Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7891d119-82ad-470b-a26d-850879d45b6f.roa
File: 7891d119-82ad-470b-a26d-850879d45b6f.roa (raw, json)
Hash identifier: J6GIG9Y5SGhdn3W0O/NhItbLUQXE5KS/XFaTMdObT5M=
Subject key identifier: 84:DA:5B:A7:9A:55:19:D8:07:4B:8D:5D:5F:ED:8C:45:6C:E0:E7:BC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1402A271189056D3B7ECE1891A49AA0FB2CC30EF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7891d119-82ad-470b-a26d-850879d45b6f.roa
Signing time: Thu 03 Aug 2023 00:00:00 +0000
ROA not before: Thu 03 Aug 2023 00:00:00 +0000
ROA not after: Thu 07 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:02:a2:71:18:90:56:d3:b7:ec:e1:89:1a:49:aa:0f:b2:cc:30:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 3 00:00:00 2023 GMT
Not After : Sep 7 23:59:59 2023 GMT
Subject: serialNumber=83defdef81a3bc56a40806b2fd0060c7d1779726dadb40c6a525a22c52b5a4ca, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5e:af:f9:2a:51:f2:76:fe:0a:fe:b1:63:1d:
5f:6b:40:3d:43:3e:87:5b:34:b5:fb:45:45:7f:27:
56:82:c8:99:41:26:cb:b2:40:7a:99:c1:07:e0:77:
27:8c:d4:c0:1c:45:2b:6d:f2:95:21:b6:d2:df:1e:
8f:63:da:9c:25:d8:92:14:b8:0f:81:1c:99:49:c7:
56:28:e2:01:72:8c:f2:26:22:88:cd:ae:c1:b6:58:
53:f4:d6:35:ac:a4:cb:16:6d:77:20:1f:ce:81:34:
05:60:2f:f4:06:04:88:bf:00:cc:31:e4:a7:2d:1e:
c3:aa:36:cf:c6:2f:32:91:a9:d4:f4:d1:a8:28:1b:
bd:4b:0a:20:f6:25:31:3b:28:c6:9b:89:ec:d2:0c:
e0:92:b4:99:91:29:ba:05:11:65:92:99:c5:dc:23:
60:35:17:df:7b:37:e8:bd:a1:c8:17:d7:33:83:47:
72:3c:4e:21:df:56:de:e8:86:f5:cf:64:9d:1b:69:
00:20:3e:98:68:08:ac:33:9d:7e:32:a6:b2:84:6f:
c5:1b:35:01:8f:09:9c:53:7c:b3:a3:68:28:f4:53:
c3:07:b0:15:e1:87:87:80:d3:aa:2f:7f:95:f3:3c:
74:1c:44:f9:10:ee:b5:f3:99:74:a5:03:f8:21:02:
5c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DA:5B:A7:9A:55:19:D8:07:4B:8D:5D:5F:ED:8C:45:6C:E0:E7:BC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7891d119-82ad-470b-a26d-850879d45b6f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
28:8a:a4:f3:d0:84:df:e4:6f:36:f9:7d:1a:3a:97:cb:be:7d:
88:82:bf:64:60:0d:77:1f:bd:67:91:9c:b2:56:13:e6:46:04:
dc:de:52:06:f9:f3:9f:87:45:80:1f:c8:93:57:f1:2e:b2:a7:
d7:44:fe:0d:eb:f8:02:d2:79:53:2c:1b:61:35:6b:50:a1:8d:
68:d2:7b:7b:44:9a:f2:26:2c:d3:f0:d9:47:3d:98:87:6c:aa:
08:b8:6c:37:92:ff:c8:fa:ab:27:e0:d8:49:77:47:2c:1a:06:
03:8f:d5:48:ed:ec:ec:ea:2f:58:00:05:fa:e8:97:a6:28:48:
1b:24:74:fb:3c:61:63:41:95:1a:97:86:07:5b:e3:20:75:f5:
6b:3b:c2:a4:50:ed:f1:03:b5:41:22:62:6e:40:32:90:5c:4a:
d3:16:49:3e:d6:37:d4:06:4d:e4:ad:80:e2:9c:e6:0b:26:64:
35:48:d9:88:a2:c2:f7:1c:ce:b5:3b:3a:8a:9c:31:75:20:34:
2e:46:66:cb:30:a5:27:66:62:59:75:ab:bc:c2:14:1f:f0:7f:
8a:ab:08:1d:d6:af:67:96:20:f7:34:cd:95:3e:21:17:21:bd:
6e:3a:9b:23:b5:06:a9:b5:b1:39:61:6f:50:8d:62:99:e8:c7:
f6:ec:f3:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:54 2024 by rpki-client on console-ams.rpki-client.org