Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/632bbd84-ac68-4bc6-aed7-de2bcb038351.roa
File: 632bbd84-ac68-4bc6-aed7-de2bcb038351.roa (raw, json)
Hash identifier: lFlzRDvmy+bq/UkSRtFzKi4Vrit0FmXPf/ve6X9yS98=
Subject key identifier: 88:60:8B:82:03:9C:B5:D7:57:54:A0:90:A0:39:B4:E8:9E:2F:58:DE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0D22851466E8956606F9A2E17A1D63B4696F99EB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/632bbd84-ac68-4bc6-aed7-de2bcb038351.roa
Signing time: Mon 23 Oct 2023 00:00:00 +0000
ROA not before: Mon 23 Oct 2023 00:00:00 +0000
ROA not after: Mon 27 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:22:85:14:66:e8:95:66:06:f9:a2:e1:7a:1d:63:b4:69:6f:99:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 23 00:00:00 2023 GMT
Not After : Nov 27 23:59:59 2023 GMT
Subject: serialNumber=e79e96fda42324d755a54ccf8c659a340dd50e1cd2f5521d7e84e23417d255c0, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:45:51:31:38:73:ef:d0:e0:7b:a5:1c:83:89:
ba:04:c4:0e:ea:38:b8:da:ac:25:cb:8b:d0:37:ce:
07:40:63:fb:3a:ef:3e:51:af:72:a4:c2:0a:67:d6:
2c:47:a5:2b:d2:4d:c5:f7:b2:64:b6:e8:cf:0f:00:
62:6b:34:ab:68:05:ae:3b:a6:6c:e0:35:ef:ae:a1:
55:36:c9:05:75:b9:c5:e9:0e:8a:cf:18:80:23:08:
86:20:80:de:1d:dc:2d:92:62:00:1b:30:a2:45:20:
31:49:7f:0f:a3:a2:67:42:c8:c4:a3:d9:f7:62:ac:
97:c3:ff:b0:72:00:00:ef:9f:b8:77:d6:49:23:95:
22:2f:90:25:f9:d8:18:34:5b:07:97:92:b7:e1:da:
fc:97:4f:ce:a3:a1:23:c4:f6:1f:58:c0:8c:97:41:
f5:94:60:a8:a3:21:89:05:1a:55:5f:b4:df:27:63:
06:97:d8:7c:79:d9:54:e1:5a:8b:4b:af:93:da:4a:
63:36:d4:bd:43:4a:a9:0c:fb:e6:c4:01:bf:0c:7a:
01:db:9c:3b:12:60:b4:c2:d9:0b:5d:67:35:28:d5:
47:07:0c:66:c9:ec:b7:7b:92:33:ff:1c:ab:fa:f7:
df:ad:c4:67:ee:6a:07:fb:e4:38:21:b9:88:e0:6e:
6c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:60:8B:82:03:9C:B5:D7:57:54:A0:90:A0:39:B4:E8:9E:2F:58:DE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/632bbd84-ac68-4bc6-aed7-de2bcb038351.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
43:45:6b:74:45:b0:b6:da:d5:c8:56:78:aa:b1:9b:51:05:e9:
2a:e9:b6:ae:89:90:20:74:42:62:73:78:d6:e0:d1:84:97:70:
4b:4c:c9:0e:83:9b:24:f7:ab:b3:3b:76:2b:1a:96:36:6f:36:
e9:03:07:32:e0:c4:e2:16:a4:26:66:a9:bd:33:09:3d:ff:95:
8f:b4:eb:7f:ea:d5:bb:5c:b1:3d:5a:9f:d2:b0:b3:4e:0b:45:
fa:b7:6f:f6:2b:bf:ce:fd:d0:22:38:37:ac:d6:aa:97:58:01:
01:2a:19:49:1a:7d:8c:98:36:9a:98:36:36:55:3c:16:0f:7a:
88:73:0e:e5:b7:d9:0e:eb:1b:85:57:22:78:d5:da:cf:30:8f:
31:3e:b1:95:3c:53:a2:40:e2:7a:1d:47:25:0a:c9:13:03:3c:
a5:89:65:4c:71:2c:5c:02:ea:df:f4:bf:9e:92:2b:83:a1:55:
e8:75:d8:f8:a4:18:3b:09:8b:9a:af:8d:b2:f0:7b:20:52:03:
09:99:79:b6:8a:19:1c:26:0f:db:02:e6:8d:1a:87:53:0a:5f:
0d:ce:56:b3:86:4d:c4:d5:f5:40:af:13:1e:50:46:16:72:60:
65:18:aa:10:b3:d1:aa:c2:3e:ae:72:5f:1e:3b:cf:5f:bf:89:
3d:76:58:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:29 2024 by rpki-client on console-fra.rpki-client.org