Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89cdd8f5-86c1-48f1-8681-4cf8c0e869b1.roa
File: 89cdd8f5-86c1-48f1-8681-4cf8c0e869b1.roa (raw, json)
Hash identifier: GzdiQbpiyiH5Qo+pqSo4FOY+W3bI7XcuCHMuZAetlpo=
Subject key identifier: 4D:3D:8C:FA:AE:BE:29:80:29:14:A2:F0:8C:7D:4C:1E:D1:76:BA:D0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 032331E8FFFBBC50CB51E7CE5F7F1981108FE431
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89cdd8f5-86c1-48f1-8681-4cf8c0e869b1.roa
Signing time: Thu 03 Aug 2023 00:00:00 +0000
ROA not before: Thu 03 Aug 2023 00:00:00 +0000
ROA not after: Thu 07 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:23:31:e8:ff:fb:bc:50:cb:51:e7:ce:5f:7f:19:81:10:8f:e4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 3 00:00:00 2023 GMT
Not After : Sep 7 23:59:59 2023 GMT
Subject: serialNumber=cc18801502299d1d80b2921fb3fb7b6a399c840c1fa01ca167e8f07d78cac401, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5d:ec:80:33:69:89:cc:40:9f:ff:e8:3d:e4:
12:e3:32:fa:aa:1d:17:e6:6f:ae:55:91:b5:57:d0:
82:7a:fd:1d:da:fc:e0:2a:6f:7f:2e:23:a8:ea:1b:
33:2e:1c:66:16:3f:3d:d3:f4:69:9b:39:a7:f4:24:
1f:e0:28:be:c4:44:30:2b:f7:1a:6d:d2:fe:b2:8c:
79:20:a2:53:5f:18:4e:61:e6:0d:15:08:00:36:ff:
f9:ae:95:f1:4c:ed:44:22:db:26:81:58:14:ad:dd:
a5:71:44:02:3e:6a:d7:d4:e6:d8:05:c8:d0:0a:6c:
d9:42:a5:6f:05:2b:f6:dd:5d:7d:6a:73:39:b6:dd:
d8:f2:64:24:cd:39:01:1c:85:ab:1c:a5:de:50:7e:
13:f4:84:b8:33:2f:c2:3c:ed:62:33:3f:5a:68:bd:
7a:11:c8:ea:b1:2a:04:13:7c:72:f2:5b:4c:72:fe:
c3:d7:07:1d:2c:c6:d5:96:69:fd:f6:51:32:20:70:
63:d9:75:84:04:aa:f1:94:93:54:ff:91:8f:e6:37:
e6:7c:4e:6e:bf:75:e4:26:93:23:ca:e8:ff:ee:e6:
dc:21:19:71:0a:2b:81:f7:b5:38:5e:6e:e2:7f:a9:
b9:50:8f:b9:e3:31:05:16:86:26:b9:6a:c8:07:f4:
da:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3D:8C:FA:AE:BE:29:80:29:14:A2:F0:8C:7D:4C:1E:D1:76:BA:D0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89cdd8f5-86c1-48f1-8681-4cf8c0e869b1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
35:3b:3c:ca:36:5b:3c:af:b3:02:62:27:a6:ee:1b:52:17:30:
86:1a:f1:51:f5:da:8f:f6:da:0f:eb:11:87:cc:1a:7e:7c:61:
c0:d1:61:38:24:ab:e4:1a:d3:4a:0f:56:49:fd:21:d0:dd:b0:
52:89:06:69:1e:fd:e4:5b:e5:f8:9a:a0:94:f0:ea:f4:25:a8:
50:1a:83:9b:6c:73:76:df:c7:e5:07:b3:d6:58:0c:ac:98:60:
0f:82:14:1d:ce:a9:86:b1:f1:77:aa:f3:d1:87:2b:29:f9:b5:
e3:9e:b9:57:f4:19:a8:b6:fc:1e:bb:50:2a:e5:83:b8:62:29:
ac:b2:fe:d5:61:e5:e7:c9:9b:b9:8c:3a:62:4b:cd:57:3f:84:
6b:52:ab:ba:30:b2:70:d7:68:61:30:fa:51:d5:63:09:85:cd:
5b:92:cd:37:a1:f1:ee:fb:f5:5c:03:dc:0d:77:65:87:42:cf:
e0:03:47:8e:fc:1f:03:d1:e6:13:58:b3:c4:c1:aa:7a:91:0b:
fc:91:92:22:52:1c:03:1d:0f:de:eb:40:a9:ca:e0:c6:30:42:
fe:b9:16:ac:77:6e:51:3c:3c:bf:5b:24:2e:26:be:20:01:c9:
89:6e:d9:65:23:81:b8:ed:63:5b:aa:3a:16:8e:d3:8f:05:70:
bc:53:cb:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-ams.rpki-client.org