Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9e9226d9-5b24-466e-a9fa-4affabb0f0bf.roa
File: 9e9226d9-5b24-466e-a9fa-4affabb0f0bf.roa (raw, json)
Hash identifier: RZt7klHtBPie8eNAtwaiIoZRQs2S2BAvbd3fQ/Q6/IQ=
Subject key identifier: 5D:D5:BE:E0:BC:FA:5F:C1:5A:BB:9A:CD:69:18:13:07:3E:22:81:90
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4A58C628677FDEE4AAF521E23A512EFE4AD3116E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9e9226d9-5b24-466e-a9fa-4affabb0f0bf.roa
Signing time: Sun 10 Mar 2024 00:00:00 +0000
ROA not before: Sun 10 Mar 2024 00:00:00 +0000
ROA not after: Sun 14 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:58:c6:28:67:7f:de:e4:aa:f5:21:e2:3a:51:2e:fe:4a:d3:11:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 10 00:00:00 2024 GMT
Not After : Apr 14 23:59:59 2024 GMT
Subject: serialNumber=9bea89cf9b8b5369d058b32461da65f43b4838364f93d5a0983806423ab91a3e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:fd:43:41:27:0a:5b:e9:ef:51:b3:2c:a1:4b:
ae:b7:1c:7e:1e:1b:eb:6b:20:ef:17:b1:2f:c9:7f:
82:a4:0f:f6:7a:5c:d2:c9:c8:ef:d3:58:77:dd:ff:
4b:4b:fe:0b:4d:26:de:04:67:6c:6e:62:29:bd:6f:
bb:bc:1a:a6:56:89:39:1f:5e:a4:49:71:90:e7:9c:
30:c2:d0:4b:7a:b4:d4:63:ed:89:e5:fa:73:b6:fd:
da:a1:45:19:14:91:74:69:ae:1c:e0:b0:28:00:48:
e3:96:d3:44:a3:a5:71:42:f9:ce:c8:79:8a:50:4d:
a5:a6:6c:27:23:0f:8d:ae:c4:d3:43:10:8c:fb:80:
fe:4b:06:28:06:66:9f:91:2c:98:b4:dc:ea:77:a6:
29:70:73:63:4a:5a:e9:f6:13:0e:24:05:dd:90:23:
e6:b6:04:c7:dd:f8:b1:f2:0d:6b:00:11:76:67:4f:
8d:e7:b7:c9:40:2b:08:20:3d:df:72:15:51:c0:c1:
e7:bd:e4:07:15:e1:b5:0d:e4:8a:1e:14:8f:20:da:
32:62:7e:8f:cf:e2:91:d4:62:cf:b0:c7:b2:b7:5b:
26:fc:33:54:ff:ff:17:6a:f4:60:30:18:7d:62:31:
8d:06:f5:82:b9:13:9d:e4:85:b8:1b:6b:0d:18:81:
36:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D5:BE:E0:BC:FA:5F:C1:5A:BB:9A:CD:69:18:13:07:3E:22:81:90
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9e9226d9-5b24-466e-a9fa-4affabb0f0bf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
85:ed:54:75:57:4b:42:0e:d1:53:bf:dc:77:b2:6c:9e:35:ac:
9d:74:44:b1:67:0c:fa:cb:26:df:f3:c7:91:f0:b6:1c:34:c6:
74:8f:7c:9f:c7:bf:fe:19:d1:c7:1c:53:77:8c:5c:d8:ff:cf:
d9:20:0d:7a:77:4f:d8:90:30:fd:99:a6:04:86:8b:e7:cb:d6:
27:f9:59:50:a0:c7:ea:22:39:71:91:4d:ba:e6:18:e9:57:ed:
c3:95:a0:45:49:3b:15:97:d9:f3:e0:c5:39:87:2b:f2:6a:7d:
15:22:e0:55:07:ad:02:b8:1a:85:42:2f:8b:a8:f1:df:fa:08:
3f:66:a7:a5:fe:c6:52:d6:96:f4:5b:7d:41:fb:3b:1b:04:c8:
35:9a:0e:77:79:de:7f:85:e2:1a:95:34:13:0e:61:ce:3c:3f:
e2:bc:65:a4:16:13:66:22:b4:90:53:84:78:ca:d5:d3:70:90:
20:40:27:ca:de:08:1f:75:a3:e1:66:a2:50:10:49:17:95:67:
14:c2:8b:55:b2:db:06:fc:f0:20:11:cd:7d:64:58:c2:a8:c0:
74:f5:82:39:17:c3:a1:06:26:71:f0:fd:d9:27:13:76:a2:f9:
b3:17:fb:33:bd:1a:41:ff:f5:c9:60:5f:9d:ba:ee:67:16:0f:
e1:26:08:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:37 2024 by rpki-client on console-fra.rpki-client.org