Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa0de8c8-42d3-4a42-a0d0-701004938923.roa
File: aa0de8c8-42d3-4a42-a0d0-701004938923.roa (raw, json)
Hash identifier: m+oulTAEzpCJDQCWsEEvpm92Ve3YX1JtjO3ddxFL/5s=
Subject key identifier: 66:DD:1C:E2:B5:C3:D2:BD:7A:C4:B6:43:76:03:50:2C:A6:E3:9E:52
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 45310C8CFE9EC0A7B8F7456CEA77FE800EBBA4BA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa0de8c8-42d3-4a42-a0d0-701004938923.roa
Signing time: Wed 29 Nov 2023 00:00:00 +0000
ROA not before: Wed 29 Nov 2023 00:00:00 +0000
ROA not after: Wed 03 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:31:0c:8c:fe:9e:c0:a7:b8:f7:45:6c:ea:77:fe:80:0e:bb:a4:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 29 00:00:00 2023 GMT
Not After : Jan 3 23:59:59 2024 GMT
Subject: serialNumber=bec2348433ebb1ead040995122a2f4ceaa4062ee06d459c939e86f6f145330c4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d1:e1:3c:9c:cf:9d:f0:b0:f3:c5:aa:1e:58:
06:c9:66:b8:6b:f6:38:70:ce:16:5a:65:e5:08:ce:
9b:95:02:14:19:a3:61:2e:c3:a1:3f:55:9f:35:3d:
5d:d0:21:00:60:fc:5e:cc:24:c3:2e:f6:48:3e:da:
45:12:eb:cb:f8:a7:85:c5:f4:d8:5d:86:24:88:27:
99:ee:e6:04:ed:58:83:bc:2c:f0:2d:49:49:fd:e5:
fc:55:3e:ff:fe:30:dc:fb:82:d3:f7:9b:01:36:52:
e6:da:0c:ea:6f:2e:da:83:45:05:db:f9:e8:87:3e:
17:21:28:46:7a:4f:1e:25:a2:77:16:84:75:c4:78:
14:a8:f1:50:ce:46:b7:43:e1:20:8e:db:e7:6c:02:
77:b0:03:cb:9b:21:23:f9:50:55:65:6e:e6:59:37:
67:e7:a8:13:dd:87:6a:55:cf:5c:0d:f4:a5:6b:8f:
6b:ec:d9:bc:4a:c4:27:eb:bb:6f:5b:78:4e:c2:cd:
ad:c0:02:26:0a:d5:3c:7f:ab:72:81:a6:63:83:fa:
df:9d:4b:81:69:06:76:43:e1:68:3c:93:76:20:fa:
92:cd:10:c3:70:dd:81:ea:91:ea:91:60:c3:e4:89:
72:e1:41:92:ee:43:f2:20:97:32:94:17:b4:17:0d:
1d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:DD:1C:E2:B5:C3:D2:BD:7A:C4:B6:43:76:03:50:2C:A6:E3:9E:52
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa0de8c8-42d3-4a42-a0d0-701004938923.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:09:8c:11:bc:51:0b:61:d3:1a:a5:9f:0f:4a:be:cc:16:be:
37:16:a8:3e:fe:5f:bb:c0:cb:53:a9:4b:ec:ba:48:52:81:b6:
11:d7:23:04:e6:b8:34:31:43:a2:c0:2c:b9:35:ee:42:2a:d6:
0a:24:8e:71:2a:5f:e4:0c:56:48:26:06:61:97:b0:f6:9b:ef:
f4:75:08:55:8b:55:91:47:e3:d8:29:1f:fe:fd:5f:94:e2:8d:
15:aa:2d:61:ca:5a:30:b8:a6:b1:41:f6:6a:f5:a3:8f:27:e0:
ce:d3:09:53:f7:15:f9:91:3a:3b:06:c5:22:b0:fe:b5:98:f9:
0d:35:a6:9f:5a:14:7d:26:5b:8f:ad:c9:a8:18:a2:b7:c3:0d:
d8:46:fc:a3:5c:a4:e7:2b:ce:33:25:13:20:f1:29:c7:50:bf:
ae:68:69:b2:44:f0:98:f9:6a:84:07:12:df:86:ed:0a:bc:76:
12:b9:51:cd:bb:c2:b5:67:ed:31:ff:ce:8a:47:6e:4d:ce:fb:
c7:39:83:39:02:b5:85:0d:11:1c:c8:d1:5a:4b:1b:3a:c7:f6:
2d:30:25:d0:59:2e:a4:6a:3f:3c:e4:70:ee:6a:e2:b8:96:ab:
60:5a:6e:67:6b:a5:7b:bc:1e:d6:d2:47:3c:f1:13:43:8d:1e:
51:f9:bc:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:06 2024 by rpki-client on console-ams.rpki-client.org