Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89afba9f-f095-4722-bd5c-07dedde14b4c.roa
File: 89afba9f-f095-4722-bd5c-07dedde14b4c.roa (raw, json)
Hash identifier: ulKhRbpb3LLaUmssbNFVjBnJSuE1aeHhxQR0nAQjSeA=
Subject key identifier: 6D:4D:F7:90:61:60:6F:FD:21:4C:37:DF:5F:6D:4F:7A:0A:AC:E4:26
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2986CC4AA6CDAF30BA28966211686A3544AF0ACE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89afba9f-f095-4722-bd5c-07dedde14b4c.roa
Signing time: Sat 03 Feb 2024 00:00:00 +0000
ROA not before: Sat 03 Feb 2024 00:00:00 +0000
ROA not after: Sat 09 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:86:cc:4a:a6:cd:af:30:ba:28:96:62:11:68:6a:35:44:af:0a:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 3 00:00:00 2024 GMT
Not After : Mar 9 23:59:59 2024 GMT
Subject: serialNumber=706bec4b1e6cf6d1eb01ce412a257018965b7bc4749a6d5adfb86434e335f581, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bb:69:f3:dc:a1:48:64:98:36:b5:6d:2c:be:
d9:6f:11:e4:3c:35:4c:90:27:7b:8f:dc:d4:f2:6b:
39:c7:d5:4b:78:fa:90:79:ee:bf:95:66:95:8d:45:
1f:04:54:8a:a3:af:db:9f:dc:a9:58:b9:2c:c6:8b:
ce:47:07:b7:bf:f7:c3:1c:63:04:b9:30:29:67:e4:
f7:6c:c5:6d:9f:a0:d2:a0:7a:44:29:2b:96:1d:8f:
17:94:d1:8f:f7:0d:33:49:c1:7b:22:15:b9:7b:ad:
0f:25:90:b3:5e:09:13:86:30:6c:ed:7c:27:cb:f9:
bb:3a:eb:8c:b0:71:0c:fd:fd:c7:f4:a0:e7:5a:00:
53:96:d8:7a:2b:76:fe:da:ef:91:af:d0:cb:cf:f2:
61:c5:b1:9b:14:83:73:8d:c3:c1:c8:da:a3:1f:d1:
b5:9e:16:81:ca:d0:23:07:52:b4:cb:8e:c6:2d:6e:
dc:f6:ea:7d:7d:af:71:52:ce:41:51:f8:65:63:69:
08:f8:d7:9a:40:aa:e3:d4:aa:0f:bc:db:9f:35:06:
09:e1:25:6c:f0:f4:7e:57:f4:4a:98:13:27:b2:02:
5f:7f:46:0a:07:35:1b:38:cc:31:33:6a:e2:fc:df:
a4:a3:50:15:46:7d:3d:9b:6a:e3:b6:94:e9:8f:98:
06:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4D:F7:90:61:60:6F:FD:21:4C:37:DF:5F:6D:4F:7A:0A:AC:E4:26
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89afba9f-f095-4722-bd5c-07dedde14b4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
24:fc:9f:41:b3:3a:82:88:67:7f:fb:2a:23:26:1c:37:4b:db:
1a:e0:57:23:fa:94:11:aa:03:d8:bb:8f:1b:09:89:c0:4a:ea:
26:9e:48:7f:24:53:d7:ad:f7:3f:2a:e4:30:16:cc:38:f9:22:
e2:78:2e:74:26:0e:7e:ce:9c:f8:dc:6a:38:8f:30:c1:85:f0:
e7:60:53:e2:4f:b3:da:c5:8a:90:7a:93:2b:ec:16:e1:60:b1:
cb:5b:87:e7:f9:7c:66:52:46:6b:bc:80:01:d3:0a:d4:db:5e:
74:33:0d:05:2a:6c:d2:8c:ab:a2:79:8f:5f:16:82:9b:35:83:
f0:70:dc:2c:c3:6c:46:fa:f6:02:08:62:94:9f:41:a6:05:72:
f1:17:63:dd:0d:85:c0:55:d7:d8:fc:de:b6:42:5c:2c:3b:92:
c9:c3:1f:57:cc:2e:b5:6c:4b:3e:22:dc:6f:ac:7b:77:0c:ce:
f5:90:94:de:50:c6:93:1e:4f:4c:78:e6:60:8d:d7:61:d8:17:
55:6e:fa:70:45:b6:3c:fb:f3:00:ed:2f:f8:2c:5e:5f:a6:ec:
74:38:b2:01:02:e6:20:ef:ef:a3:ce:8c:27:a9:2b:76:5f:88:
09:cf:18:d1:5d:86:9a:7a:a6:05:56:65:4b:4d:6e:c1:2f:c5:
09:32:a3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-ams.rpki-client.org