Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73fb127e-fb6e-4b0b-b1d9-07d2adba885f.roa
File: 73fb127e-fb6e-4b0b-b1d9-07d2adba885f.roa (raw, json)
Hash identifier: kMo3n5USnG173uicxRcM3hsc6qhQAugGoQeU8Ldbcdw=
Subject key identifier: 71:80:1B:49:7B:9E:FC:AA:27:92:02:A1:26:C9:C8:05:B6:81:B5:F3
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 136B0F173CA3993E948160FB0A53C4D05E0003E3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73fb127e-fb6e-4b0b-b1d9-07d2adba885f.roa
Signing time: Mon 31 Jul 2023 00:00:00 +0000
ROA not before: Mon 31 Jul 2023 00:00:00 +0000
ROA not after: Mon 04 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:6b:0f:17:3c:a3:99:3e:94:81:60:fb:0a:53:c4:d0:5e:00:03:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 31 00:00:00 2023 GMT
Not After : Sep 4 23:59:59 2023 GMT
Subject: serialNumber=15fe01ca365969d76553bcd0760a63fd19ab40703f75461b838b3f21936efe33, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ce:9b:df:54:d2:76:26:e4:8f:e4:61:68:21:
6f:70:f5:1b:24:00:7c:a6:c2:df:e9:87:1d:f5:3c:
7e:98:c8:b3:97:ca:98:de:55:fa:70:fa:da:36:51:
4b:aa:fa:25:07:50:5d:97:04:a6:18:34:26:6b:6e:
8e:e9:0a:98:48:66:69:8e:6b:00:84:7f:1d:49:8d:
eb:c7:97:c3:70:c5:3f:82:58:5d:73:dd:59:11:26:
91:ae:c9:6c:eb:3e:a2:96:0c:8d:a4:f3:87:a9:39:
5f:cb:54:6a:33:7f:28:0b:a3:72:98:6c:92:ae:82:
bb:83:42:7b:86:9b:2f:3e:2a:db:79:4c:d4:9d:10:
b4:2a:22:7a:43:de:e4:d2:23:5c:5e:ac:56:51:e6:
20:0c:d8:5a:c8:3f:df:2c:d5:70:db:5d:db:da:c9:
56:80:4d:5f:13:57:10:b1:d9:1f:0d:0f:23:1d:e6:
eb:9b:c1:22:1a:ce:4c:c2:21:47:0a:d8:86:c0:f0:
56:a8:ff:02:16:97:0d:d4:06:0b:57:ad:08:4b:b2:
43:b6:85:23:7f:88:08:e0:ef:5d:be:f6:27:69:80:
d6:ac:a4:ef:55:8d:f8:66:dd:d9:e6:0c:d3:fd:f0:
84:88:10:f6:74:8e:99:42:28:26:10:cf:b5:dc:f7:
4f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:80:1B:49:7B:9E:FC:AA:27:92:02:A1:26:C9:C8:05:B6:81:B5:F3
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/73fb127e-fb6e-4b0b-b1d9-07d2adba885f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:6b:eb:6c:13:07:fc:3c:21:d1:cd:2c:fe:d1:e5:97:58:0b:
1f:d6:47:e2:29:9e:2a:a4:b6:dd:3a:6f:bc:50:7f:16:8d:44:
2c:42:3f:d1:05:82:71:92:49:ab:48:3b:47:6d:28:04:09:5f:
c7:71:16:42:a8:1e:6f:a5:26:14:59:bd:1f:1f:81:9b:cc:f1:
6d:19:04:86:b9:aa:6f:b3:c2:70:19:41:93:ff:51:be:3d:1a:
e7:c2:c5:55:75:bd:91:ea:a6:9f:f8:1b:d4:1d:22:83:51:3d:
33:64:e3:d0:b6:df:88:03:e8:85:5e:c8:8a:51:58:f4:62:87:
fc:e7:54:a9:ba:7d:31:bd:65:ee:4e:e0:19:41:16:aa:15:4b:
db:da:31:b1:60:fa:0b:80:97:2e:21:b1:23:f7:e0:60:b7:5e:
ba:0f:7e:bd:b3:a8:ad:eb:d2:a0:56:9b:b0:d4:be:f9:84:3a:
6c:9a:c6:92:b3:1b:f6:05:4b:1d:4c:fe:0c:bf:35:b9:99:4b:
a5:2c:c9:cc:5e:ef:91:e3:c5:f7:54:0c:bc:53:9f:e3:ef:ea:
2a:ef:85:3a:36:5a:07:f2:f1:81:6a:6a:c2:75:2c:56:42:68:
09:7b:cb:31:bb:6e:54:60:04:6c:f5:8e:8b:25:0d:b9:38:ca:
e1:a8:21:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:32 2024 by rpki-client on console-fra.rpki-client.org