Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a8c6e3cf-b0cc-4242-b3ec-e7cb44c7a509.roa
File: a8c6e3cf-b0cc-4242-b3ec-e7cb44c7a509.roa (raw, json)
Hash identifier: XJbTMvqJj3DOAup43jvceg9mGbLHPDngB28M0Uvs0fc=
Subject key identifier: F2:F8:77:BD:99:8C:C9:1D:6E:96:4F:7F:F9:23:B9:80:74:75:7D:0E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3E66BEA9EF3BCE390C436BF23A23B95B0EFF04A6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a8c6e3cf-b0cc-4242-b3ec-e7cb44c7a509.roa
Signing time: Fri 18 Aug 2023 00:00:00 +0000
ROA not before: Fri 18 Aug 2023 00:00:00 +0000
ROA not after: Fri 22 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:66:be:a9:ef:3b:ce:39:0c:43:6b:f2:3a:23:b9:5b:0e:ff:04:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 18 00:00:00 2023 GMT
Not After : Sep 22 23:59:59 2023 GMT
Subject: serialNumber=19ac88e232eaccd28b25f5f3ed72cbc2ba3e9ebe9bd892b953da09fcc02b5885, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:44:d4:9a:96:57:3b:fd:b6:39:ff:81:48:57:
ef:a3:df:ac:3a:f7:fc:06:5a:e9:6b:c6:80:a9:0b:
ec:7b:3c:8a:57:77:b4:78:9b:2d:f8:01:c0:11:3d:
d6:b4:4f:e0:a9:27:45:bd:9d:62:9b:6c:18:8f:03:
c3:7a:fe:be:16:60:fc:4b:f0:8c:8d:1b:01:d7:ae:
96:77:02:13:9f:f7:45:a2:1e:8d:e2:1b:56:b5:98:
b2:17:4e:94:a0:8a:04:b5:96:46:1f:ab:5a:86:19:
ac:37:ce:8d:3e:10:2f:c9:ac:c9:3d:28:b5:f2:ae:
82:f1:a5:92:e3:ed:fc:ce:61:7f:0a:f9:d1:4b:83:
3c:5f:49:89:12:f7:7d:4b:ee:6c:15:82:b1:6b:be:
81:04:8c:ad:26:c6:13:9d:91:82:3c:92:87:90:13:
d1:e7:30:84:c7:8e:f2:85:4e:79:e5:a8:4d:16:d0:
44:5e:ab:a7:0d:7a:2d:02:a8:ca:32:d7:eb:67:91:
c0:75:c2:98:b7:ea:75:bb:fa:80:f3:0f:77:52:ba:
d4:e9:c1:75:bb:27:fd:e3:6d:16:43:da:43:4d:d5:
10:28:a4:89:41:43:d4:9d:68:f0:7f:a5:2c:79:b6:
59:d3:0f:6f:16:a1:aa:c2:e2:d0:1b:f1:9c:57:ea:
f7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F8:77:BD:99:8C:C9:1D:6E:96:4F:7F:F9:23:B9:80:74:75:7D:0E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a8c6e3cf-b0cc-4242-b3ec-e7cb44c7a509.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:2a:45:b7:35:5b:61:71:50:a4:58:2f:23:6e:c0:8f:79:87:
25:8a:55:ae:15:a9:68:29:8d:ca:b7:07:57:b1:a5:47:ab:09:
4e:19:3c:94:25:c3:e5:50:18:99:83:03:bf:5f:d9:58:96:52:
a9:bd:2f:e5:d3:e5:98:44:cd:8c:f6:cd:13:a7:9f:7e:38:82:
2d:44:5f:c9:c4:66:f3:b6:15:2e:22:a5:04:93:9f:85:93:85:
4c:72:25:ae:e7:f2:71:34:ac:72:74:a4:eb:02:48:4b:df:b5:
8c:cb:60:98:aa:8f:f2:46:e1:ca:39:0a:e1:9c:3b:b1:c7:cb:
71:5c:17:a3:50:bf:48:c4:39:18:3c:b5:2c:b5:03:c0:37:30:
ea:bf:9e:28:b5:15:a1:38:d1:e3:be:68:ad:80:83:45:31:6b:
36:07:f3:f0:ca:4d:a8:08:f4:7c:91:15:eb:c9:b1:39:36:dc:
b6:d9:71:dd:f7:67:fc:f5:c1:a6:9e:6f:a4:01:a5:64:23:af:
f0:0f:87:b6:9e:67:22:d0:5b:ab:6d:ce:7d:b7:4c:03:c5:4f:
b3:c4:38:2a:d9:e1:8f:a7:0a:59:94:09:d5:93:2c:ee:b0:17:
fb:5a:f8:4b:4a:24:8a:0f:73:00:c6:e5:01:5b:2f:64:f7:1a:
a7:b7:61:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:39 2024 by rpki-client on console-fra.rpki-client.org