Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/635ac27c-440a-4727-87e7-d941b0bd36a9.roa
File: 635ac27c-440a-4727-87e7-d941b0bd36a9.roa (raw, json)
Hash identifier: AyuA2A0cM9uqCN1vItV3ap+3XV510t6kWYlehpTElJY=
Subject key identifier: B2:46:E1:D9:05:A4:4B:09:6A:BF:4E:89:E9:E4:5B:69:54:54:8C:4F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0FEFAAA92631B2C3668AEDCF91EE7E65FBA8AE84
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/635ac27c-440a-4727-87e7-d941b0bd36a9.roa
Signing time: Sat 25 Nov 2023 00:00:00 +0000
ROA not before: Sat 25 Nov 2023 00:00:00 +0000
ROA not after: Sat 30 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:ef:aa:a9:26:31:b2:c3:66:8a:ed:cf:91:ee:7e:65:fb:a8:ae:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 25 00:00:00 2023 GMT
Not After : Dec 30 23:59:59 2023 GMT
Subject: serialNumber=7066cda3d5c18aeeb1dd77da6de36c1445b2d054f12740a8f76b8e1f7b375995, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ff:39:11:f4:e5:70:1b:89:2e:9b:34:44:be:
cc:3a:07:6b:cd:dd:d3:4d:ae:a5:2f:c0:1d:65:44:
fa:31:43:3f:05:a9:81:06:5e:93:39:c0:e4:d9:2f:
2b:eb:1d:f4:4f:62:c4:a5:38:0b:83:0e:2b:a1:e7:
62:ef:80:93:a5:3c:9b:15:89:e6:b3:a8:6c:3a:12:
cd:4d:9f:1b:c6:6d:0f:68:1f:bb:ff:9e:d2:b2:d1:
35:c2:86:b9:ec:ef:f3:ff:bc:3b:b0:40:6a:3b:2c:
58:4a:25:e9:57:54:b1:76:d3:1a:bc:12:36:9f:7c:
80:f9:8a:50:2d:d1:f7:60:41:e4:9c:0c:5b:5f:cd:
82:16:1f:30:ff:ed:71:04:13:f5:f4:1e:73:77:11:
7a:6a:70:0a:1a:30:30:3e:6e:fc:23:89:c5:c8:5f:
4b:53:fc:10:22:80:3d:d1:ef:9d:aa:6a:6d:95:46:
7f:39:09:94:1d:9f:6a:09:a7:74:6d:02:4a:b6:ae:
e3:4b:43:d1:e6:71:01:04:9a:53:22:ab:a2:39:2b:
be:b1:ee:a3:a9:85:01:86:6c:47:5d:aa:95:9f:db:
96:53:c2:c9:1d:82:b7:43:8a:f4:32:7c:ce:72:0a:
65:7c:15:13:7a:4b:61:c3:c1:23:a7:69:c1:e3:fd:
15:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:46:E1:D9:05:A4:4B:09:6A:BF:4E:89:E9:E4:5B:69:54:54:8C:4F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/635ac27c-440a-4727-87e7-d941b0bd36a9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:79:f6:0f:81:74:d0:12:1f:69:2a:af:67:16:87:8b:53:df:
90:38:61:b6:b0:96:ee:fd:8a:b7:9f:7b:96:79:26:fd:9a:b4:
7d:ec:ff:be:05:de:7a:9d:35:7f:a8:9e:e5:cd:9b:8f:fe:d7:
a1:a0:77:f9:45:08:db:7f:b6:5d:e6:7a:e7:54:f8:26:43:8f:
a9:3f:00:89:56:00:27:4d:62:5e:8c:91:05:6e:fb:db:3b:79:
84:e0:81:54:3c:a2:03:4f:f8:b5:9b:0e:6f:15:31:81:d9:a1:
e2:bd:51:18:35:e7:8e:43:a8:26:2e:0b:8b:d3:f1:d5:b6:a9:
71:4c:66:60:46:d5:24:14:28:cb:a2:c1:41:3c:1e:cd:bf:26:
49:95:fa:d5:27:54:7d:f0:60:3e:4e:8f:56:f8:e7:5e:05:b0:
d9:97:8b:da:62:15:55:15:31:a3:78:f2:f4:e7:f1:0d:e2:e4:
98:da:d4:6c:5f:54:35:b7:82:c6:b8:5b:97:59:b7:a8:52:17:
e5:2d:5d:e6:5f:6e:e5:e3:ab:42:bd:a0:a8:55:61:8a:b1:92:
a7:bd:cd:27:60:4a:7b:62:d4:2f:b5:8b:7b:6e:a1:6d:fe:f5:
ae:69:12:ad:bd:94:dc:51:71:9c:96:03:13:a4:fb:c5:3a:6a:
1c:0d:90:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:49 2024 by rpki-client on console-ams.rpki-client.org