Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/68bcc2fa-6cde-407e-be01-1c49510ed7d8.roa
File: 68bcc2fa-6cde-407e-be01-1c49510ed7d8.roa (raw, json)
Hash identifier: f2GAt6HknuI+fddzKqGwpr06SLEcmdfofmBtCs/cADE=
Subject key identifier: 3C:FF:BC:2D:C2:62:0B:35:52:BC:74:63:67:89:09:79:A8:3A:54:5A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 682B99D5527B1C8E69E56FF545B92DEE9158A80F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/68bcc2fa-6cde-407e-be01-1c49510ed7d8.roa
Signing time: Mon 08 Apr 2024 00:00:00 +0000
ROA not before: Mon 08 Apr 2024 00:00:00 +0000
ROA not after: Mon 13 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:2b:99:d5:52:7b:1c:8e:69:e5:6f:f5:45:b9:2d:ee:91:58:a8:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 8 00:00:00 2024 GMT
Not After : May 13 23:59:59 2024 GMT
Subject: serialNumber=be266f7cc3aea06c8c077097cbc7463f08efec3cdb25d1507fb7fa49c83820ba, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:4c:4e:30:3e:8b:05:88:cd:d1:37:13:b4:aa:
35:12:ae:62:d5:f4:77:cd:b2:c4:b3:17:4a:0b:50:
8f:19:7f:b1:8f:1e:70:ff:5a:8e:b8:61:4e:b6:8f:
59:d6:77:96:fd:91:a6:63:fd:3b:3d:3a:c0:d4:b7:
f9:4c:03:90:79:29:eb:eb:a1:0e:b9:14:12:26:15:
d9:57:ab:97:5f:31:90:58:34:eb:98:42:59:7a:0e:
b1:03:80:09:2a:75:b2:84:b4:84:82:9d:f3:1b:2a:
6e:03:f2:e7:39:25:d6:28:27:05:09:ef:b8:92:6b:
d8:be:a1:14:88:c6:d7:c5:7c:87:9e:2d:70:aa:73:
0e:32:f2:e2:ea:e7:a5:37:94:89:2b:a9:8e:de:cd:
f6:1d:07:27:88:41:e0:a0:f7:89:c6:9d:a7:08:d9:
93:7b:df:26:a1:e3:3c:12:6f:13:fb:ee:64:db:08:
ad:91:23:98:52:c5:90:2d:ba:9c:48:3d:da:18:0e:
da:95:11:f7:01:aa:89:b8:82:34:8c:0c:cf:ad:a9:
40:e9:fc:52:56:3e:dd:aa:0a:40:dc:fe:a3:0b:5f:
83:65:23:53:6a:41:90:cf:30:d8:11:76:89:23:22:
1b:6f:d1:33:3b:9e:02:18:3c:05:2e:89:14:ff:47:
93:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FF:BC:2D:C2:62:0B:35:52:BC:74:63:67:89:09:79:A8:3A:54:5A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/68bcc2fa-6cde-407e-be01-1c49510ed7d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
32:e1:e5:8a:ca:98:ef:99:0a:53:08:1a:83:c4:51:33:51:e9:
52:5b:47:a9:0d:f5:09:64:19:21:66:6f:21:9c:dc:46:fc:3e:
e3:dd:9f:6c:78:90:31:f5:e0:29:68:08:96:dc:60:2d:59:af:
dd:3a:36:ca:0c:70:44:f2:c0:9e:34:9b:f4:30:aa:11:cf:18:
7c:75:b3:f1:ef:ab:f8:4c:ae:bf:0f:39:a0:f7:0b:fc:69:1c:
51:8c:47:38:9d:7a:9d:16:64:81:e5:34:3c:d2:36:de:17:20:
d2:a1:9b:a4:dc:51:f5:de:a5:09:67:cb:41:58:e7:47:7a:de:
28:db:38:6c:1a:38:09:71:35:56:8f:c5:c9:2a:e1:43:b6:43:
42:77:ab:98:0d:ba:58:89:f5:5d:47:2b:e7:b8:b3:e0:ba:b1:
da:54:e2:9e:34:65:b7:2b:71:52:6f:ef:1a:fd:cb:61:60:ef:
91:c1:d7:53:94:af:16:9c:2c:bd:96:1d:53:3b:b7:96:7c:01:
81:d6:83:c1:4c:ea:ea:0f:f2:f6:19:15:ec:15:f5:e3:83:98:
55:0c:bd:8a:5f:e2:dd:86:d8:85:55:81:23:5e:dd:ff:fa:3c:
9e:4b:a7:4d:94:ce:5c:41:49:6b:e2:25:0e:a9:7d:e9:5b:61:
e8:4f:73:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-ams.rpki-client.org