Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6e83f57f-4741-4d9f-b734-295291467e95.roa
File: 6e83f57f-4741-4d9f-b734-295291467e95.roa (raw, json)
Hash identifier: j1G0O52VmlKCPdDjoYZEiXULjyEgMKyHE/Y3sLFltS8=
Subject key identifier: F6:32:C2:E0:58:3B:74:43:1C:5D:51:EF:EA:2C:2F:44:26:16:27:3B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4F0463F04BA868E2AABB0EEB7BC741EFB05CC362
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6e83f57f-4741-4d9f-b734-295291467e95.roa
Signing time: Fri 29 Mar 2024 00:00:00 +0000
ROA not before: Fri 29 Mar 2024 00:00:00 +0000
ROA not after: Fri 03 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:04:63:f0:4b:a8:68:e2:aa:bb:0e:eb:7b:c7:41:ef:b0:5c:c3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 29 00:00:00 2024 GMT
Not After : May 3 23:59:59 2024 GMT
Subject: serialNumber=8908eb3da52049471c12e12876efaf7ceb2d92695811d1dff6b005a5dd36045c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:60:1b:43:1e:65:c3:fd:5c:35:27:10:9c:aa:
5c:08:0d:cb:85:be:6a:77:c2:b1:0e:55:c4:0d:02:
b8:43:73:55:20:ab:db:b3:0d:25:f1:53:b2:9d:90:
fb:a0:4d:14:88:89:8e:17:98:99:7f:ba:16:d9:fa:
c0:12:61:8d:bc:a8:1a:44:13:d7:03:d7:db:30:68:
e8:5b:39:74:04:36:fc:e4:c3:05:bc:88:17:8e:7e:
9f:d8:3b:43:91:e8:b3:e8:8f:9d:d1:43:9c:66:36:
11:09:63:f0:96:4d:ba:97:57:4f:a4:a5:5f:a4:ff:
6a:78:ea:fa:d7:e2:5b:fd:59:2f:d0:77:b5:0d:3c:
b0:83:41:0c:1e:be:98:21:eb:13:f5:d5:f6:f1:e4:
37:24:f0:e6:64:6b:38:1d:1f:89:ab:f4:46:d9:56:
e1:52:51:24:46:df:dc:1c:4d:4f:60:0c:31:97:97:
f6:e6:c6:01:a0:e3:23:2a:ac:6a:d0:06:3a:a9:2e:
8a:6a:a9:7b:c8:60:7f:37:87:25:95:54:7a:67:37:
8e:9a:58:f8:70:b6:36:0c:fe:00:e1:83:b8:31:cc:
81:0f:95:bd:45:f4:e1:47:98:b3:b2:03:c8:8d:cb:
95:9f:4e:ec:38:1c:50:ac:57:34:19:52:ab:2a:04:
ce:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:32:C2:E0:58:3B:74:43:1C:5D:51:EF:EA:2C:2F:44:26:16:27:3B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6e83f57f-4741-4d9f-b734-295291467e95.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
54:93:a0:d5:5a:d5:f6:19:14:9e:b4:89:ef:c6:57:85:43:e8:
e7:68:ff:ea:17:e7:3e:f1:e8:34:5c:27:70:e5:18:c1:7a:33:
26:9e:b1:65:a5:23:1b:51:38:9a:35:0c:34:30:ff:f7:11:92:
a0:61:60:cf:ee:c1:41:c4:18:49:0f:d5:55:a3:23:35:e2:7c:
bf:63:1b:66:a8:98:93:cf:42:33:f4:69:70:03:a9:04:24:13:
5b:6f:94:37:0c:e8:01:7c:6f:42:15:3a:06:69:d2:01:3f:d3:
c5:47:d9:42:21:16:82:c0:75:5a:99:8d:4a:9f:4e:17:58:77:
20:1d:74:77:e2:e8:27:b0:3d:65:c0:2f:da:0a:06:7a:be:10:
3f:b2:84:9f:57:f1:42:25:3a:43:c3:bc:d4:07:a0:37:4b:18:
39:e7:6e:6f:60:ba:94:48:d6:7f:d6:4e:ce:2d:63:b9:bb:0d:
29:c3:7e:d7:a3:8b:98:23:18:2c:3d:27:82:c7:3d:a4:db:1d:
08:94:be:8c:d8:76:6d:4c:c2:25:ec:f2:77:a3:c6:5e:b5:4c:
cb:c3:a5:2c:7e:23:75:df:56:e5:ff:00:65:1b:71:3e:e1:01:
89:a6:e2:98:4d:35:cd:23:23:02:86:ac:70:47:87:25:a5:6c:
78:fb:08:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-ams.rpki-client.org