Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89b70fdf-821b-4a09-9f4c-1d4aa9c3f936.roa
File: 89b70fdf-821b-4a09-9f4c-1d4aa9c3f936.roa (raw, json)
Hash identifier: mg3R8bItOFpceUq6Ph2uW7joLEe7WGAm1f5Y5tuofsc=
Subject key identifier: 7C:00:4B:3D:C1:EC:5F:65:27:5E:CC:7C:AF:5D:60:BE:95:93:15:80
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 17F848E9677A7459AC0640F5C8271202FC4D0AFC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89b70fdf-821b-4a09-9f4c-1d4aa9c3f936.roa
Signing time: Tue 13 Feb 2024 00:00:00 +0000
ROA not before: Tue 13 Feb 2024 00:00:00 +0000
ROA not after: Tue 19 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:f8:48:e9:67:7a:74:59:ac:06:40:f5:c8:27:12:02:fc:4d:0a:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 13 00:00:00 2024 GMT
Not After : Mar 19 23:59:59 2024 GMT
Subject: serialNumber=981fe24d8d019b51611b8d041041b5d1efcfe39810361f37854138bd69f7eb75, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:65:70:c0:72:f6:f7:f3:57:3d:f9:ad:52:bd:
83:b9:0f:2e:52:65:99:e3:24:c4:db:40:3c:cb:8f:
6a:d9:5b:ab:b1:5c:33:75:27:57:8e:e2:bf:e8:7a:
0b:95:e8:18:b1:c0:23:f6:26:3e:e6:41:71:ba:2b:
70:2e:ec:cf:92:56:1d:00:fd:a9:43:a1:d0:d6:1f:
65:1f:65:4b:4b:1f:24:57:97:60:d6:12:b8:b8:7f:
35:8f:14:f3:d9:ca:c8:86:21:14:b9:78:85:d8:07:
39:e0:bf:20:50:70:67:01:a0:2a:f0:38:68:32:26:
10:40:92:9d:a4:05:ed:ef:8d:28:23:02:7e:ed:35:
68:41:2e:9f:16:7e:cd:7a:98:4b:a7:94:da:f8:c8:
47:e3:a2:48:3b:52:11:b4:86:44:97:08:f2:71:2c:
a9:30:9a:a5:0f:06:22:70:48:eb:04:11:94:05:09:
c6:0c:9e:c7:bf:40:27:bd:dd:28:e7:d8:69:06:67:
0c:35:9a:a2:83:48:fd:e3:27:6e:e4:cf:39:8e:c5:
d2:23:49:e4:7c:d8:76:58:ce:96:d8:b6:7e:a4:bb:
80:42:22:58:de:1a:ec:64:c5:72:ed:14:16:e8:61:
b2:9a:14:b0:a1:eb:89:93:ca:9e:9c:ac:01:89:5d:
52:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:00:4B:3D:C1:EC:5F:65:27:5E:CC:7C:AF:5D:60:BE:95:93:15:80
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89b70fdf-821b-4a09-9f4c-1d4aa9c3f936.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:fd:3d:7d:f0:37:51:fb:58:26:43:83:58:11:33:f3:e7:f5:
2a:08:e4:40:93:7f:14:56:b3:33:15:7d:ad:1b:70:1b:d8:c2:
04:dd:e1:ce:e6:aa:b2:bb:f8:6b:60:73:72:67:5a:12:ce:fe:
9c:d7:9a:d3:cc:3b:ac:08:d7:75:5c:9b:98:42:0a:ae:de:d4:
0e:04:54:85:59:71:a6:06:48:8f:78:7a:3e:82:ca:39:1c:2d:
a9:50:28:62:50:1a:1a:50:8f:29:0e:2a:a7:5d:31:bc:c9:14:
f2:d7:f1:34:90:c8:33:76:8f:2d:94:b3:fe:70:7d:f1:da:55:
ed:d6:51:b3:c4:a9:88:bc:d0:ff:b7:10:2b:0d:58:2b:07:f5:
c9:6d:8e:8f:71:19:aa:72:db:5e:f8:66:31:41:b8:81:1d:3c:
d0:8d:89:22:ca:f4:fc:2f:40:75:6f:64:9e:26:ee:fe:98:26:
68:9d:78:e9:23:fe:09:06:0e:ac:a7:b5:06:7f:9f:32:1f:86:
f8:74:ab:f5:ef:59:a4:97:74:a9:d6:8e:ba:54:f2:1d:fa:65:
0f:ea:c3:78:eb:1f:35:b9:b6:ff:f1:c0:98:86:32:80:55:8a:
32:b3:e1:35:56:45:90:9c:d3:b3:32:21:da:aa:51:3a:18:04:
be:c9:fb:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-ams.rpki-client.org