Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7cdd175b-1c85-43aa-a22e-b737325e440b.roa
File: 7cdd175b-1c85-43aa-a22e-b737325e440b.roa (raw, json)
Hash identifier: SRwVZ8Tu4qRIM9GHJ7JXuTZWkxv1oTPbW+AnHtcMJJk=
Subject key identifier: BA:C6:66:EC:76:3D:1D:65:90:4E:06:0C:61:0F:AE:94:54:24:FB:BF
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 79B49818CB6ED1FA387E29DA49C6A58195C6556C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7cdd175b-1c85-43aa-a22e-b737325e440b.roa
Signing time: Fri 29 Sep 2023 00:00:00 +0000
ROA not before: Fri 29 Sep 2023 00:00:00 +0000
ROA not after: Fri 03 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b4:98:18:cb:6e:d1:fa:38:7e:29:da:49:c6:a5:81:95:c6:55:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 29 00:00:00 2023 GMT
Not After : Nov 3 23:59:59 2023 GMT
Subject: serialNumber=6e36206b6fca5167ccaf2396df5797d1abc828b954b96efcefcee14d08f7a966, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:50:0e:c3:5e:1a:4c:f2:31:fc:4d:c0:ec:65:
f0:a9:e3:2e:1e:b6:df:ea:92:9e:72:f5:e4:f7:c5:
01:73:0c:44:00:2b:c7:72:3c:1f:70:70:f9:4d:68:
ff:b4:23:13:73:58:64:40:60:57:9d:b5:68:f2:4f:
48:45:95:d3:9d:8a:2d:69:4a:f7:29:03:32:82:26:
21:ef:ae:74:e5:e2:74:60:dd:2d:0f:94:4b:ea:2c:
74:b6:e3:b1:ba:9a:a9:84:82:3e:56:b9:44:4e:7c:
50:67:ae:84:1c:2b:1c:e2:4c:03:d4:dd:c6:39:0b:
c3:73:6b:2d:02:bd:a9:84:29:d9:e2:37:ee:95:67:
dd:ca:97:35:5f:db:71:2f:84:bd:e9:89:bb:67:ad:
58:e9:07:ee:25:2f:92:47:99:06:ec:f6:d3:69:83:
51:c3:67:5e:6d:f4:46:ff:b1:85:0f:ef:68:cf:de:
e8:c9:27:a7:42:9d:7f:4d:5f:06:0a:a4:c1:02:bc:
52:64:a1:b6:d3:36:46:ff:8b:2c:e0:21:67:19:34:
3b:08:1f:12:4c:2e:c3:48:db:c9:da:c5:ad:78:17:
83:27:5b:78:c0:89:4a:14:7e:6a:0e:ea:b6:ae:bd:
4f:b1:f1:37:ff:09:db:95:4f:37:e6:5a:25:19:ef:
78:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C6:66:EC:76:3D:1D:65:90:4E:06:0C:61:0F:AE:94:54:24:FB:BF
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7cdd175b-1c85-43aa-a22e-b737325e440b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
21:80:6d:28:7a:60:66:b7:9f:b7:ee:29:2a:12:77:1b:d5:f4:
7d:0c:6e:1c:78:31:71:19:fb:e6:94:d0:47:d1:1a:60:41:6f:
4d:25:25:32:50:69:7f:6c:3f:ef:c0:fb:13:b4:97:73:31:85:
ca:97:f6:df:12:93:cd:8b:52:4d:41:b4:f6:81:52:2d:10:31:
91:01:c1:31:49:cf:73:f0:4d:7b:90:e4:3d:11:60:42:fa:13:
81:2b:b5:a7:72:46:c8:c2:9f:c1:b6:e1:14:d2:57:06:1c:39:
15:eb:4f:2b:43:66:cc:c2:40:43:40:51:21:1f:43:d8:8a:53:
74:4a:20:e5:5f:21:3f:63:f9:db:7e:80:73:ff:d0:26:51:e2:
c6:01:86:46:7a:07:3a:5f:10:2e:44:f9:8d:9f:ee:85:50:00:
83:b4:74:38:e6:7c:5c:ab:b3:e9:26:21:74:78:1d:94:76:69:
9e:3b:8b:46:15:57:fb:c8:3b:d0:47:30:cb:ba:d7:2d:62:ee:
ad:3e:4c:00:f4:01:68:0d:c0:11:9b:97:83:95:fa:b6:c6:d5:
93:79:73:24:7a:e4:74:e3:db:70:66:65:be:c6:80:84:c9:e2:
5a:c1:56:f3:16:58:2b:c5:c3:8a:ef:bd:7e:3a:56:5f:f9:11:
f3:bc:ca:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:55 2024 by rpki-client on console-ams.rpki-client.org