Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/87a7978f-d913-43a4-98f2-88a04772ac4c.roa
File: 87a7978f-d913-43a4-98f2-88a04772ac4c.roa (raw, json)
Hash identifier: 45p0RDFXKcyqYsJ3Ayi1oFReJ5j1oyB8zXJtP0YXFNg=
Subject key identifier: 06:03:65:22:B8:48:31:EF:94:83:DC:DC:49:10:3D:6A:52:56:7E:6C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1ABF6971074114C528788D2BC67A660D17DDD840
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/87a7978f-d913-43a4-98f2-88a04772ac4c.roa
Signing time: Fri 01 Dec 2023 00:00:00 +0000
ROA not before: Fri 01 Dec 2023 00:00:00 +0000
ROA not after: Fri 05 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:bf:69:71:07:41:14:c5:28:78:8d:2b:c6:7a:66:0d:17:dd:d8:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 1 00:00:00 2023 GMT
Not After : Jan 5 23:59:59 2024 GMT
Subject: serialNumber=e960bd999234c88c34dfe0363f4416ec961db917b093555a33da379ebd947d48, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:50:35:d4:de:e8:64:ad:c0:63:d8:31:56:0c:
c8:33:72:79:79:32:b9:d2:db:04:67:21:50:7e:42:
4b:d1:43:b0:67:ce:83:a3:f4:30:7f:2a:ab:bd:71:
06:3a:0f:4a:e9:a8:e5:84:ef:a1:7a:54:4f:9c:5b:
62:9f:84:4e:de:c9:1a:72:f6:77:07:65:30:49:d1:
bc:12:50:65:32:4f:51:bd:9f:42:55:52:6c:a4:6f:
74:9f:79:f4:fa:31:e0:a7:a8:ed:a1:c8:31:3d:92:
73:56:c9:7c:93:21:12:8a:58:53:42:30:68:67:c2:
6a:8e:82:a3:5e:8c:76:bb:f7:0d:fc:c4:4c:be:40:
e3:11:1f:1f:fd:bc:ae:c4:7c:f4:61:1f:5d:db:07:
9d:00:ba:7b:c0:fc:1d:10:3e:5f:99:80:96:e2:b2:
47:90:32:9b:58:df:02:2c:b0:4c:25:57:5b:c4:f6:
3d:5f:ae:83:51:a4:85:d0:2a:40:e5:1b:e6:ec:e7:
27:45:78:61:28:a4:13:7d:46:8b:49:56:06:7e:b0:
44:9d:5f:9f:9a:c8:e8:bb:db:40:1a:bf:78:07:43:
2f:74:dc:fd:08:52:a3:92:b7:4a:eb:e8:b3:16:8b:
53:1d:88:84:52:e9:08:4e:11:9c:aa:38:9b:bd:95:
b7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:03:65:22:B8:48:31:EF:94:83:DC:DC:49:10:3D:6A:52:56:7E:6C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/87a7978f-d913-43a4-98f2-88a04772ac4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
27:04:f8:e5:8b:0a:ee:65:24:73:f3:95:8c:35:3d:7f:2a:cf:
b5:21:60:90:98:22:e4:9e:22:ee:6d:f2:06:b6:a1:6c:94:8e:
46:a4:c5:90:f1:27:d9:dd:cc:5d:14:5c:c1:82:59:4e:ee:04:
66:fc:9b:97:82:9c:26:c8:1b:5d:b4:40:7b:c6:b7:2b:59:78:
b9:70:9e:ef:78:67:25:aa:15:16:6f:1d:ae:f8:02:aa:4d:be:
b0:f2:4f:90:33:7b:bc:83:65:ab:47:0b:db:e5:07:19:1c:ef:
71:bd:4c:ed:20:14:b3:f3:66:d7:2f:24:33:8e:98:c1:67:7e:
f8:95:50:19:3b:15:60:9b:83:ec:48:3e:19:e8:bc:d4:0a:6e:
6d:27:ec:e3:cb:09:3b:7e:84:a6:eb:c7:4a:52:60:06:13:2c:
5f:01:80:8e:35:7d:bd:d0:36:61:68:72:5d:2a:6a:4d:42:d4:
de:25:80:0d:81:7c:22:8d:8a:62:55:c0:3c:13:92:65:71:05:
c3:ed:e4:9b:74:50:62:e4:cb:ed:bb:4e:b2:4a:05:8f:7f:ee:
53:93:65:be:eb:cc:c6:00:22:f9:49:a9:b0:b5:23:10:02:77:
c3:2b:cb:35:b7:11:6f:72:99:f3:18:d9:49:1f:02:83:5c:a8:
99:e8:50:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-ams.rpki-client.org