Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6df97e05-12b3-4edb-be63-80a6d1f75b7b.roa
File: 6df97e05-12b3-4edb-be63-80a6d1f75b7b.roa (raw, json)
Hash identifier: mfGynV+63SJOM9wVfy+UEF+7FbFqV1VtXrflhMPCuGY=
Subject key identifier: 9F:FC:A1:02:AA:94:DB:48:4D:71:AF:A5:7C:23:DF:B2:63:79:95:3C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3E76C15DC069532FD1DD653141886F9D03CD42CA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6df97e05-12b3-4edb-be63-80a6d1f75b7b.roa
Signing time: Thu 29 Feb 2024 00:00:00 +0000
ROA not before: Thu 29 Feb 2024 00:00:00 +0000
ROA not after: Thu 04 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:76:c1:5d:c0:69:53:2f:d1:dd:65:31:41:88:6f:9d:03:cd:42:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 29 00:00:00 2024 GMT
Not After : Apr 4 23:59:59 2024 GMT
Subject: serialNumber=00e0d800705bcd2fdf2563e07598363f7e35bd56673b43916bd86a810e848efb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:e0:b4:53:03:15:35:47:98:62:47:28:2f:
51:65:4a:0b:c2:3f:2e:bc:a2:13:40:0b:41:0b:50:
f9:af:1a:49:24:8b:59:57:59:ae:3b:94:fb:38:8a:
ac:f2:2d:e5:89:f8:34:bc:a5:24:84:c7:38:c7:28:
61:59:ad:16:55:b0:47:61:5d:99:bc:04:6b:76:fe:
08:2f:9f:90:3f:18:8b:e2:b0:2a:32:3c:be:66:e1:
99:13:9e:63:75:ac:cb:28:24:1a:6c:10:07:17:81:
f5:dc:99:e3:f3:3f:2e:b4:4c:04:5a:fb:3b:5d:c9:
60:1b:b7:bc:46:c9:6a:b6:30:36:a7:25:67:2b:6d:
60:5e:9a:7e:58:ae:8d:86:79:54:e1:bd:30:26:08:
60:c2:f1:89:9b:75:16:05:c9:65:6f:dc:4d:59:63:
f5:4b:92:fb:c1:0d:bf:20:8a:65:b3:e1:fc:30:37:
e9:b1:2b:b2:1e:51:e0:85:20:3b:28:34:82:d4:d9:
d9:64:9e:cd:2c:e5:05:86:4a:c7:d1:11:c0:7d:23:
1a:34:8f:fa:05:06:f6:78:05:dc:b9:b8:94:7e:58:
17:75:b6:88:2f:e3:96:f0:0a:22:b8:8a:73:47:e8:
71:51:c2:5f:61:70:f0:5a:8d:2a:04:9f:a9:d6:04:
19:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:FC:A1:02:AA:94:DB:48:4D:71:AF:A5:7C:23:DF:B2:63:79:95:3C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6df97e05-12b3-4edb-be63-80a6d1f75b7b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:cd:a9:03:2c:3a:95:63:84:7b:60:8e:9b:e3:fe:ed:94:d1:
a6:8e:1c:6f:aa:0c:b1:e1:54:b3:d6:55:b7:e8:7a:df:e0:5e:
d6:31:97:ca:f0:27:f0:f9:63:2e:25:e1:37:72:50:05:9b:59:
39:84:39:a3:78:eb:31:04:22:8e:2c:f8:4e:cd:a0:54:33:50:
b9:b0:d4:7f:06:34:18:d2:75:1c:60:bb:3f:07:04:16:5b:66:
d7:c5:57:5a:4f:7d:8a:ec:96:7a:d7:cc:c1:c8:10:4e:44:c7:
fa:22:ce:f3:43:08:e1:b6:f9:3c:3b:3f:be:e7:89:12:f8:fa:
d6:5e:0d:73:90:d5:46:fc:98:59:cc:e2:13:0c:5c:89:26:95:
c2:03:51:96:32:19:5a:ac:28:18:ad:5b:0f:14:76:71:44:6f:
14:4b:5e:4c:d2:17:7f:24:75:c5:e5:18:69:b1:58:06:47:a4:
e2:44:13:9a:fa:2d:f1:d3:bf:d2:67:dc:75:7d:88:d8:7f:6e:
08:e4:e9:8c:cc:87:9c:6c:e4:b0:5f:ff:92:8b:3e:17:df:86:
c3:f0:86:55:b4:9c:bb:c6:0a:c7:c3:4b:6b:62:a5:61:b3:34:
c6:d1:cb:68:f8:ae:e4:c5:3f:0b:66:25:d7:67:42:37:a4:7b:
0f:4e:22:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-ams.rpki-client.org