Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/88a76423-3236-4a7a-87ff-f902c3c85ecf.roa
File: 88a76423-3236-4a7a-87ff-f902c3c85ecf.roa (raw, json)
Hash identifier: /Yn/mQt1CbA6TnWTCEVAYVNUwE4KXG/ISFf7oKGCN+Q=
Subject key identifier: 19:79:FA:FC:DA:F0:28:88:02:8F:07:5C:36:EE:A2:AA:48:3D:59:C1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 55BB300394D8F0106146633288F4BBFA80D770CD
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/88a76423-3236-4a7a-87ff-f902c3c85ecf.roa
Signing time: Thu 17 Aug 2023 00:00:00 +0000
ROA not before: Thu 17 Aug 2023 00:00:00 +0000
ROA not after: Thu 21 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:bb:30:03:94:d8:f0:10:61:46:63:32:88:f4:bb:fa:80:d7:70:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 17 00:00:00 2023 GMT
Not After : Sep 21 23:59:59 2023 GMT
Subject: serialNumber=08f4bfb9465b3ac901cda56418170a80746d58bbe7dd43ace1d81882514837c0, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:17:00:ab:28:8a:e9:29:34:e1:9b:67:15:73:
44:0e:53:df:bb:27:1a:e9:cc:70:12:47:3b:93:85:
ef:97:a9:95:9e:69:43:ea:9a:48:57:73:fb:a4:bf:
e0:b1:b2:8a:12:7b:36:71:bc:f3:57:96:ee:8b:1d:
5f:de:e2:6c:17:a3:ca:b6:0f:0d:79:3b:53:4e:6a:
50:ef:07:40:2d:d2:ab:2c:b5:00:ef:34:a5:c0:5a:
8b:8d:76:2d:fe:60:68:b1:2d:2f:f5:43:7b:70:a2:
ec:d1:59:a2:70:e8:9f:c7:55:9f:52:7c:59:12:e6:
e0:e0:bc:a0:c6:76:0e:b7:04:51:5b:88:ca:bc:42:
24:e8:f9:a5:4c:27:98:26:04:cc:f6:1f:87:5a:fa:
38:c7:a3:aa:75:2c:4c:58:53:74:3e:aa:91:0f:03:
ff:04:ad:b1:ab:aa:a3:cc:10:7a:9f:a5:ce:12:00:
be:d9:39:26:2b:ff:ee:52:2c:5f:a3:82:14:df:9a:
07:4e:a3:a0:8a:7b:82:3a:6e:36:79:13:88:74:f8:
53:11:27:f9:e4:f8:f6:00:cd:b2:b3:13:55:5e:7c:
87:57:6a:39:48:c0:a1:91:3e:ad:ee:7d:fe:89:ee:
d2:40:57:40:a8:1f:c9:a5:bd:fe:7a:68:92:56:2a:
d6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:79:FA:FC:DA:F0:28:88:02:8F:07:5C:36:EE:A2:AA:48:3D:59:C1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/88a76423-3236-4a7a-87ff-f902c3c85ecf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
15:1a:49:83:d9:1b:03:8d:81:39:d6:28:56:27:89:61:dd:16:
c3:9b:18:06:49:02:be:71:dc:b6:f7:9b:20:0c:c6:fc:12:7b:
8d:eb:34:80:f6:c8:b7:a4:ef:d6:c6:e4:f0:14:7e:8b:0f:4c:
91:47:e7:2e:ad:82:bb:a7:d9:10:af:11:1f:4e:95:9c:5d:38:
3e:13:ff:c1:7e:7a:14:69:4c:aa:e3:57:e5:67:5a:24:8e:4e:
64:4d:84:bd:fd:e4:1b:4d:f9:8b:33:da:ba:51:90:57:f9:4d:
72:32:38:d5:9e:c5:c7:69:3d:d9:81:96:39:ca:ed:5a:13:c8:
15:05:89:4f:20:38:81:37:53:dc:49:f6:45:06:b7:74:1e:05:
28:9a:d8:fd:c9:51:8a:20:d5:4b:01:91:08:e0:07:3e:2d:cb:
a2:07:ed:71:46:fc:ce:79:63:b4:c6:07:3a:88:9c:c9:16:c7:
4e:55:c3:64:22:58:8e:68:10:34:c9:f8:43:e8:6c:1c:7f:b7:
e6:13:a4:2d:f0:77:af:a9:b9:30:35:df:04:96:89:70:3b:40:
3c:ee:6d:43:39:4d:f6:4a:1d:6c:6a:13:1b:71:75:cd:ba:23:
4a:f3:bb:78:9e:be:d6:a1:9a:8c:5c:ed:76:cc:e2:5a:96:93:
48:a9:a1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:58 2024 by rpki-client on console-ams.rpki-client.org