Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ab764048-9b51-49aa-b77e-69f8505af037.roa
File: ab764048-9b51-49aa-b77e-69f8505af037.roa (raw, json)
Hash identifier: ouyzeS7neHHw3xhZBZDTQ5LYBSDLLHgwS8q99ulC1nI=
Subject key identifier: DC:42:9C:0B:8C:97:DD:B1:84:25:46:14:9A:B2:02:FB:A4:BD:FE:E1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2620B4FA1F4927653D19162E3E3503CC4BFD9CCE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ab764048-9b51-49aa-b77e-69f8505af037.roa
Signing time: Mon 07 Aug 2023 00:00:00 +0000
ROA not before: Mon 07 Aug 2023 00:00:00 +0000
ROA not after: Mon 11 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:20:b4:fa:1f:49:27:65:3d:19:16:2e:3e:35:03:cc:4b:fd:9c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 7 00:00:00 2023 GMT
Not After : Sep 11 23:59:59 2023 GMT
Subject: serialNumber=d2b774c494486d8530b82f5c6d38390dbabfe77a3d3df83a9448cfe08b55f454, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c8:21:22:3e:9e:5a:87:08:6b:f5:a8:93:b3:
89:34:30:5f:a9:af:38:e8:62:8d:3c:42:25:91:00:
1e:5d:73:cd:5d:3e:f8:af:99:2a:35:66:ea:f4:eb:
52:47:6c:d9:2b:fc:83:fd:1c:76:c5:aa:e8:79:3e:
f9:fa:0a:e4:4c:e2:01:48:1a:2b:a4:21:29:b0:85:
32:c8:a0:f8:3b:ed:53:04:9c:6c:f0:61:d0:c9:49:
6e:f6:e1:23:60:94:32:4b:3a:d5:b8:b1:d3:cd:a3:
a9:7a:4d:df:19:b3:d2:e7:89:0f:31:e5:a7:44:48:
03:12:0b:84:6b:69:3a:e8:21:70:7d:16:c8:aa:1b:
3a:d6:01:68:58:be:48:fb:10:02:8c:d1:83:2a:ae:
c2:d3:d6:f4:28:0f:e9:4f:fc:c8:41:e5:fd:80:d9:
4a:21:b5:6e:ad:70:49:43:6c:8d:22:34:20:3b:19:
e8:23:d6:f5:be:c2:f6:60:18:b9:f2:d7:13:b4:9c:
10:6e:da:4b:db:1a:06:a7:be:09:91:dc:ec:95:38:
63:7a:65:dd:44:f8:2d:38:31:20:5f:7d:18:2c:d8:
b3:97:6f:95:62:26:9c:af:2b:49:04:89:0c:c7:2f:
5c:4e:5c:bb:f7:45:88:ea:66:7e:30:0d:98:71:8e:
fb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:42:9C:0B:8C:97:DD:B1:84:25:46:14:9A:B2:02:FB:A4:BD:FE:E1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ab764048-9b51-49aa-b77e-69f8505af037.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ea:1e:20:b6:0a:b4:d9:e9:54:40:5b:94:3e:3b:64:c6:a0:
46:ee:b5:de:e2:6b:c2:4c:38:43:13:0e:c2:f8:b9:b6:1d:29:
7a:bf:a4:32:d0:cf:37:b6:86:a4:c1:9f:2c:3a:00:9b:ad:5c:
74:dc:59:b7:9f:1d:17:cd:84:db:9c:ce:1b:47:0e:55:64:af:
86:f1:e7:96:b1:69:f8:70:e0:e4:af:f4:c5:94:0e:b1:0b:bd:
81:34:2a:a6:8f:9b:57:3f:8a:0a:e5:8c:bb:9b:5c:58:20:3b:
5b:b8:54:bb:52:ff:8e:e5:39:36:93:16:52:ab:58:c8:ae:5b:
3c:bd:fb:60:45:98:29:5d:5c:c7:c6:b3:b4:ea:65:c0:e0:74:
48:86:12:ba:66:95:52:b3:ea:32:cd:44:8e:9e:5b:c0:61:b9:
12:13:a8:d7:f2:7f:b9:e0:0e:85:17:2d:7e:d2:58:f6:c5:4b:
a1:34:8b:d3:e5:23:72:69:f9:3d:93:d7:9b:70:72:d6:ff:a4:
37:fc:c4:6a:79:06:9a:24:6f:e3:f8:36:be:39:5f:7d:64:2b:
1e:48:13:16:10:f1:1d:ae:04:db:42:78:10:c8:be:e5:10:44:
2e:32:53:5d:0a:32:d2:91:03:d6:46:8c:7b:ed:f3:68:76:0e:
7d:16:b7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:39 2024 by rpki-client on console-fra.rpki-client.org