Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/79bc8746-67f3-4190-a6ea-1dcea3805333.roa
File: 79bc8746-67f3-4190-a6ea-1dcea3805333.roa (raw, json)
Hash identifier: KLR20N4kVbQEXkBzYWE37lucTxJSqwlfagwmEN+8gQU=
Subject key identifier: 9C:20:AD:95:F4:43:00:49:F9:2D:90:01:7A:80:53:CE:3A:11:47:FA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2768C754521C82B4D9E69B22A07B82703267FA82
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/79bc8746-67f3-4190-a6ea-1dcea3805333.roa
Signing time: Wed 16 Aug 2023 00:00:00 +0000
ROA not before: Wed 16 Aug 2023 00:00:00 +0000
ROA not after: Wed 20 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:68:c7:54:52:1c:82:b4:d9:e6:9b:22:a0:7b:82:70:32:67:fa:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 16 00:00:00 2023 GMT
Not After : Sep 20 23:59:59 2023 GMT
Subject: serialNumber=b9f793d6269429310b1f01ee217e89c1b5be6846c5b693f50db08263dfd62ae7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2f:7f:f7:d0:dc:5c:35:28:e1:a2:3c:97:3d:
1c:59:b4:1a:26:d5:0b:76:4b:ed:ef:8f:ed:a7:a7:
03:f8:62:81:24:88:1a:e3:2b:dc:c4:c5:f5:a6:d3:
c4:fd:09:d4:f9:99:73:d1:af:af:85:d5:cf:bd:0a:
1d:4b:46:e0:fa:36:7c:93:96:e8:2f:50:98:1f:25:
f5:3c:fd:1d:e1:a5:83:bb:0c:62:27:c0:0d:b0:63:
4f:a6:5f:8e:cb:b6:1f:62:f8:34:92:31:e9:a4:94:
f0:2e:88:c0:e0:83:54:1e:7d:29:6e:62:1a:f6:64:
8f:b0:c5:80:82:ed:b9:5e:87:fc:86:38:85:96:e7:
88:45:f4:3f:c3:99:72:2f:98:f0:cf:9a:b7:74:e7:
33:25:50:4b:2c:c6:66:e1:64:56:a3:d2:25:3d:20:
9f:b4:f8:76:ca:15:60:ee:48:a1:17:e3:55:5e:55:
1f:06:1b:f2:d2:08:96:8d:0c:67:7d:71:bc:4c:6c:
a5:47:73:2a:84:9b:63:00:7f:c3:67:0a:74:f6:af:
23:7c:15:20:cb:11:15:21:9c:5d:94:93:6c:13:39:
0d:7f:2a:b9:7e:1d:9e:0b:4a:0e:11:55:22:b3:94:
83:79:80:67:49:6f:a4:43:af:a5:41:b0:ae:37:60:
42:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:20:AD:95:F4:43:00:49:F9:2D:90:01:7A:80:53:CE:3A:11:47:FA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/79bc8746-67f3-4190-a6ea-1dcea3805333.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
56:5c:4d:96:9d:a9:ee:e0:98:49:90:3a:a7:db:e7:1a:22:3b:
3a:01:e3:f6:86:26:d9:7c:18:b6:b1:46:60:27:40:25:c2:40:
5d:cd:3a:33:76:1c:2a:b3:fd:6c:02:83:1c:a4:62:29:c6:a4:
b9:ec:c9:06:fa:68:15:e5:49:d2:20:5f:15:71:01:95:cf:27:
35:12:ab:fd:e6:8f:8e:2d:9a:4c:bb:af:3f:28:1f:cd:db:45:
f1:92:f7:f2:7f:37:44:db:0a:68:87:5d:9d:09:bb:d4:75:30:
45:e4:e2:7f:f0:46:08:98:cf:e4:1a:8c:3a:3d:79:ae:bf:f4:
73:1a:33:e2:03:f6:1d:10:cf:92:c6:76:0f:b2:6e:12:a2:f9:
7f:44:34:8c:90:e9:46:00:17:89:6c:64:1c:a2:92:a4:a8:3e:
5e:1b:fa:18:43:8f:c4:8c:24:88:1f:f3:93:85:e5:21:11:d8:
c5:c4:2d:33:f4:7e:60:63:b1:c2:67:ca:7c:c3:a6:e1:04:75:
77:ee:af:8f:f2:a8:ba:af:e7:d4:d2:b0:c6:bd:32:46:a6:3a:
3b:b0:51:eb:50:63:45:c0:a9:02:01:32:77:0b:6a:c4:d3:39:
34:e9:4f:54:f5:29:4a:03:c0:5a:e0:f0:8c:d0:98:34:cf:1b:
14:2f:9e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:54 2024 by rpki-client on console-ams.rpki-client.org