Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9bea65e3-d391-485b-a0af-06d85e09d28f.roa
File: 9bea65e3-d391-485b-a0af-06d85e09d28f.roa (raw, json)
Hash identifier: l4TzLXy0Iegf3RGRfiJSlMNT4BqcVxUSdX0YMCBiXVg=
Subject key identifier: DA:53:48:1B:70:AC:A9:CA:97:81:CB:F1:D4:DC:05:73:23:7C:5E:93
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 22DA5EC2D059DAF6ECF37700E329527A39CB49B4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9bea65e3-d391-485b-a0af-06d85e09d28f.roa
Signing time: Sat 05 Aug 2023 00:00:00 +0000
ROA not before: Sat 05 Aug 2023 00:00:00 +0000
ROA not after: Sat 09 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:da:5e:c2:d0:59:da:f6:ec:f3:77:00:e3:29:52:7a:39:cb:49:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 5 00:00:00 2023 GMT
Not After : Sep 9 23:59:59 2023 GMT
Subject: serialNumber=194f2b743973da5dd1d2318a236f877f31d13b3ef46a1651b3602ebb2a2047e7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:85:3c:69:21:29:bc:cd:78:ab:fc:b7:68:15:
15:af:d4:7a:29:48:48:f9:45:6c:92:ce:42:02:ab:
f3:c7:4c:73:57:39:84:67:3d:2a:87:6a:a1:b2:70:
ea:7e:55:28:ca:8f:b5:5a:2b:ae:d1:b5:5f:5b:ac:
de:57:c2:be:b7:66:b3:f5:bf:70:d3:f0:8a:84:b9:
8c:d2:49:d4:f0:3e:76:94:cc:41:5e:ad:0b:dd:dd:
c3:4d:a1:a0:18:7c:8a:82:62:27:6e:2e:55:e7:1c:
bd:0e:56:12:42:61:eb:01:3a:49:21:df:26:6a:3d:
b0:56:89:7a:17:87:1b:c7:2a:e1:a3:56:62:d7:81:
a8:db:08:10:f2:67:d3:3a:70:3b:5b:d8:8f:36:19:
fc:ff:de:f1:66:a7:79:e6:89:e3:18:23:11:ce:01:
b3:97:81:f1:18:69:1d:a3:71:7d:76:20:28:2c:2d:
2f:5d:2b:08:8a:7e:8a:d3:2c:a7:3a:1f:6d:0e:84:
80:08:18:94:4d:ed:a6:c2:d9:77:0d:1e:ad:4c:94:
b7:dc:bf:0b:05:f2:83:db:8d:6a:e1:ce:47:e9:33:
af:8a:da:07:cb:79:be:a5:c6:a9:20:c5:4f:69:c6:
96:4a:7a:68:65:ea:75:06:10:42:5d:6b:f4:e2:98:
b0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:53:48:1B:70:AC:A9:CA:97:81:CB:F1:D4:DC:05:73:23:7C:5E:93
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9bea65e3-d391-485b-a0af-06d85e09d28f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:b1:5c:2d:3e:1c:1e:5b:d5:aa:21:1d:31:f1:d0:e7:ac:bf:
5a:9d:92:a8:d6:03:80:0c:b2:94:ea:9d:b4:3b:89:89:50:ab:
b7:8f:ae:62:ab:20:3d:50:b0:08:e3:4d:9f:bf:c7:03:57:a7:
b4:24:33:e9:de:8a:cd:d4:01:35:0b:09:3e:57:89:44:15:ca:
9c:f0:83:52:3d:a2:32:38:fb:33:be:df:95:d4:42:35:b2:98:
b9:e8:4b:0b:c2:44:46:ac:56:e6:34:3a:dd:2e:0f:4b:85:df:
d2:70:62:95:76:e7:b5:f5:2d:72:55:0a:cb:03:43:c6:0e:9d:
f7:7b:3c:5a:f0:ab:83:6c:b2:06:7c:79:bd:b7:3a:fb:ac:27:
c9:91:31:3a:5a:2f:80:cb:ee:21:23:d2:df:3d:d9:30:94:26:
3b:d0:1d:9c:74:6b:4f:af:f9:f1:94:ef:70:f4:98:fa:f9:ee:
2b:76:34:67:56:39:68:8a:a4:73:43:dd:a1:0b:51:4e:31:91:
88:14:53:7f:cb:81:b3:ee:2b:a4:19:8f:a2:55:99:b7:4a:37:
38:66:ef:0b:29:43:22:d3:ef:e2:de:5e:5d:47:84:ae:ab:b2:
48:92:14:e1:fa:06:b0:ac:7e:56:d2:51:c3:10:a0:2f:71:b2:
e3:ff:8d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:37 2024 by rpki-client on console-fra.rpki-client.org