Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a7e7d34-d8d2-4546-ad4a-cd1d60f5af76.roa
File: 6a7e7d34-d8d2-4546-ad4a-cd1d60f5af76.roa (raw, json)
Hash identifier: vfk4km5P0UvUZZy2KkSJwkezTwbwLh7UTYG/xq5YQ0I=
Subject key identifier: 58:EE:BF:53:BD:B7:A5:52:83:10:CC:4F:14:38:2C:97:A0:18:73:87
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 025F9B7E8BA69D3F29AA3F7072D5A340DB474C9A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a7e7d34-d8d2-4546-ad4a-cd1d60f5af76.roa
Signing time: Sat 22 Jul 2023 00:00:00 +0000
ROA not before: Sat 22 Jul 2023 00:00:00 +0000
ROA not after: Sat 26 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:5f:9b:7e:8b:a6:9d:3f:29:aa:3f:70:72:d5:a3:40:db:47:4c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 22 00:00:00 2023 GMT
Not After : Aug 26 23:59:59 2023 GMT
Subject: serialNumber=94aadcc0bfac14c4041e48a96d0935e122d0028008c3763ba838971f7a3b5c6a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5c:2c:e8:3e:6f:99:a6:88:46:b4:59:94:8b:
a3:d7:b8:15:a0:c9:40:d8:0a:52:45:30:e6:11:5c:
91:20:df:37:45:25:31:a2:f3:66:de:14:97:a7:b9:
f7:ae:c2:c3:2d:c9:6a:7b:3d:de:1e:90:de:7e:ae:
74:c4:dd:40:30:32:c8:0e:a3:fb:3a:89:7f:f3:04:
a9:47:41:af:30:c3:f0:99:e7:7a:6e:ec:f4:eb:0f:
5e:52:16:03:ec:ad:58:f7:e1:df:d0:11:de:2f:c8:
84:f7:76:8e:7a:f2:36:ea:97:82:8e:80:63:95:cc:
69:19:11:2b:fb:12:aa:99:ef:72:4c:d0:f8:a8:9e:
ce:cc:d4:b6:45:2e:ae:fa:98:d8:52:dd:ad:27:0a:
81:7c:ed:d2:a2:85:2e:af:57:33:07:51:78:a5:47:
b5:69:55:c4:93:c6:82:0e:54:07:18:d8:0c:2f:2f:
81:5c:02:aa:f1:ae:9c:03:fd:b1:22:0a:2c:71:4f:
54:55:c4:d3:1e:00:96:56:f6:b9:c6:1a:66:25:15:
12:67:78:02:26:28:10:80:53:88:05:0c:e7:63:b6:
ab:ad:da:aa:12:55:82:63:9e:5a:d3:70:42:ee:2a:
f8:0c:ab:e1:24:32:2e:7b:6b:44:8f:43:5a:29:dc:
69:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:EE:BF:53:BD:B7:A5:52:83:10:CC:4F:14:38:2C:97:A0:18:73:87
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6a7e7d34-d8d2-4546-ad4a-cd1d60f5af76.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
05:3c:59:00:6d:b0:19:20:f9:c2:74:0f:97:b0:7e:19:96:f0:
6a:12:4b:1d:55:f6:05:71:4c:8e:6d:cc:b4:e0:c6:7d:1c:74:
0d:c2:2b:09:a6:8a:4d:a1:84:9f:7d:17:66:f2:6d:14:a6:fa:
26:aa:ad:ce:11:09:cc:0e:32:7c:2a:3b:17:d6:fc:ef:b0:a5:
4f:a3:76:f1:d3:f5:13:37:16:3f:23:cf:da:06:d7:b8:98:f7:
81:4b:10:00:4e:c5:08:7e:0f:35:5b:c5:61:a2:2a:49:df:08:
be:26:81:41:64:e9:87:e4:74:2c:0b:71:b4:1f:c5:c5:2a:9c:
8a:ed:5c:b8:8a:f2:f2:aa:5d:0b:e8:35:ef:4a:02:8f:88:91:
c7:5e:a7:66:27:b2:a1:1c:e0:3f:62:b5:55:1a:e1:81:77:26:
43:ea:23:4a:a2:12:d0:51:ac:0c:ca:18:10:5c:af:c5:26:a7:
1f:1a:76:23:a2:3c:bf:fb:f1:cf:66:16:50:be:bf:24:6f:50:
d9:f1:7f:68:2b:b0:54:d9:82:67:86:1f:7b:8a:e9:28:a5:70:
91:cd:7d:21:ac:55:23:1a:7e:b0:68:05:24:8a:c5:75:78:3d:
4e:71:40:23:37:f7:24:08:de:7c:f6:94:ad:60:1a:45:ab:75:
64:2a:99:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-ams.rpki-client.org