Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/727fe0b4-a13c-4494-af51-4277439d590c.roa
File: 727fe0b4-a13c-4494-af51-4277439d590c.roa (raw, json)
Hash identifier: IsHtyLm7WWUE2elni0s1zevnxTeGis7jgwOlfnsZQ1o=
Subject key identifier: A0:6E:A0:5D:6E:A7:97:6F:8C:F7:27:A8:20:02:E3:19:AC:D0:D5:92
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0108AF6D3C58B81B005AC3A9F01A4914298BB76A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/727fe0b4-a13c-4494-af51-4277439d590c.roa
Signing time: Mon 03 Jul 2023 00:00:00 +0000
ROA not before: Mon 03 Jul 2023 00:00:00 +0000
ROA not after: Mon 07 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:08:af:6d:3c:58:b8:1b:00:5a:c3:a9:f0:1a:49:14:29:8b:b7:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 3 00:00:00 2023 GMT
Not After : Aug 7 23:59:59 2023 GMT
Subject: serialNumber=42fe3b9afbcb270ff604ff660cd5376135718bfa52737a0fc02c1c517441f6af, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1b:ac:f1:04:63:14:aa:10:1d:70:c7:7d:11:
c0:67:d8:8d:7a:9b:99:2a:f8:4e:9a:74:9e:3b:78:
40:48:c8:c2:2b:c2:7a:05:74:dd:b9:5c:20:8f:d2:
af:fb:d5:ce:13:89:c7:40:47:ee:72:aa:b4:0b:24:
74:70:cc:f9:a3:1d:ae:1a:10:29:07:73:fd:15:3f:
73:22:61:bf:0e:e0:cb:b0:5d:e9:c9:7a:25:8a:40:
86:73:78:e3:e3:62:1c:ab:25:2f:47:03:1a:17:77:
20:aa:fa:b3:4e:9e:25:98:16:b2:e3:3c:27:ba:11:
fd:43:1a:46:c9:39:32:ef:f1:72:a2:ea:8a:74:2d:
a7:5b:ce:a6:ce:0e:99:5b:7c:2c:dc:9d:dd:13:a4:
a0:d2:c0:ff:d9:63:3a:97:9f:34:17:69:19:49:d8:
da:3d:8b:ea:a2:3e:5e:cb:8c:95:7e:50:c8:7c:59:
b4:58:25:c8:d8:ab:64:08:e4:61:26:2b:93:86:e9:
e2:69:b6:46:e7:61:34:86:98:5b:76:94:05:fa:b9:
a3:af:3a:b1:9e:a4:d0:c5:33:94:ce:5a:16:65:2f:
b5:e2:c3:b6:55:54:b7:e3:aa:bb:e0:92:ad:b2:f0:
5c:5a:0a:2c:6b:f2:3f:7e:98:49:3d:be:91:12:2d:
62:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:6E:A0:5D:6E:A7:97:6F:8C:F7:27:A8:20:02:E3:19:AC:D0:D5:92
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/727fe0b4-a13c-4494-af51-4277439d590c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
33:14:78:06:a2:7e:16:bf:cb:37:72:24:dd:c1:96:fe:d4:a8:
11:91:d2:62:5d:20:08:cb:03:ec:da:54:be:d8:6f:4f:03:45:
97:23:98:cb:dd:3b:7c:86:26:d6:ac:cb:18:21:fb:79:c6:c1:
29:da:57:ec:fd:61:a6:f2:e1:de:0f:14:88:83:2a:4c:af:53:
3c:fe:3e:e8:8d:6f:e7:b6:09:74:24:70:83:12:f3:99:69:8b:
cd:70:02:49:2c:29:fa:b8:e5:b6:67:8c:1b:76:38:0d:35:ed:
7d:e6:d5:f7:c3:59:0c:3a:29:71:00:b3:9e:74:75:73:59:b2:
8c:8c:b5:cd:3a:b9:89:e8:97:a8:15:d5:9d:42:cb:91:ff:be:
34:18:49:d2:3e:c0:0a:35:02:89:83:41:ff:38:ec:5a:13:9e:
81:ec:e7:d9:1e:7b:42:71:ba:f2:00:33:25:62:0c:2e:66:6c:
2a:5b:0a:47:d3:ba:12:65:17:99:f0:32:38:92:8b:51:b5:05:
f8:8a:54:71:8d:68:99:47:03:6f:5b:ea:f8:4a:69:3a:35:e2:
a2:47:46:f4:ff:0a:eb:fb:58:87:9f:b0:b9:af:03:de:6f:17:
f4:95:20:a6:be:8a:a6:3a:12:db:b3:56:78:d1:69:c5:30:3f:
f4:78:4f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-ams.rpki-client.org