Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/865609a2-16ba-4163-8b1d-0b9311b55ce4.roa
File: 865609a2-16ba-4163-8b1d-0b9311b55ce4.roa (raw, json)
Hash identifier: WL0/U6j+UPSwKHBSnUbVDcn8ZYfoCirBzp9LZ0VC+qw=
Subject key identifier: F8:54:56:0D:D3:FF:98:70:BA:02:21:16:6C:62:C5:01:78:56:20:B9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 32A9605A6672D450C40EF1372398905C3F051389
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/865609a2-16ba-4163-8b1d-0b9311b55ce4.roa
Signing time: Fri 02 Feb 2024 00:00:00 +0000
ROA not before: Fri 02 Feb 2024 00:00:00 +0000
ROA not after: Fri 08 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:a9:60:5a:66:72:d4:50:c4:0e:f1:37:23:98:90:5c:3f:05:13:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 2 00:00:00 2024 GMT
Not After : Mar 8 23:59:59 2024 GMT
Subject: serialNumber=b64eb1cd4b9af240ee560113f03041e76ff443d98e32a4824bf2c05c96ad330f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:db:99:4a:9d:bc:bf:b9:47:56:79:9e:bb:f1:
9c:62:02:61:10:e1:bf:76:04:48:0d:3a:3e:ac:14:
a7:08:cd:08:ad:df:a9:f4:61:d4:2b:9a:07:2e:f3:
33:4b:56:cc:35:06:21:02:00:64:46:f6:da:72:75:
da:e1:b3:cd:06:39:a4:1f:7b:fe:b7:8c:a1:c7:a8:
98:93:13:1f:bd:7c:a5:8c:f8:ae:81:7c:43:53:c5:
c9:f5:25:86:dd:90:dd:0f:f8:62:82:ef:98:2d:8f:
93:50:bd:68:b7:d8:2c:96:f9:92:ee:e5:4b:ac:c3:
a6:92:36:01:db:b0:46:f2:48:2c:4e:b6:bd:68:38:
f8:07:2a:59:3d:c0:eb:f3:c6:b5:55:aa:90:b0:6a:
f3:37:24:b1:dc:68:eb:bd:51:27:23:b7:ca:b7:8e:
7a:e7:98:83:9b:7c:cb:a0:b3:7b:f3:f5:ef:90:32:
4d:f9:b1:65:ad:0f:2e:6b:b5:b6:be:bc:8b:81:c9:
c9:86:fa:ad:3c:8d:53:52:15:34:ca:e6:5b:0f:aa:
81:6f:b7:28:1a:d9:e6:54:f9:0c:3b:12:a6:83:7f:
92:1c:9b:41:38:3d:21:68:31:5e:af:f7:c4:51:1a:
27:6f:5b:4c:e7:32:06:6e:fd:bd:b3:d1:e2:01:18:
82:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:54:56:0D:D3:FF:98:70:BA:02:21:16:6C:62:C5:01:78:56:20:B9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/865609a2-16ba-4163-8b1d-0b9311b55ce4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
88:0e:e3:52:ea:48:42:83:30:5f:08:c5:02:3a:04:02:57:e1:
b5:20:90:4f:3d:49:bb:57:ed:fe:20:ae:3b:0e:d3:3f:3e:61:
f9:63:cb:5f:c4:46:fb:c6:9e:99:f3:e2:11:f1:ca:3f:94:d8:
ec:0d:cc:a5:b0:ad:8a:82:0d:55:b7:db:d2:61:89:3b:72:3f:
27:bc:34:03:8d:4b:01:8b:78:00:1a:81:45:84:17:b8:6e:70:
b0:2f:d8:e3:97:fa:0d:db:59:0b:c7:ca:74:55:48:cd:43:4c:
c0:8d:57:3d:e1:64:43:5c:8b:10:9f:f8:55:61:7f:89:eb:c8:
3b:cb:0b:d8:37:29:9a:1c:e8:99:6f:d0:07:fd:3a:c7:ec:3b:
2b:b7:8e:dd:59:e8:3b:8b:be:35:12:55:7b:98:f5:39:c2:fb:
37:71:0c:fe:86:69:97:a1:b6:96:d9:ee:e8:17:cd:4a:bf:c3:
f7:28:c8:3a:e5:ff:45:b9:cd:46:f5:1c:9b:38:5f:0b:d4:c6:
52:38:d3:e7:e1:e4:a7:df:05:1e:05:fe:e7:a7:44:f5:5d:5b:
bc:48:fd:1a:8a:17:9f:58:44:a1:6f:44:49:9c:9c:e0:06:74:
33:62:a4:05:c3:5d:9a:2d:03:0d:2d:d7:57:36:66:61:d6:3b:
4d:f4:cc:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-ams.rpki-client.org