Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/84d4064f-969c-4622-a637-cf54fa99bf5c.roa
File: 84d4064f-969c-4622-a637-cf54fa99bf5c.roa (raw, json)
Hash identifier: lkPPqN3GrTZqdp1PXsbsN9KB45OrUiw7hVYpIM7B+1o=
Subject key identifier: 92:46:48:C7:0B:ED:E1:6E:68:ED:08:1D:F6:14:F7:6F:A0:C2:27:A0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 34AB5096AAAF80E1F0913D7037504A6FFECF7D9F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/84d4064f-969c-4622-a637-cf54fa99bf5c.roa
Signing time: Sun 09 Jul 2023 00:00:00 +0000
ROA not before: Sun 09 Jul 2023 00:00:00 +0000
ROA not after: Sun 13 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:ab:50:96:aa:af:80:e1:f0:91:3d:70:37:50:4a:6f:fe:cf:7d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 9 00:00:00 2023 GMT
Not After : Aug 13 23:59:59 2023 GMT
Subject: serialNumber=c6e67df2500ec10c6af0cdffe9c6fa8b0ed5eeb0994ac64d47c104fa5d180188, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a9:30:8a:f3:09:46:53:63:79:94:5e:b0:59:
fe:e1:f9:6a:d5:0a:4b:47:18:fc:56:3e:fc:36:4a:
4a:a9:8e:8b:c4:07:34:f6:2f:88:64:01:09:8d:b8:
2e:a8:ba:96:41:f3:7e:74:8b:78:b0:0a:58:b5:f0:
79:11:5d:b0:0a:31:f4:2b:15:04:ee:14:65:74:56:
61:71:2a:4d:19:f5:ba:c8:b8:44:0b:6f:cf:25:5d:
7d:8e:5c:9d:54:a6:00:85:e6:1d:9b:0f:8b:67:dc:
24:3a:b6:b6:fd:28:f2:4d:c6:bd:52:49:50:fe:8c:
b4:cd:3e:fd:26:0e:69:75:3d:2b:42:e3:61:b5:7e:
06:96:3f:90:69:be:8f:da:04:a2:54:c6:ea:23:3c:
55:d2:87:39:79:72:60:da:cd:12:08:8d:ae:28:ae:
8e:15:84:1c:b2:2a:89:d6:d5:1a:93:1f:c9:29:b1:
11:53:eb:59:1a:7a:b1:6e:92:d9:10:f7:fa:0b:0e:
0b:23:68:4c:f6:41:b6:5d:7a:6a:52:db:7f:9b:29:
1d:8f:b9:5e:0b:7c:9b:06:d4:31:e8:6f:0d:ec:66:
76:f6:e6:05:ce:d1:61:86:d1:df:cb:96:33:e9:1b:
36:97:f7:46:d0:80:ae:4e:d3:f1:9b:1a:92:25:a1:
27:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:46:48:C7:0B:ED:E1:6E:68:ED:08:1D:F6:14:F7:6F:A0:C2:27:A0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/84d4064f-969c-4622-a637-cf54fa99bf5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
42:fd:4f:38:bc:5b:b0:e0:0b:7e:f0:77:11:1b:2d:48:f0:5c:
b4:98:25:51:74:8f:e8:66:94:bf:ea:f8:17:08:b3:57:fd:9a:
e0:83:17:6d:8a:07:47:4a:64:05:34:07:34:81:e0:8d:b2:0e:
ed:a9:9c:9a:bc:7a:27:6e:ec:59:70:01:24:77:60:4d:0b:97:
b4:df:77:4a:de:24:45:a1:18:56:53:04:89:a7:2e:b8:dd:22:
ed:e5:61:b2:11:73:01:cc:ca:55:e4:d9:7f:9a:42:ea:c4:a9:
6e:90:cd:50:02:ae:71:6b:90:6b:f0:69:57:84:3d:c4:b4:27:
ea:f8:a8:6d:ae:62:69:92:88:dc:8a:10:3c:e2:df:4a:dd:79:
aa:6c:a9:b5:b1:56:5a:fc:79:8a:38:6e:88:35:b0:9b:2a:ea:
04:2b:a2:af:4c:46:a9:fa:d8:08:90:52:7b:83:9a:a7:cf:c1:
d2:dd:4f:0c:6e:1f:4a:d2:15:ba:71:d1:1f:65:75:a1:c2:c2:
59:72:c2:a7:14:6a:33:8d:d1:1f:84:76:38:29:2c:32:6f:59:
d9:4e:04:16:98:10:3d:ec:cf:86:46:27:15:9e:3d:4e:fd:0b:
67:30:22:65:9c:8a:71:af:00:3d:4c:61:50:e3:b3:d9:98:29:
20:e8:60:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:34 2024 by rpki-client on console-fra.rpki-client.org