Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9d02e837-5a22-4c94-9f8f-d623eb5152bb.roa
File: 9d02e837-5a22-4c94-9f8f-d623eb5152bb.roa (raw, json)
Hash identifier: 2kT2v8sP0iJdJv3O3hyUaKWNDcE4/ZhxYpIcmRtiSbs=
Subject key identifier: 1D:AD:89:AA:DE:35:5A:11:3C:BF:14:CB:1F:9E:22:05:3A:06:7A:2D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 19D7995984D5B6F16F48466D5D081FFB84B933A7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9d02e837-5a22-4c94-9f8f-d623eb5152bb.roa
Signing time: Thu 02 Nov 2023 00:00:00 +0000
ROA not before: Thu 02 Nov 2023 00:00:00 +0000
ROA not after: Thu 07 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:d7:99:59:84:d5:b6:f1:6f:48:46:6d:5d:08:1f:fb:84:b9:33:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 2 00:00:00 2023 GMT
Not After : Dec 7 23:59:59 2023 GMT
Subject: serialNumber=a471afbb19a9a4e5386787e85b2b678cf1e0f9bde51b88a3d28a3b315fa7a3e8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:12:18:45:ed:7a:68:5b:5d:f7:f3:1b:52:21:
80:dd:ef:41:b9:d3:14:80:bb:9e:3e:5b:8c:1f:38:
c8:da:94:39:9b:fa:e7:03:f9:ab:94:3b:a5:33:be:
f5:c6:51:d1:e9:fc:1c:a5:bb:2b:e4:25:42:2b:0c:
1f:6e:6a:52:c1:86:29:63:9e:49:02:04:b1:f2:3a:
ff:16:3c:40:89:08:2a:6d:0b:62:cb:7f:97:f2:1a:
07:fc:8b:99:ab:dd:de:fd:d9:1c:b9:c1:09:e3:77:
f7:ff:e6:be:e8:a9:dd:75:c4:55:13:dc:46:d7:a2:
51:cf:4e:2a:b6:01:0e:b1:c7:6b:f1:e2:07:9b:bd:
e0:6b:d3:a2:e6:1c:75:a6:b8:3d:85:df:8d:3c:5b:
6e:1e:91:1d:50:de:61:ff:d8:96:f5:b9:ff:84:15:
af:be:12:01:e6:b8:d4:6d:49:e1:c5:2e:d4:9d:17:
84:4e:e5:a7:ab:3f:68:b0:09:67:99:6c:75:dc:c6:
b0:f1:c1:2a:3b:0c:13:db:f1:67:1b:08:a5:ee:e6:
39:13:9b:96:c1:13:bd:9a:53:89:30:0a:ea:9e:c9:
2f:fc:b8:d7:10:dd:5e:e2:a4:6a:e3:b5:9f:47:62:
91:81:21:92:20:25:9c:51:95:9b:75:4b:e3:ee:e6:
32:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AD:89:AA:DE:35:5A:11:3C:BF:14:CB:1F:9E:22:05:3A:06:7A:2D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9d02e837-5a22-4c94-9f8f-d623eb5152bb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
94:65:6e:2c:03:f5:a8:e1:cd:95:08:83:f0:20:b1:d6:64:ef:
91:58:6f:03:d4:3c:62:67:6c:5e:8b:c9:e1:cc:3e:45:72:04:
f9:e2:30:10:83:c5:ee:bc:df:17:70:03:0f:ac:27:c4:95:d9:
3b:c0:c9:23:37:8e:05:26:68:89:d1:2e:3c:7e:e2:d4:7e:fd:
d7:ee:0a:d7:3c:9c:f7:17:4a:af:f9:92:8e:2b:90:f2:8c:ba:
5b:49:cc:b7:8e:20:f1:e8:63:e6:96:a4:6f:fa:63:88:10:ba:
86:14:1c:cc:b3:1e:9d:2d:6a:07:2a:b5:ff:df:00:36:f7:88:
87:7c:0e:b3:ea:d8:18:f6:d9:f3:54:c5:66:43:71:f6:60:a8:
c0:81:ea:56:f0:cf:39:0d:2b:42:e3:71:7f:83:a7:fa:33:b0:
51:42:ce:d7:92:f1:7a:b3:03:79:23:dc:29:34:3e:80:e7:fc:
84:66:8c:a8:3f:aa:99:35:14:fe:06:34:20:4b:f2:99:33:c0:
10:9d:5d:1a:7f:66:f5:e2:a7:3c:b5:cf:9e:71:0e:26:c1:89:
fc:e4:6c:24:19:1f:82:1b:53:aa:8a:70:09:c0:61:ec:39:89:
02:f8:ef:b5:75:e9:61:cb:d9:a4:d7:95:c2:ca:7d:1d:17:b3:
6d:60:22:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:37 2024 by rpki-client on console-fra.rpki-client.org