Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/72621c38-00ee-4e92-9c05-1a5b916cc77b.roa
File: 72621c38-00ee-4e92-9c05-1a5b916cc77b.roa (raw, json)
Hash identifier: EcxtDxSEijOpevKkXmVWx/nQ30MqTqopSFq5CQXUv6s=
Subject key identifier: 03:0B:0D:CB:D0:D2:7B:6C:EE:6D:7A:2A:15:73:1B:61:3E:65:19:23
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 63FF9F5149F5EF9A2DAE1E7486A4FC893A9801A6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/72621c38-00ee-4e92-9c05-1a5b916cc77b.roa
Signing time: Thu 25 Jan 2024 00:00:00 +0000
ROA not before: Thu 25 Jan 2024 00:00:00 +0000
ROA not after: Thu 29 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:ff:9f:51:49:f5:ef:9a:2d:ae:1e:74:86:a4:fc:89:3a:98:01:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 25 00:00:00 2024 GMT
Not After : Feb 29 23:59:59 2024 GMT
Subject: serialNumber=b4c9364ae821fe99c87af87d88cca6485d0055e71c186a789e9e01f7ccf60f1b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:55:89:24:c4:9c:5f:30:d0:76:1f:56:fd:d9:
39:a4:f5:1f:f6:95:26:c5:ab:e2:50:53:f3:7d:5b:
85:a2:a9:dc:58:86:dc:49:42:e7:4a:1f:a7:eb:76:
5d:7b:e7:20:5d:04:b5:25:df:1c:14:b5:51:71:f6:
e9:74:31:24:c1:15:b3:15:68:b7:eb:b2:09:18:aa:
fb:56:6a:c1:a5:3d:58:c9:e6:3a:99:0b:8b:6f:5b:
45:d8:b2:a6:23:ea:77:39:fd:0e:84:e7:98:02:3a:
39:e1:55:7c:13:42:bd:82:b6:28:eb:3b:7d:c9:73:
80:dd:9b:bc:7f:8a:f9:40:3b:cf:53:a8:1d:e5:9b:
15:83:4d:66:c2:d5:78:b2:27:13:e2:1b:8f:56:24:
29:e6:70:2a:93:93:a7:9f:85:41:73:a0:db:69:40:
b8:07:f4:e3:c5:ec:43:71:08:d1:f6:d3:dc:7b:30:
cf:93:86:fe:9c:a7:0f:9f:80:b9:98:2d:31:ee:bb:
41:c5:a6:f4:eb:0f:3d:e8:90:76:f8:88:8a:e7:43:
60:93:dd:2d:91:a9:9f:29:5b:e4:e4:8a:fc:3c:07:
92:a1:7e:5e:56:1c:4a:b0:e4:62:1c:a5:9e:ec:10:
f9:d6:eb:37:d9:40:66:b5:71:7f:87:6b:f9:9e:b5:
0c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0B:0D:CB:D0:D2:7B:6C:EE:6D:7A:2A:15:73:1B:61:3E:65:19:23
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/72621c38-00ee-4e92-9c05-1a5b916cc77b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
97:9c:34:1e:03:51:cc:6e:84:88:17:8c:70:47:ed:dc:54:3a:
b9:27:36:32:de:d3:71:d6:71:d4:12:af:20:d1:7c:bc:a4:c0:
20:1d:98:90:82:55:3a:db:11:73:63:28:0f:6f:a6:11:70:2a:
27:2e:99:e8:b6:e6:f6:81:e0:fe:52:e7:d5:1e:55:9c:2a:48:
87:96:d5:05:a9:ba:a2:ab:2d:d9:ab:12:a5:4a:95:3c:2e:2b:
ea:51:42:14:42:43:bc:0a:ac:39:39:ab:0f:34:93:6f:c0:bb:
ff:4e:c8:fd:ad:f7:f7:e0:ca:50:7e:05:5e:5e:81:0f:dd:d6:
68:69:d5:c7:65:90:d4:a7:a6:b4:eb:ff:08:44:56:b7:64:90:
ce:10:d7:ae:a1:d5:c6:c5:15:6f:42:e8:b7:8b:0c:79:7a:c1:
b9:f2:e4:df:78:16:40:46:93:08:1a:46:fe:a9:01:92:7c:6e:
1d:c6:5b:37:77:d2:aa:2a:09:55:c5:e4:e6:c4:64:e4:a1:2c:
ff:ce:5e:e6:63:9a:29:c5:6a:dc:ac:e1:bd:23:4b:97:46:ee:
b7:e3:84:43:47:7c:5b:bf:0c:fd:cc:7f:b3:cd:33:f3:70:54:
ac:8c:e9:2b:60:21:45:af:22:a6:76:63:70:75:f5:2b:c0:1c:
ad:45:49:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-ams.rpki-client.org