Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a04ec05d-542e-47a2-9cef-4db908977fcc.roa
File: a04ec05d-542e-47a2-9cef-4db908977fcc.roa (raw, json)
Hash identifier: PpMTW7IbmfAvr/XbbDp+6aNLqDTfrk6HaGCXbAmoPqQ=
Subject key identifier: 2B:25:36:28:67:4A:12:18:16:ED:45:AF:F2:DB:F1:41:D8:1D:7F:EB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7B39107BBB1647E5CBB1C0EE399911C2B8EFB9B0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a04ec05d-542e-47a2-9cef-4db908977fcc.roa
Signing time: Sat 24 Jun 2023 00:00:00 +0000
ROA not before: Sat 24 Jun 2023 00:00:00 +0000
ROA not after: Sat 29 Jul 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:39:10:7b:bb:16:47:e5:cb:b1:c0:ee:39:99:11:c2:b8:ef:b9:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 24 00:00:00 2023 GMT
Not After : Jul 29 23:59:59 2023 GMT
Subject: serialNumber=8460d777b6f81a735573102977771535b7a064a4e486bd242a7b5fc04db91357, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:95:c9:90:56:4a:fa:eb:0a:70:7f:8e:68:bd:
f5:b5:dc:8b:50:b4:2c:01:ee:70:08:60:fa:cf:44:
08:9d:5d:6e:b7:dc:8d:bc:73:b4:e3:a4:d8:63:12:
44:4e:df:86:98:98:ba:d9:0a:2c:ef:8b:bb:8a:77:
a2:a6:b4:44:be:6a:0d:d4:a7:2d:b9:c3:6c:a0:92:
00:34:40:88:96:70:69:ec:1e:63:86:69:67:51:a8:
dd:21:9e:87:93:bc:bd:9f:f8:a1:b3:cc:03:1c:a9:
29:34:6b:d8:29:d4:6b:44:cd:35:fb:c8:12:04:b3:
28:10:b2:08:48:97:54:64:37:ea:c2:d5:f3:28:8d:
72:f8:05:79:75:c3:fd:ef:64:67:19:f8:c0:af:e1:
2e:52:5e:7c:27:41:60:56:32:a3:6a:d4:a7:13:19:
ee:ef:8f:c9:0b:c4:45:8b:e6:a0:23:19:0f:58:f0:
0d:fe:89:59:69:d5:1d:e1:1c:14:60:a8:32:c2:67:
7d:84:ec:e1:81:f8:6e:6f:18:d6:3f:80:29:eb:99:
20:3f:30:24:8c:fc:66:a7:8d:77:e4:21:90:99:cf:
72:e1:ab:37:57:02:ea:aa:26:b0:33:53:41:c6:c8:
06:46:ec:41:d0:04:9f:30:1b:3c:1c:8a:97:c3:3f:
08:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:25:36:28:67:4A:12:18:16:ED:45:AF:F2:DB:F1:41:D8:1D:7F:EB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a04ec05d-542e-47a2-9cef-4db908977fcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:42:75:78:5a:75:eb:6e:3f:63:2c:5b:00:c0:9c:8b:01:48:
9f:6b:e8:45:c8:bc:b4:76:60:7e:2b:32:06:e1:84:0b:f7:4c:
44:8c:cb:c0:0c:60:ee:ac:4e:d3:f9:8c:8c:a3:31:8a:68:8d:
0e:8c:79:8e:90:9c:57:2f:36:d9:41:e0:ac:39:80:ca:0f:70:
a2:e1:41:44:a0:6d:e1:1d:4c:42:85:ac:b8:09:6c:8b:9b:ea:
ae:6a:22:4a:45:8b:90:44:e0:94:97:96:d8:c4:44:23:6f:f6:
83:cf:82:8c:28:fe:ab:7b:c2:71:15:7e:55:84:39:c4:d0:89:
46:a0:01:e6:df:69:e5:cc:3e:83:eb:25:b6:4e:4f:08:66:43:
01:c9:72:1d:46:ae:77:79:47:be:e8:02:e1:e9:af:54:22:36:
bc:f4:4d:f8:b6:91:8e:32:17:0b:87:2f:52:9c:6c:77:e1:28:
db:d6:ad:d3:64:d6:48:37:0f:49:c9:b3:df:3a:85:1d:c0:c3:
f0:36:10:9e:6d:cd:e3:2e:77:f2:46:2d:f6:c1:5e:24:2b:8d:
2f:ee:f2:4c:64:b3:4f:a3:38:84:67:9e:38:77:bb:a4:53:c9:
a6:42:06:a7:d0:3f:18:b9:b2:59:62:17:7d:ea:bb:19:2d:3b:
9e:f7:b0:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:03 2024 by rpki-client on console-ams.rpki-client.org