Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a3c95ac-cc5b-47b6-9eb4-00cf0dff1461.roa
File: 8a3c95ac-cc5b-47b6-9eb4-00cf0dff1461.roa (raw, json)
Hash identifier: IL2uQt92KLX4me6Ir21nv6j5vFVB0OrxLgxvXfx4MZo=
Subject key identifier: B8:DB:59:A4:7C:A5:0F:20:29:3F:D2:9B:98:A0:5E:65:E4:55:EF:09
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 107AE7927E52F65BF2789862FDBC7A1E79559904
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a3c95ac-cc5b-47b6-9eb4-00cf0dff1461.roa
Signing time: Fri 03 Nov 2023 00:00:00 +0000
ROA not before: Fri 03 Nov 2023 00:00:00 +0000
ROA not after: Fri 08 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:7a:e7:92:7e:52:f6:5b:f2:78:98:62:fd:bc:7a:1e:79:55:99:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 3 00:00:00 2023 GMT
Not After : Dec 8 23:59:59 2023 GMT
Subject: serialNumber=569d27d917ab4e3501d551711ffc532d650ee0fdfa9502392a1b3ce6c8472880, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:53:e2:f8:ad:a6:34:55:04:7d:83:bf:f4:10:
fd:5c:f9:e5:bd:7f:ff:99:0d:da:cb:44:22:a6:8f:
3d:b5:0a:08:0e:a1:ca:17:ee:e4:f1:6d:ad:64:10:
29:08:5f:cc:d5:62:a1:48:29:32:b2:e9:1a:40:ac:
e1:e4:25:cf:61:f8:13:a7:9e:66:fc:0c:24:c4:ab:
9e:b0:94:ee:83:3a:67:d2:8c:16:7a:11:f1:12:eb:
94:c1:12:88:a6:7f:27:8d:a2:3a:e6:8a:95:00:a6:
01:21:68:0f:65:49:7b:06:6b:9e:96:38:dd:c2:33:
fd:af:bd:c6:60:85:bf:a1:55:a2:be:f0:b8:94:b8:
a7:0e:b4:1f:b5:bb:cb:b0:80:59:90:fc:28:25:fa:
e9:10:3e:a8:ef:e7:22:0f:0f:02:b4:1a:bd:f2:31:
f6:0d:8c:3d:dc:c4:ed:51:11:69:94:aa:ff:4e:7a:
d8:5e:60:1e:ce:f0:1f:d1:66:f6:7e:d0:8b:25:60:
4b:c5:b0:98:e2:64:8c:d9:ff:d0:16:34:8f:ab:f4:
23:9f:df:86:9a:6a:11:97:bd:ca:cf:cb:d5:27:fd:
53:be:99:61:ab:46:69:e2:3f:62:95:53:0e:f2:8b:
7e:54:c5:df:02:6d:ae:07:40:39:7a:4a:65:9a:6a:
9b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:DB:59:A4:7C:A5:0F:20:29:3F:D2:9B:98:A0:5E:65:E4:55:EF:09
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a3c95ac-cc5b-47b6-9eb4-00cf0dff1461.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
46:b6:6e:93:e2:5d:ca:ba:21:2f:62:c9:65:12:9c:8b:41:d1:
c7:93:9c:c0:41:1e:5c:27:16:fe:22:42:79:86:11:93:6a:98:
ef:e3:dd:5d:b7:50:9b:12:0f:b6:16:0d:1a:0b:a1:4b:99:1a:
7f:95:7f:7a:c0:21:08:1b:00:67:92:67:3d:ef:09:ba:25:17:
dd:e8:00:01:ed:c0:95:ec:a7:0e:5d:6d:2a:00:07:b6:22:fe:
c0:4d:02:9f:75:e3:fb:12:4d:5f:98:67:66:9f:a5:37:31:9c:
61:80:72:e7:5f:21:33:cb:7e:2d:f7:a1:ce:85:9a:50:c8:e9:
b4:3c:11:89:db:a0:08:4d:4a:67:23:d2:b3:de:ce:17:e0:7d:
4d:af:da:e2:be:e5:a1:33:a6:2f:51:7d:d6:c9:a0:e9:2e:b5:
f5:5d:de:81:fc:79:8c:08:1e:7a:62:35:a4:b5:4c:9b:54:0b:
4d:24:bb:e8:37:98:a1:b2:e4:3c:6f:7f:be:32:3f:4e:01:25:
37:71:29:f7:fb:2a:cd:0c:26:4f:d4:27:df:2c:a8:ea:4e:c2:
f8:61:47:b0:4e:9e:0d:19:f3:83:b6:73:66:47:1a:37:64:30:
4a:2f:69:73:76:da:43:7e:4a:4c:e3:b8:74:ee:b7:a7:10:a2:
50:06:d2:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:35 2024 by rpki-client on console-fra.rpki-client.org