Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b5ead17-55f1-4141-8165-000da0098318.roa
File: 6b5ead17-55f1-4141-8165-000da0098318.roa (raw, json)
Hash identifier: kqU+BZy8I1GJ3KXSzA6vtRIiVQ6HXpnaETy7pMR3Li8=
Subject key identifier: 25:F1:60:62:BC:D0:E5:94:AD:06:F6:5C:8C:C7:59:E1:24:BE:D7:9E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5B8D7BCC76558EF9F5F336BCE9BE3F135AE9B4E4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b5ead17-55f1-4141-8165-000da0098318.roa
Signing time: Mon 28 Aug 2023 00:00:00 +0000
ROA not before: Mon 28 Aug 2023 00:00:00 +0000
ROA not after: Mon 02 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:8d:7b:cc:76:55:8e:f9:f5:f3:36:bc:e9:be:3f:13:5a:e9:b4:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 28 00:00:00 2023 GMT
Not After : Oct 2 23:59:59 2023 GMT
Subject: serialNumber=7627b1939802bd5142d285a91642999ac3b77b5209a86341c56d7aa572e79989, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4c:da:48:2f:ff:f6:65:1c:6c:b3:b9:da:cc:
57:95:c4:6d:93:37:01:b5:e7:50:c5:5d:3c:2a:59:
ec:84:59:cf:9e:41:61:b2:dc:4f:bd:92:2f:47:a3:
c1:50:55:5e:41:02:0f:95:bc:4e:8a:d9:14:5f:74:
9b:1c:cb:a7:6a:54:2e:2d:e8:0b:2f:7f:3d:06:6c:
93:6f:9f:5c:64:b3:68:0c:b3:f0:50:ed:7e:8e:00:
41:f9:ac:5a:31:fe:30:33:21:a2:41:ef:33:81:e1:
0f:4b:92:30:a6:54:2a:bb:0b:8e:6e:a6:db:cb:23:
69:73:d6:dc:8b:19:a8:81:68:a7:6f:fb:57:eb:c2:
d2:15:de:0d:49:f8:b2:7c:fc:3c:21:cf:da:e0:b7:
ef:c9:a0:bb:41:13:23:ab:f9:30:37:9b:4e:f9:91:
5d:5b:a7:48:aa:3e:ca:ba:e7:be:29:ea:b7:54:43:
30:2c:2c:07:06:64:ce:75:ed:68:9a:ec:28:b8:64:
23:f0:5f:f4:92:e6:bc:75:cc:89:01:de:66:b9:33:
60:dc:d1:19:e6:e0:a2:00:2b:be:b4:27:33:01:d6:
ef:55:e2:95:e7:14:5c:e8:a9:1a:22:8a:e1:1e:f1:
bb:41:44:31:58:9b:9e:a4:45:be:7a:1e:c9:89:1d:
99:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F1:60:62:BC:D0:E5:94:AD:06:F6:5C:8C:C7:59:E1:24:BE:D7:9E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6b5ead17-55f1-4141-8165-000da0098318.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
98:61:59:a0:db:dd:d8:4b:9a:8c:29:e6:ab:f5:31:c4:48:e8:
57:82:77:4a:13:6d:cd:27:2e:3f:ae:9a:63:41:7d:92:d6:23:
78:86:f9:e1:93:de:15:74:05:f6:47:64:4a:22:e4:0f:2a:6f:
7f:1d:6d:e1:7f:a6:55:e0:d1:ec:85:85:0c:cd:04:e0:5b:56:
be:26:c6:98:dc:17:54:83:aa:6f:87:2f:ef:fa:27:ab:cf:32:
8d:d8:e5:a4:21:4a:40:5d:25:da:f7:3e:fb:70:c2:0a:d0:7e:
ab:b9:2a:62:20:27:74:5a:49:84:c0:9b:40:f6:36:9d:ce:0e:
6b:a5:87:f6:0a:e2:70:4d:59:e3:70:98:5f:b2:7c:6c:fc:f3:
fd:8b:10:76:fd:da:4d:43:02:d5:2a:d0:ff:55:2b:6f:a3:2c:
34:30:82:c0:17:5a:e2:e3:ed:bb:a7:d2:a0:66:57:b2:b9:f2:
f9:ae:94:44:e6:4c:0f:2a:dc:88:63:24:7c:98:63:ed:b1:5e:
de:61:65:e4:fa:bd:6c:de:c1:0a:79:a8:0b:63:c0:6e:b1:e6:
64:4c:0d:dc:a2:15:dc:ac:ac:bd:74:01:b3:bc:05:20:5c:fb:
74:81:91:f5:7c:1f:7c:ca:14:25:64:97:3f:81:b5:af:31:f6:
05:e0:28:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:30 2024 by rpki-client on console-fra.rpki-client.org