Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/98d7f1fe-cac3-4797-a3ee-721b01a59db8.roa
File: 98d7f1fe-cac3-4797-a3ee-721b01a59db8.roa (raw, json)
Hash identifier: AQ7rL+io9Cuf0RKViqzmDLZgqVcTZ7e3d+gEsbFH/Po=
Subject key identifier: 74:AD:1B:7E:38:DB:0C:2E:D7:6B:B2:F9:64:19:39:E8:E1:64:E1:0B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 711863DE5B7DEDA2A4C4592AC74E35D51769CE30
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/98d7f1fe-cac3-4797-a3ee-721b01a59db8.roa
Signing time: Sun 30 Jul 2023 00:00:00 +0000
ROA not before: Sun 30 Jul 2023 00:00:00 +0000
ROA not after: Sun 03 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:18:63:de:5b:7d:ed:a2:a4:c4:59:2a:c7:4e:35:d5:17:69:ce:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 30 00:00:00 2023 GMT
Not After : Sep 3 23:59:59 2023 GMT
Subject: serialNumber=25e229bb1b3689aeb330f8302c31ea2288a537b15d85abc781af6a0de599b62c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e4:da:5d:7c:5b:b6:3e:dc:7c:7a:18:60:a6:
37:12:05:0e:bf:d8:84:7f:7a:5a:cf:45:9a:8b:0c:
05:a7:1c:0c:2e:21:bb:81:1f:25:04:7d:e0:23:44:
e0:a0:5a:2a:fa:43:9f:a0:82:6a:04:40:d5:5e:33:
2c:d9:f8:c4:af:c9:a7:2c:84:e6:9b:3e:b5:52:68:
60:cb:3e:a1:be:8e:8b:e4:f0:18:4b:e0:1c:b2:7d:
40:35:c2:c9:68:6f:e9:4a:12:a1:e9:e7:be:af:de:
0f:8e:9f:41:89:ca:75:90:95:a1:40:ca:f9:17:af:
70:6d:da:e7:50:5a:f2:16:5f:c0:80:69:3d:e2:cd:
b1:58:63:fd:83:b2:33:07:99:06:84:db:a6:19:02:
59:4d:30:d3:55:82:8a:ee:04:26:dc:7c:6d:ac:e3:
0e:01:f6:bf:55:32:7f:72:4c:db:6e:8f:41:e8:c4:
4d:8d:ed:63:82:9b:9f:04:8c:a3:50:a5:d9:a7:77:
9f:08:fa:01:df:e5:5f:5a:d3:1a:18:fb:5b:f2:10:
de:60:aa:39:e6:7c:9d:50:42:5a:af:a6:ce:f0:01:
d8:e7:3e:cf:54:3f:1c:6c:78:9e:91:77:79:40:38:
ec:03:51:87:0b:a4:3e:14:3e:81:c6:da:5c:73:26:
20:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AD:1B:7E:38:DB:0C:2E:D7:6B:B2:F9:64:19:39:E8:E1:64:E1:0B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/98d7f1fe-cac3-4797-a3ee-721b01a59db8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
10:ae:3e:67:12:a1:45:96:23:43:ea:c7:f2:96:e8:9d:8a:b2:
9c:e9:8f:fa:5b:31:5e:40:11:97:98:ee:d5:e8:f6:2f:e0:22:
8f:85:c8:af:0a:7f:a2:7d:95:6f:16:ca:79:f2:5f:ea:1e:cf:
91:16:f8:0f:95:29:69:9f:50:c1:76:10:b4:fb:2c:cf:fa:f5:
89:e6:9e:d7:cf:bf:76:87:c3:e3:8e:5d:52:70:a7:9e:2e:b8:
dc:a4:77:d0:32:5e:a2:6c:3c:da:13:e0:73:a4:b4:fe:68:46:
47:ca:a4:f7:b8:ec:54:c4:2c:a3:13:1d:d2:c2:c1:45:31:fe:
09:9a:87:5b:cb:2f:5a:4c:24:60:16:b5:20:b1:57:54:19:5b:
36:fa:b3:a9:23:09:82:be:de:3d:11:d8:cf:6c:3a:69:3b:32:
a4:aa:ff:cc:1c:82:dc:07:d3:59:32:94:72:54:8d:98:6c:bd:
ea:04:b5:67:01:eb:e3:8c:8e:1c:14:1b:2e:02:16:d8:4e:7f:
57:95:0f:68:5d:8a:9e:08:79:7b:f1:bc:45:cf:c2:5c:ef:1d:
5b:1f:50:9a:29:a3:58:32:7f:53:02:82:17:6e:36:5b:63:da:
73:2a:14:c8:80:d3:5f:e6:c7:07:ec:09:6b:2a:f4:09:e1:5d:
d8:74:5f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:37 2024 by rpki-client on console-fra.rpki-client.org