Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73bebd8c-d63a-4c8e-9a90-c05c8e4a1302.roa
File: 73bebd8c-d63a-4c8e-9a90-c05c8e4a1302.roa (raw, json)
Hash identifier: M7KeQRucygCakPq3qyqSfmGNF2G2d4YWY9B8HCOhNg4=
Subject key identifier: 2A:FF:1F:24:4C:53:F1:1D:A7:DD:C4:88:96:B6:A4:01:52:13:59:1A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 30A83DBCE1A51BA5BD929FC6E668FBA6C156E274
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73bebd8c-d63a-4c8e-9a90-c05c8e4a1302.roa
Signing time: Mon 21 Aug 2023 00:00:00 +0000
ROA not before: Mon 21 Aug 2023 00:00:00 +0000
ROA not after: Mon 25 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:a8:3d:bc:e1:a5:1b:a5:bd:92:9f:c6:e6:68:fb:a6:c1:56:e2:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 21 00:00:00 2023 GMT
Not After : Sep 25 23:59:59 2023 GMT
Subject: serialNumber=6bb58187e480ac2e570b0058b11443e179fd4b30c057bbcf28b7d65eb85ebccc, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:21:44:4d:8c:ea:29:56:c4:65:3a:9a:88:46:
d8:39:9f:90:69:de:12:ef:de:90:66:38:77:cd:1c:
04:6e:eb:62:67:68:62:54:1a:af:18:27:de:e3:b0:
67:2e:85:d0:41:81:fe:a0:14:99:d2:13:9a:2b:99:
02:43:65:86:e5:12:cd:2f:66:51:83:e8:02:36:17:
b3:04:dd:60:9c:9d:11:a0:27:f0:b9:e1:47:29:2b:
b2:37:d9:86:79:14:14:38:b3:34:be:26:76:a2:70:
9e:5e:6c:57:d9:23:8b:04:d8:23:c0:98:5e:d2:cc:
d7:a1:6e:90:fd:1e:89:93:d6:9d:ce:88:50:5b:a0:
9a:1f:86:a3:48:f9:0b:da:b5:62:ef:62:23:df:64:
54:71:b8:62:ea:5c:aa:d3:a4:5a:40:fd:07:1a:88:
e4:6e:73:93:9d:59:f4:3a:dc:09:4c:7d:f5:1f:be:
cb:33:e8:da:e8:34:40:1f:b7:bf:8d:da:54:e8:29:
95:d8:3b:98:7b:48:dd:91:ee:3e:c1:8e:6b:27:82:
ac:71:be:62:83:be:ad:c3:94:8b:ed:63:e6:73:f0:
3e:e0:1e:a3:6c:ed:31:4a:9a:34:d1:42:35:32:1b:
e5:34:0c:a8:f9:c7:f5:6d:7f:3c:c8:9f:bb:dd:bf:
77:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FF:1F:24:4C:53:F1:1D:A7:DD:C4:88:96:B6:A4:01:52:13:59:1A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73bebd8c-d63a-4c8e-9a90-c05c8e4a1302.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
74:a6:f8:7e:62:a7:f0:a8:37:1f:29:6a:6b:c9:4c:31:50:65:
2d:bd:58:50:90:bf:f8:25:f9:d4:83:6a:1f:93:4d:70:d6:70:
46:88:4b:db:38:cb:67:f1:8c:80:d0:bd:57:6c:c1:f5:2c:be:
33:1a:ad:50:54:a8:ba:0d:f6:2b:f0:19:00:9b:c4:f6:30:ae:
cf:f5:8b:6d:e7:a9:52:cc:02:99:f3:14:cf:69:56:e0:cd:0f:
9e:c4:65:1f:6e:a4:4a:b1:79:23:21:db:5a:b1:cd:a5:f4:24:
f8:64:5d:bb:b0:74:61:5f:64:9d:1f:5f:3f:d3:21:d1:d5:b2:
23:cc:10:f2:23:df:37:8c:76:b9:74:e5:29:ec:f7:b1:ab:da:
40:5d:39:dc:33:b2:b3:d4:b9:09:e0:8c:c5:e0:b3:c1:3f:2d:
be:9e:fd:75:84:90:cc:2f:24:9e:7d:d7:47:6f:c5:7c:d4:bd:
b0:84:29:82:c7:a3:67:fa:ee:1c:4e:b7:b2:bd:ca:e5:63:19:
07:0b:af:57:18:62:8e:b0:3f:c5:2b:bc:6f:01:e5:c4:b5:2a:
e5:5c:af:fb:d2:64:a0:db:27:78:96:72:f2:9c:5c:79:50:3f:
6f:8e:9f:4f:42:ba:97:87:5f:58:2c:67:c4:15:aa:ab:ed:d5:
9d:5e:3f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-ams.rpki-client.org