:ac:a5:c2:93:ad:bc:4c:21:71:48:
5d:b0:af:d9:e7:de:28:42:3d:e8:99:02:9a:95:ed:
79:45:1b:22:19:21:34:7b:a8:00:ea:38:45:4d:0b:
83:11:84:4b:5b:f3:9a:a7:2c:ae:ba:c2:43:c8:de:
2e:90:4c:57:16:56:65:13:60:b9:50:7d:84:0b:5c:
ff:64:46:f1:09:fe:eb:6a:38:81:43:02:44:91:23:
f5:b1:bd:f5:57:0a:a2:61:01:d6:88:29:a6:e9:12:
80:8e:c3:06:ef:2b:4e:4e:13:0c:b2:1b:d1:11:1c:
10:03:ff:be:b8:c6:03:9e:79:5b:b4:50:ed:56:58:
38:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B3:B5:AF:C5:84:89:81:FB:AF:69:7D:38:63:65:8D:37:32:18:5A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/62d1cb95-254b-4b25-bf4f-9cb0a84b6971.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
48:96:b3:c6:c6:aa:02:b1:99:d7:4c:4a:79:97:91:f0:36:67:
48:69:92:bd:d1:f7:67:c4:93:fb:99:f5:aa:d7:15:7b:bd:8b:
6d:2c:c3:93:89:f8:95:26:bf:f8:84:d4:cb:37:ac:df:a2:21:
35:d4:fb:d6:e7:ec:89:01:3a:9e:72:cd:2a:40:ec:f7:e9:8a:
a4:d6:ee:5f:06:6f:cd:c1:76:b9:c7:09:14:a6:b0:f2:15:ec:
a8:94:34:fc:b7:22:ad:cb:4e:88:f3:c4:1c:02:90:48:37:7f:
65:91:9f:11:c1:ab:ff:9c:0f:bb:1a:52:a2:c7:46:be:90:f7:
ba:53:36:f8:af:46:ad:bf:58:6c:49:0f:ac:11:aa:8d:45:90:
9d:d9:61:89:3d:e8:2f:cb:bf:38:8f:ce:86:7f:2e:b4:3d:ad:
36:5f:f4:43:86:47:00:48:45:b7:a6:31:53:fa:d6:1a:8a:61:
9e:82:b7:8c:a2:3c:e6:6a:16:d2:76:8d:5d:8c:12:a2:bb:f9:
dc:0f:09:ac:64:b5:a8:32:93:15:19:aa:90:6b:3d:22:ff:24:
8f:6b:fc:ab:f8:0c:8b:64:28:f2:dd:2d:47:7d:54:14:6d:05:
6d:a0:40:9a:54:8c:a8:b3:40:0d:e4:1e:8d:01:32:c4:fa:94:
85:27:8e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:29 2024 by rpki-client on console-fra.rpki-client.org