Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa1c3d57-a501-4a77-a1e2-f0b300b1ccbd.roa
File: aa1c3d57-a501-4a77-a1e2-f0b300b1ccbd.roa (raw, json)
Hash identifier: TZ3bzG1nLZI+l2crF/oMF1WRhOEHhe30Htd0R7P7re8=
Subject key identifier: 49:58:37:0B:EA:68:6C:4C:44:72:F0:F4:D6:A8:5E:C3:DD:1B:7C:5D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2F0243FCE5F2BBDEBEE6821EC7B4DFBAA9F2CE37
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa1c3d57-a501-4a77-a1e2-f0b300b1ccbd.roa
Signing time: Tue 12 Sep 2023 00:00:00 +0000
ROA not before: Tue 12 Sep 2023 00:00:00 +0000
ROA not after: Tue 17 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:02:43:fc:e5:f2:bb:de:be:e6:82:1e:c7:b4:df:ba:a9:f2:ce:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 12 00:00:00 2023 GMT
Not After : Oct 17 23:59:59 2023 GMT
Subject: serialNumber=f71b48ecc2baf88db3b20e78b79a90c65c6e844fec449d1ce15b4218ed3889b4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:92:f1:61:b0:c5:b2:47:72:27:16:e3:96:85:
1e:ab:95:eb:8d:fc:47:41:8b:8e:29:bc:d7:b3:44:
fd:f0:3a:64:b5:14:4c:8e:45:03:81:5c:21:09:91:
99:bb:bd:0d:5a:80:d7:b5:da:fe:4d:42:ce:14:8a:
0b:b3:ea:3c:b9:bb:b8:6b:84:b4:01:aa:bb:3a:4f:
7a:84:9b:d8:92:63:b8:c3:2a:a8:b7:e4:cc:ab:15:
b0:04:c6:67:07:0a:8f:00:27:ee:f5:0c:23:3a:88:
91:09:7e:3c:a3:aa:d5:56:61:c8:fa:59:60:c4:a5:
a3:d8:a5:99:a5:47:04:1e:a6:79:8d:b6:09:aa:16:
95:cf:9d:1d:5c:6b:39:79:db:51:6d:07:8b:46:da:
ff:5f:bf:26:81:0a:1c:29:a2:40:20:91:3b:2c:86:
65:52:cd:1d:35:bd:d2:07:68:b0:3c:8a:56:2b:63:
e8:3f:85:b2:a7:6b:e9:1c:ae:7d:41:b9:7f:ea:db:
0a:de:b5:7d:38:2f:48:03:df:15:d1:7e:48:8a:bb:
d2:30:3c:ea:da:c7:13:43:ea:c0:e5:dd:02:2f:7b:
f3:84:17:86:2e:98:b3:ad:68:bd:79:a5:b8:db:ec:
18:29:19:76:2f:f8:d6:27:ed:2a:3e:58:f6:f5:87:
ad:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:58:37:0B:EA:68:6C:4C:44:72:F0:F4:D6:A8:5E:C3:DD:1B:7C:5D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aa1c3d57-a501-4a77-a1e2-f0b300b1ccbd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
84:63:c9:e6:2a:0f:56:c7:b5:c1:ac:2a:e3:b9:cf:6b:ea:1b:
a8:c5:28:93:af:ae:9e:08:0b:4c:e1:45:a0:23:33:c7:2d:55:
77:80:01:34:eb:49:f3:0b:8b:be:33:32:d7:20:11:1e:f4:5d:
2b:a9:5b:4a:b4:d1:34:7b:7c:61:66:4b:b6:db:40:83:e1:ae:
43:2c:6a:bd:6c:4d:d2:42:ff:62:12:70:cb:65:84:0a:01:66:
8f:a9:56:de:a2:6b:33:87:f7:f3:6b:c0:16:2b:7b:c6:da:71:
8a:55:56:0e:99:10:bc:07:9b:8e:ae:d6:56:1a:1c:ad:ed:d9:
ba:10:8d:b0:38:02:fd:89:0d:9a:0f:08:9b:5e:a7:90:65:e8:
c4:45:42:89:75:a5:84:69:7e:bc:69:45:5c:cd:f7:77:e2:74:
82:20:ab:f8:6c:5e:7e:e8:d7:f5:0b:d3:cc:ab:53:a8:0d:5c:
52:b9:a2:84:ea:ef:4a:c2:66:14:2e:71:6c:4e:9d:c2:d2:bc:
27:48:5b:27:4c:20:fe:a1:99:51:4b:3f:47:a9:e4:54:46:c0:
88:ff:49:d5:f9:1c:69:72:e3:7c:6c:aa:5e:f2:a1:cd:db:c9:
a8:01:4d:ce:8b:20:3e:52:bb:4b:77:08:4b:e0:27:41:fd:ba:
d5:ff:57:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:39 2024 by rpki-client on console-fra.rpki-client.org