Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a255ee1-ccb9-494a-ac2e-d76e14bb2c8a.roa
File: 6a255ee1-ccb9-494a-ac2e-d76e14bb2c8a.roa (raw, json)
Hash identifier: BUAl90tzZuoojWDBbEqUmufaylrUciE23bMtwomP2Hg=
Subject key identifier: BB:B7:BF:E8:0E:5D:CE:1E:43:2F:4F:BB:9B:9B:97:16:65:4D:49:00
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 62BDE0ACA088CB6ED709987146B5069918B63955
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a255ee1-ccb9-494a-ac2e-d76e14bb2c8a.roa
Signing time: Wed 19 Jul 2023 00:00:00 +0000
ROA not before: Wed 19 Jul 2023 00:00:00 +0000
ROA not after: Wed 23 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:bd:e0:ac:a0:88:cb:6e:d7:09:98:71:46:b5:06:99:18:b6:39:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 19 00:00:00 2023 GMT
Not After : Aug 23 23:59:59 2023 GMT
Subject: serialNumber=8f1d32f206ca5c8ae39b76a00af8435df02b672113cda5ee35186e600a34241e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:20:90:f9:a2:8e:8c:08:91:8e:e5:40:ff:15:
f9:b1:e0:8e:4c:1f:90:24:bf:d5:1f:b9:78:44:38:
94:6b:65:2c:57:16:0d:2c:8a:bf:26:23:24:20:67:
6f:cf:d7:4d:bd:47:45:2e:2b:8b:4b:c9:5b:6d:5c:
d1:a1:12:c7:3d:6e:59:46:e4:60:cf:1f:97:2f:db:
5e:04:2f:ce:19:1c:e1:ee:94:96:1c:19:ef:e9:4a:
d2:69:7d:28:36:f8:5e:ce:65:68:13:4d:1c:39:af:
2a:f3:c5:ae:83:2d:ce:b5:22:d9:cc:31:67:04:ae:
57:65:20:2b:2d:1b:0c:ae:0d:ad:a6:79:88:a3:ff:
e9:37:ca:0e:f6:f2:81:65:c4:9d:24:95:5d:3b:1c:
8d:e1:ad:13:48:ac:80:2f:fe:90:0c:2a:6c:7a:90:
04:b7:a3:f5:73:3c:ea:e5:1f:3a:17:d2:f5:60:33:
f2:86:a1:99:5d:5b:f8:af:e1:25:2e:44:5a:63:b8:
8e:06:43:cd:fd:69:03:b9:e7:98:ae:81:1d:4c:b4:
65:49:0a:99:14:20:54:c8:3c:44:e0:39:02:65:a4:
03:1b:82:ca:dc:10:ed:a5:a9:aa:eb:d5:c7:94:e9:
a3:29:ab:03:74:60:a2:73:75:58:d2:7f:5a:81:67:
da:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B7:BF:E8:0E:5D:CE:1E:43:2F:4F:BB:9B:9B:97:16:65:4D:49:00
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a255ee1-ccb9-494a-ac2e-d76e14bb2c8a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
55:bd:06:aa:0c:a5:f1:d3:6f:1a:53:6c:45:28:65:3e:00:21:
08:d0:43:ca:9c:e7:87:33:83:5b:49:a1:f1:5c:db:2f:71:7e:
e8:bf:75:ab:63:04:db:97:f9:b0:95:9a:74:13:fa:07:26:ac:
26:d1:51:fb:c8:94:8a:80:28:92:2e:37:49:3d:e2:b9:36:a1:
3a:35:d6:38:af:fb:22:c4:3d:48:de:25:cb:b2:fd:64:07:6d:
f8:13:90:71:e1:d3:4b:85:ed:15:0b:10:5c:ff:00:a2:ac:40:
d6:01:0c:3c:3e:3c:a6:dd:83:45:7d:88:5e:d6:8a:7b:0b:e8:
45:a9:3f:80:91:d8:3a:b7:f6:76:27:31:1b:03:ca:9d:37:dd:
22:1a:a5:86:29:93:f5:8f:5e:bd:d0:17:43:02:87:fd:e7:49:
1b:67:9d:41:43:5a:20:bc:c1:06:a0:e9:84:12:2b:e4:97:f6:
f0:35:cb:23:66:54:78:6d:1f:d4:59:23:52:39:22:fb:d8:e0:
4e:91:5c:51:c9:0a:9b:93:73:d4:63:e6:bf:41:a0:63:dc:bc:
b5:73:12:bd:1c:b2:14:04:c1:e6:f7:b8:d3:eb:c0:b4:98:c6:
6d:d6:a7:dc:e7:aa:51:e3:6c:ee:59:4a:ae:41:e5:1e:0f:f6:
d9:8e:ac:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org