Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8041657c-8ba3-4b96-9f04-39824f7ec72b.roa
File: 8041657c-8ba3-4b96-9f04-39824f7ec72b.roa (raw, json)
Hash identifier: 1r2V5nU0VFqvKKSzpvQUnjBXS9Me8jcnOBOSd3HVgqY=
Subject key identifier: 51:B5:38:EE:0D:90:A0:A3:7C:37:0F:7E:B8:E0:07:10:68:0B:5C:7A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5F0B75984AC3F560C56913C8989252A4FC7F775D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8041657c-8ba3-4b96-9f04-39824f7ec72b.roa
Signing time: Fri 16 Jun 2023 00:00:00 +0000
ROA not before: Fri 16 Jun 2023 00:00:00 +0000
ROA not after: Fri 21 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:0b:75:98:4a:c3:f5:60:c5:69:13:c8:98:92:52:a4:fc:7f:77:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 16 00:00:00 2023 GMT
Not After : Jul 21 23:59:59 2023 GMT
Subject: serialNumber=5674c8ba3748aa7f3dc204600bc194f65599b2ed62743a540a722f2f2e3b0277, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:85:49:04:1f:a0:2f:d4:4a:65:46:d2:ae:0b:
c8:ae:93:14:a5:95:98:c2:c9:3d:dc:6f:ad:4f:4a:
67:1b:e8:11:a7:f7:59:8e:64:1a:4e:ac:bb:a3:19:
81:e3:22:55:e4:58:de:09:15:d7:0c:49:48:b1:b9:
e0:43:93:ec:f6:93:a9:af:8b:6d:3a:dd:c5:61:4b:
e0:78:e7:9c:9f:db:39:90:40:fe:64:2e:f8:c6:cc:
61:b5:96:c1:9c:dc:b8:a9:4b:8e:f6:75:2f:06:31:
e3:cf:b5:32:6f:1b:05:a8:95:45:00:aa:33:f8:2d:
9e:11:0b:39:8d:a3:3a:59:5d:d5:88:7f:9d:c4:aa:
61:ce:fd:4e:39:3a:1e:19:b0:d1:f6:f8:01:72:6f:
7d:34:83:81:25:1e:58:74:5c:76:ed:99:49:3b:36:
b8:d9:9d:89:e9:2c:cd:fd:3c:3e:c7:12:67:da:6d:
6b:97:0e:f7:f5:4c:ec:51:b1:3e:9f:6f:5a:c9:42:
83:22:6a:08:61:af:09:6b:78:c6:52:8f:41:a5:8a:
66:bd:b5:83:e1:e7:94:73:1a:f6:1c:c8:9d:22:ff:
96:9c:2c:c7:c3:de:fd:b3:e2:7a:39:c2:86:aa:bb:
c7:af:95:fb:71:19:af:45:64:a5:18:f2:a5:78:5b:
5c:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B5:38:EE:0D:90:A0:A3:7C:37:0F:7E:B8:E0:07:10:68:0B:5C:7A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8041657c-8ba3-4b96-9f04-39824f7ec72b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:8e:0f:bc:76:e7:80:5e:cf:6d:48:83:82:81:f1:6b:f2:b7:
16:f0:23:49:1e:0c:d6:01:45:12:e3:00:73:12:c0:26:ca:35:
8f:e1:22:39:75:2b:c5:24:48:b0:10:c2:2c:20:74:7f:72:da:
d6:37:e0:4c:ef:5a:01:c8:91:15:c7:b5:11:63:7a:6f:f5:c2:
91:f2:cf:45:55:cd:7f:1b:3a:6d:c5:5e:85:c1:f3:fe:10:62:
a0:18:6f:51:a2:6a:4a:ad:37:99:a2:91:70:91:42:b8:1d:80:
f2:af:99:04:7b:53:ed:d7:a3:1b:85:5a:58:50:a8:c3:52:34:
08:c5:0d:2d:f9:65:a5:de:4b:6b:29:20:6e:c4:a9:04:03:9c:
55:8f:1a:b5:8e:c6:e1:21:6f:3f:e4:04:fb:12:ac:7e:1c:a0:
eb:da:8d:b1:49:c1:95:ad:92:46:04:9a:a1:bc:dd:34:5a:6a:
7a:03:d7:b1:16:63:75:11:5a:af:9c:de:d7:6a:a3:45:a3:05:
49:5f:9b:8b:03:0c:f5:f0:64:ac:7c:d8:ec:a5:4a:d8:ef:18:
a7:47:f7:bd:3b:eb:c2:c4:d9:01:55:cd:b7:64:0a:25:e4:8e:
c9:cb:ee:1f:51:3f:69:a5:46:51:4f:5d:88:8a:f9:de:b5:39:
91:71:6e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:33 2024 by rpki-client on console-fra.rpki-client.org