Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/677f92c2-83b8-4edd-b424-cd6a18a48257.roa
File: 677f92c2-83b8-4edd-b424-cd6a18a48257.roa (raw, json)
Hash identifier: 5mTDiwdQekyNZWatJd+i7bXbr+LaVZIFjiBCxlGlnp8=
Subject key identifier: C1:19:47:E1:92:25:28:3D:DB:10:A0:AD:51:13:9C:A0:BF:1F:16:B5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 621F8B9FB6EC05A9D4F6850F3C9ED28D53CC8EE9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/677f92c2-83b8-4edd-b424-cd6a18a48257.roa
Signing time: Thu 24 Aug 2023 00:00:00 +0000
ROA not before: Thu 24 Aug 2023 00:00:00 +0000
ROA not after: Thu 28 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:1f:8b:9f:b6:ec:05:a9:d4:f6:85:0f:3c:9e:d2:8d:53:cc:8e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 24 00:00:00 2023 GMT
Not After : Sep 28 23:59:59 2023 GMT
Subject: serialNumber=09ac11031b6c8371827f48072648aecdf9a761d675f0602a4ca01d0586e07159, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:db:57:d4:48:28:f9:98:c6:35:7a:b1:c9:ae:
2f:5a:4c:3e:02:ed:4d:b3:24:df:a3:54:fb:e7:fd:
ba:20:5d:24:d2:f5:23:b6:30:84:e6:aa:c3:02:a1:
bb:42:d5:7d:02:cf:ea:77:88:4d:cf:97:33:dd:d2:
8d:38:56:cf:51:6c:dc:fe:e4:cc:4c:6e:e8:ec:d4:
b4:10:ab:9e:70:3c:96:26:9e:46:6c:69:66:3f:76:
23:23:ca:24:5b:93:1b:5c:9d:d9:98:7d:d3:7d:24:
a1:47:99:06:61:a4:bb:59:a7:85:7c:2d:da:8d:2a:
82:f6:6f:e0:a2:27:0b:d7:f6:27:37:be:2a:60:bf:
02:01:ad:c9:d7:85:54:27:50:76:81:a4:ac:31:8a:
92:ec:32:99:66:3a:5c:d4:3f:85:a1:6a:f6:8f:e2:
6d:08:b5:a6:44:83:3e:df:4c:65:63:01:b1:fd:4c:
b1:41:88:91:ba:87:ae:7e:cf:87:fb:17:f4:b1:35:
63:2a:e4:b4:34:d3:ec:3d:42:5a:b3:5b:38:0b:d4:
3a:5f:e1:71:fb:14:76:50:29:8a:f6:d7:64:88:85:
41:40:1c:57:be:d1:ec:6e:49:2e:95:07:a3:9f:13:
06:14:1d:da:14:b1:5f:7d:ce:99:8b:f9:02:27:5a:
8f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:19:47:E1:92:25:28:3D:DB:10:A0:AD:51:13:9C:A0:BF:1F:16:B5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/677f92c2-83b8-4edd-b424-cd6a18a48257.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:25:7d:4d:90:5d:4b:d9:c1:91:d3:a2:be:30:18:bb:0d:1e:
fe:6d:fa:82:ca:9b:8b:b4:77:ca:c9:22:d6:2a:c3:29:f3:6d:
c1:c0:13:78:87:dc:97:ac:57:17:64:ab:82:6c:08:ac:b2:2e:
2c:4e:10:dd:aa:31:c3:22:04:85:05:89:b5:f2:6b:5a:98:e9:
70:01:2b:21:ba:43:2b:5c:33:c0:8f:cf:99:b4:6b:90:94:f6:
5b:e4:6e:c3:ab:b9:e3:79:b3:b1:7c:c0:4f:9c:7a:ea:28:30:
23:ed:06:9d:3c:cd:59:8c:84:90:e1:9a:fe:75:9f:11:5c:1a:
07:bb:88:23:ac:3d:37:b6:16:ed:fe:24:77:24:c8:59:15:9e:
89:cd:99:ba:56:89:a4:f9:06:f9:85:04:07:ae:4d:57:b8:bb:
d9:97:2f:41:a5:61:ea:cc:92:ac:40:aa:47:31:23:29:b3:16:
9f:d0:1a:e2:45:b1:c9:15:f3:43:ad:de:4a:25:5b:08:60:72:
40:dc:da:c4:31:60:3a:e7:00:19:17:34:88:72:7d:e2:39:e2:
ab:10:88:65:62:36:c1:10:4a:a8:27:ef:0e:20:ef:18:9e:20:
c9:e6:0b:65:cb:98:a6:be:f8:5b:6c:f8:94:95:dc:18:11:ae:
47:51:96:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-ams.rpki-client.org