Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/76f8dba7-2986-4e42-aac0-51bb3a110f2d.roa
File: 76f8dba7-2986-4e42-aac0-51bb3a110f2d.roa (raw, json)
Hash identifier: 8xJctG8EtynwfIdZ24wHvf19rPm8XfXnbUvP7NZCssg=
Subject key identifier: 51:4C:15:C9:3F:BC:84:C1:62:70:89:7E:FB:65:55:38:BA:0E:E6:C5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 16C1812F0B07C89117082901527F374C36D1D8A6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/76f8dba7-2986-4e42-aac0-51bb3a110f2d.roa
Signing time: Sun 28 Jan 2024 00:00:00 +0000
ROA not before: Sun 28 Jan 2024 00:00:00 +0000
ROA not after: Sun 03 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:c1:81:2f:0b:07:c8:91:17:08:29:01:52:7f:37:4c:36:d1:d8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 28 00:00:00 2024 GMT
Not After : Mar 3 23:59:59 2024 GMT
Subject: serialNumber=6b9e17825847cd905f53466b86804612de098f74a9900f1ae73db6a82a431cd5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0c:96:6b:f0:36:38:e4:31:14:f8:2e:4c:99:
1b:ac:1a:68:6b:7e:3e:d3:3f:f0:f1:48:20:f6:1b:
18:6e:1e:6d:e8:3a:27:ef:8f:64:8c:3a:12:74:f7:
0c:bc:65:44:a7:7a:61:e1:f1:b1:83:92:45:7a:44:
d2:63:c3:cf:d2:cc:87:9c:f0:c3:15:5d:58:9b:34:
56:14:a9:a9:9a:1b:60:90:ba:4a:79:1f:cc:21:34:
9b:06:95:12:cf:d5:7f:dd:eb:6e:e3:4b:de:92:58:
f3:5e:e5:1c:49:65:ff:b4:69:93:6f:6c:87:2c:a8:
e0:d1:a1:6a:be:ba:33:d7:6d:00:1e:72:c9:91:ad:
49:8a:3c:9c:07:71:81:45:97:ba:3f:91:af:0b:90:
bb:a4:37:20:79:5d:2b:26:32:6b:03:07:44:59:e9:
7f:fe:22:be:8e:40:8e:b0:30:37:1b:b6:a6:08:7d:
8c:02:4c:53:19:18:6a:20:dc:2a:eb:c9:8f:da:24:
42:53:c4:97:fd:94:10:0a:8f:8d:2b:47:e5:08:ac:
a1:6b:e1:4c:63:03:ea:d5:bd:69:e0:dd:31:e7:dd:
4c:24:87:5f:13:4e:44:e9:f4:d0:e7:31:fd:c7:50:
91:7b:9e:9c:ae:f1:06:cb:b6:3f:50:ad:f6:cf:39:
f0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4C:15:C9:3F:BC:84:C1:62:70:89:7E:FB:65:55:38:BA:0E:E6:C5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/76f8dba7-2986-4e42-aac0-51bb3a110f2d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:e9:b3:32:e8:0e:26:92:fb:9f:b9:08:9a:e7:7e:ed:b0:3c:
33:51:c2:80:2c:19:eb:95:ac:68:de:df:4c:7c:6b:5f:b1:41:
b0:5b:97:22:5d:a9:e7:17:83:f2:35:57:c6:d7:c3:82:b5:d5:
7d:69:98:8d:ea:f9:d8:e3:80:91:f3:a0:cc:cf:cc:47:0e:ac:
3f:1c:4e:b3:ec:ef:8a:f2:73:d4:e3:01:d0:c2:50:aa:21:de:
f6:67:d6:82:56:27:8f:79:d8:1c:36:65:6f:e5:38:79:8b:8d:
3f:ae:1a:72:ec:31:4c:28:fa:f4:c2:b5:73:e3:3f:35:ba:3d:
78:0c:cd:7d:66:e5:2c:c1:c2:d1:82:00:df:75:7d:08:ba:b2:
e9:b8:71:7a:5c:66:72:fe:7f:0b:9b:b6:ab:30:49:21:13:b5:
c3:52:1e:d3:37:af:d7:13:ea:41:7d:9d:aa:6f:28:62:f4:38:
e8:8c:60:33:96:49:38:84:d9:26:57:e7:e2:c1:db:3d:23:03:
f8:bb:4d:83:e6:b0:69:44:35:07:0b:25:6f:75:99:7c:d0:d5:
f5:1a:fb:77:f0:6f:69:92:b7:ab:bf:b8:65:ad:bb:fd:91:26:
6a:50:1f:57:02:4d:f6:85:c3:b2:14:a8:64:b3:16:99:a3:d5:
c0:3a:94:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:53 2024 by rpki-client on console-ams.rpki-client.org