Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/681b9fc2-5944-4710-9765-eb54fa89d334.roa
File: 681b9fc2-5944-4710-9765-eb54fa89d334.roa (raw, json)
Hash identifier: bZPSB3UomS/lkMssplmaUQVc7P1Y42+NqMWzDxikEO0=
Subject key identifier: FC:9E:CA:E1:97:F5:30:F9:FE:23:C6:25:8A:80:72:50:31:95:61:5C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 405D0B824C7F782623C5BAA04B55F0C39712797D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/681b9fc2-5944-4710-9765-eb54fa89d334.roa
Signing time: Sun 27 Aug 2023 00:00:00 +0000
ROA not before: Sun 27 Aug 2023 00:00:00 +0000
ROA not after: Sun 01 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:5d:0b:82:4c:7f:78:26:23:c5:ba:a0:4b:55:f0:c3:97:12:79:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 27 00:00:00 2023 GMT
Not After : Oct 1 23:59:59 2023 GMT
Subject: serialNumber=bdf06b1cc54ccc4eb2af7b625d0a3d20e408ca97cf1b3b266d85292408ff58fb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:09:4e:81:04:53:c7:5b:2d:a7:ff:35:73:53:
2c:d9:cf:37:e4:e5:a0:07:45:06:c5:58:bb:9b:fb:
87:72:dc:37:25:13:65:9f:2e:d0:6c:59:0c:7f:5c:
c3:2f:49:36:51:63:a8:4b:82:a8:20:c0:b6:15:9d:
ed:64:35:8a:da:96:0a:af:5d:cc:12:d3:0a:87:61:
9c:4e:e6:e7:16:52:de:62:c2:75:32:5b:c2:b4:5f:
68:57:41:9b:93:3b:f9:b8:11:03:41:67:78:d5:48:
d3:55:ab:47:15:e0:39:30:29:7c:51:ee:2b:1f:ef:
cd:85:49:0d:42:71:d0:8c:bc:29:33:5f:71:9f:fd:
d9:d1:88:41:17:2b:0b:80:19:56:9e:93:a3:9f:31:
aa:fd:43:a6:17:fa:ca:8d:4a:82:af:2a:f9:ab:39:
1d:15:c8:44:00:0e:55:3b:86:b3:ce:ac:0c:28:1c:
a1:ce:8f:92:19:68:8c:f7:77:5f:34:16:63:27:c5:
d5:2b:35:66:7c:76:d1:5b:e5:54:c4:df:d2:46:50:
8c:24:62:cc:f5:62:90:73:2a:2c:a2:fb:64:9a:ba:
65:e8:a3:1d:9a:5e:d8:09:ab:03:9a:59:25:08:e8:
3d:b6:15:e1:48:dc:27:d8:31:1b:99:04:9c:47:3a:
d5:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:9E:CA:E1:97:F5:30:F9:FE:23:C6:25:8A:80:72:50:31:95:61:5C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/681b9fc2-5944-4710-9765-eb54fa89d334.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:04:0b:d5:61:26:b2:34:d4:75:44:c6:f7:65:da:fd:d6:de:
a1:1e:62:51:13:c8:0e:79:e0:15:31:72:5f:05:3b:e5:9f:e2:
31:a5:e0:86:77:b4:22:c8:fb:ca:c5:ef:58:b0:c1:8d:ce:d6:
4a:2f:3c:7b:8b:a5:2c:d4:19:ca:27:89:ba:e4:9d:3c:8a:15:
76:6f:6b:5b:b9:f2:68:c6:4f:03:e9:06:65:c0:4c:da:ba:82:
1d:ec:93:bc:3c:2f:92:b1:4f:1f:d0:8b:51:13:e7:7f:88:37:
75:e3:ea:77:53:e6:a5:b5:16:ea:8b:51:6a:04:45:5e:70:df:
c3:cf:0c:9c:ed:1e:1b:30:55:88:6b:9f:72:9f:9c:2a:77:ed:
aa:03:39:ec:8a:c5:9e:29:71:e1:84:b0:93:38:67:34:3b:8f:
8e:a3:70:78:8c:11:58:1a:86:b0:45:14:8c:5d:ec:5b:eb:58:
2f:af:c2:cf:b8:68:93:8a:c0:44:02:db:e5:62:77:16:84:76:
75:54:c8:3b:d4:21:91:1c:22:ae:79:84:e0:4f:99:9a:39:24:
0b:9d:1e:6b:7c:21:09:fb:cb:4d:8c:72:e5:0f:47:a3:61:74:
4a:a6:e6:fd:b5:7a:d7:23:9b:d0:48:1b:e0:a5:0a:80:84:04:
c9:eb:ce:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org