Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a89bdd34-c0cb-460c-affd-069c297fba16.roa
File: a89bdd34-c0cb-460c-affd-069c297fba16.roa (raw, json)
Hash identifier: zXxM5Gpf1DntSZMAJDyyiBHx5xwjaXxAVfcv5HMCQ8E=
Subject key identifier: 00:5B:77:37:64:AC:02:3D:44:AD:98:33:C5:F1:AD:10:A6:6A:75:2B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0EA3D3E2AC83B102319075F45A7574D2992CB318
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a89bdd34-c0cb-460c-affd-069c297fba16.roa
Signing time: Tue 28 Nov 2023 00:00:00 +0000
ROA not before: Tue 28 Nov 2023 00:00:00 +0000
ROA not after: Tue 02 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:a3:d3:e2:ac:83:b1:02:31:90:75:f4:5a:75:74:d2:99:2c:b3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 28 00:00:00 2023 GMT
Not After : Jan 2 23:59:59 2024 GMT
Subject: serialNumber=27161808fab907cf6cd0f4dff677acc7fcd28755142b69292c4e3cbd689482f4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:39:6d:1e:2b:82:f5:7c:92:2d:7b:2e:57:96:
2d:92:ef:26:83:72:f9:2c:a9:50:10:73:f4:71:1f:
ed:88:6e:4d:00:52:01:6b:04:21:7a:2f:71:1f:b1:
35:11:58:b4:73:cc:f5:9c:01:20:ae:d5:00:44:b7:
73:f4:6d:ba:8c:73:99:9e:91:82:3f:ca:36:21:14:
5f:98:61:7a:75:ab:07:ed:bd:de:93:1f:12:f4:ef:
c9:19:69:4b:19:43:ea:b5:eb:71:a8:c8:23:7d:c9:
1d:43:2e:bd:f4:60:d9:2b:49:09:aa:2a:2e:18:33:
84:aa:6d:bf:88:7a:c8:db:2b:e4:7c:0f:3a:b9:ab:
0e:eb:96:77:fc:a3:5a:6a:d2:25:b5:cc:20:b3:a5:
ce:ec:94:2e:dd:20:b4:56:e7:c7:f4:f0:1b:25:3a:
d9:90:04:8b:5b:a7:8e:01:24:6f:ae:dc:fe:94:57:
a7:6a:fc:80:cd:80:1d:51:10:01:03:04:15:95:0d:
d8:b5:77:18:43:2a:73:57:7e:7a:93:f9:55:27:ec:
8e:6e:db:76:f9:6b:c2:58:f7:7c:2c:d0:12:f4:e7:
1c:fe:b8:b4:76:e9:7a:57:be:e8:6a:49:ac:d8:4d:
73:a6:ed:fc:61:04:bd:ae:59:94:c2:e8:16:b9:93:
1a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:5B:77:37:64:AC:02:3D:44:AD:98:33:C5:F1:AD:10:A6:6A:75:2B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a89bdd34-c0cb-460c-affd-069c297fba16.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:d3:0d:c9:a7:f3:92:5b:63:da:0f:3a:a9:a2:22:ab:f4:82:
ac:eb:91:91:9c:29:13:29:22:16:ac:f9:b0:76:05:9d:a8:b4:
3f:c9:ff:d7:18:b9:27:76:96:d0:80:53:67:64:1f:73:84:03:
af:1f:14:87:3c:54:3e:de:8d:85:a6:24:c2:44:20:8e:7e:55:
38:0d:40:c3:c0:1e:5d:38:c4:83:e8:81:15:8a:16:a7:7c:ef:
ee:94:a1:f9:be:a1:d6:2e:d3:90:b6:86:b4:7c:a5:53:02:36:
53:6c:c9:0b:05:1d:a2:c8:79:92:9b:3d:53:cf:09:a4:dc:81:
dd:a4:35:34:c1:76:d3:2a:c5:13:6e:cd:ef:43:ff:1e:90:d3:
db:2d:95:e3:2b:9a:51:99:12:dc:ed:64:29:18:0d:f6:aa:be:
6c:54:41:15:26:40:ee:70:a3:57:3a:33:bc:2f:3c:f1:91:c2:
ae:67:d2:06:b0:8d:5b:d8:1a:d9:7c:da:f6:aa:c8:50:da:fb:
84:cd:59:f5:bd:3f:61:40:2d:cf:26:eb:5e:80:dd:3c:a9:0d:
e3:3c:2a:46:d9:58:fa:96:e3:b1:d9:65:f0:24:42:ed:0a:85:
d0:94:f1:e4:29:ac:c7:a1:dc:e8:ff:cc:72:26:a9:68:3d:b9:
a8:de:95:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:39 2024 by rpki-client on console-fra.rpki-client.org