Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7f6bb5fd-76de-47d2-acb1-c343d89454cd.roa
File: 7f6bb5fd-76de-47d2-acb1-c343d89454cd.roa (raw, json)
Hash identifier: 3avO2PHbXa0gJ/SnZIhK1TvM5wlv/MVP5iGilo0va7g=
Subject key identifier: 4C:09:86:92:2D:33:AB:9A:BC:F6:0F:7E:03:B3:56:E2:C4:1B:06:9C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 50FC1A035030EC736684566A5C1D4FFFBCCD9997
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7f6bb5fd-76de-47d2-acb1-c343d89454cd.roa
Signing time: Thu 02 Nov 2023 00:00:00 +0000
ROA not before: Thu 02 Nov 2023 00:00:00 +0000
ROA not after: Thu 07 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:fc:1a:03:50:30:ec:73:66:84:56:6a:5c:1d:4f:ff:bc:cd:99:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 2 00:00:00 2023 GMT
Not After : Dec 7 23:59:59 2023 GMT
Subject: serialNumber=b26d946dd84b240906901ee13a494a40069f6bfac130d3212b3c7bf7ef95c0ee, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:94:0b:d6:2f:f5:89:0f:e0:06:0a:1d:da:51:
83:86:dc:3e:65:83:62:ec:12:24:e9:65:37:6d:b4:
7a:49:e2:85:73:b5:de:38:bc:80:c4:38:ce:5f:96:
20:e0:5d:e6:d5:68:7c:8c:21:02:5f:f6:2e:2e:7c:
08:be:04:84:43:50:c6:7c:86:d2:aa:aa:e3:bf:8d:
b4:1a:36:14:58:24:87:66:51:05:1c:fd:61:99:0d:
15:a6:58:c0:bb:1d:05:4d:a6:d2:f0:06:78:c7:22:
7a:83:7e:d1:89:c4:47:d3:2e:b4:43:53:a7:0c:39:
4d:5a:e9:35:2d:b9:30:74:5a:5a:99:78:70:85:39:
73:8b:55:b0:0c:35:05:f5:69:a5:02:98:0c:ac:d6:
e7:06:a5:55:c9:f5:82:e9:59:0c:eb:37:37:a9:51:
9e:cb:1e:26:ed:38:25:81:aa:bd:94:95:ee:5e:9a:
e5:ee:2f:cf:8a:be:ea:e6:2a:22:e9:17:e2:8d:75:
69:9f:53:42:02:bf:84:27:79:59:5a:1a:91:fd:00:
24:57:88:69:9a:04:90:9c:b6:85:87:1c:51:5b:d8:
41:1f:ff:f6:c6:59:f8:ae:09:76:e9:69:50:c0:17:
aa:0b:17:61:2b:aa:f9:2f:fc:02:20:29:7f:83:34:
bc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:09:86:92:2D:33:AB:9A:BC:F6:0F:7E:03:B3:56:E2:C4:1B:06:9C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7f6bb5fd-76de-47d2-acb1-c343d89454cd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
63:b4:15:bb:8d:ae:40:96:7c:cd:27:22:85:1c:0c:59:d8:a5:
3c:93:a8:45:60:20:a5:02:a9:f5:ce:f7:38:35:50:d6:02:cb:
73:db:a7:20:d3:20:07:86:66:4d:ff:cc:e8:57:ae:dc:2b:08:
68:e8:1b:af:c7:86:36:42:2c:49:c6:e0:de:59:49:96:85:8b:
d9:28:9e:45:86:6d:ec:c4:ef:77:46:93:c4:17:6d:47:ce:fc:
ca:ce:98:9f:39:d5:64:e2:5f:39:01:e2:57:c6:77:41:0e:f5:
63:b0:e2:d8:9b:87:a9:fa:fb:a7:51:e3:7e:67:2d:08:55:1c:
fc:97:30:4f:a0:4c:57:f8:75:69:60:af:38:2f:b5:fc:c8:36:
af:fc:d6:46:b7:ff:b3:08:2e:1b:5b:98:26:fa:16:0c:76:01:
db:2f:a9:77:64:26:b4:77:cb:32:06:b8:68:73:96:e6:ad:6f:
5a:3d:cc:88:e5:17:54:45:ad:32:87:a2:0e:ff:2d:e1:0b:18:
0c:d2:52:c0:8f:b8:51:3c:ee:0a:00:70:2e:25:35:6a:c9:0b:
75:d7:fb:fa:1d:14:87:5b:6c:a4:98:31:3c:5a:12:4b:a6:03:
d8:f3:21:bf:18:a4:37:1e:cd:80:17:b8:86:5f:9c:14:1d:0d:
7a:75:72:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-ams.rpki-client.org