Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aca03af9-024d-45df-8974-1d7fa442e1a4.roa
File: aca03af9-024d-45df-8974-1d7fa442e1a4.roa (raw, json)
Hash identifier: u7jRXii3heIrdsN4DAYiDZJFrIvlrmUnq3StqJ5SLxM=
Subject key identifier: B2:23:17:7A:11:F2:EF:78:52:57:E6:B0:58:B0:A5:4D:B1:8C:67:E6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6C759F9F8E48EBCFBAB18B7FCE81833D3AEEDB60
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aca03af9-024d-45df-8974-1d7fa442e1a4.roa
Signing time: Sat 04 Nov 2023 00:00:00 +0000
ROA not before: Sat 04 Nov 2023 00:00:00 +0000
ROA not after: Sat 09 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:75:9f:9f:8e:48:eb:cf:ba:b1:8b:7f:ce:81:83:3d:3a:ee:db:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 4 00:00:00 2023 GMT
Not After : Dec 9 23:59:59 2023 GMT
Subject: serialNumber=71f2687400105d9f4be4c180bf7e640de27308b85ea6350483757030f39bf7dc, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d6:72:ff:bb:af:65:a5:1e:32:42:b1:30:01:
b1:00:e3:57:98:34:f1:96:ae:26:c3:ab:b0:0b:03:
6d:c6:a9:20:34:b8:ba:91:30:b1:cb:32:c2:98:8f:
c1:2b:1b:a8:4c:be:ce:53:fe:fb:e3:6b:44:6b:10:
60:07:a9:9d:b1:41:52:65:a8:3c:b8:32:b5:2d:09:
b9:b9:f3:dc:07:f2:93:08:0a:f9:66:c7:41:e8:be:
e8:ee:17:05:46:45:e7:4f:8d:b2:c9:0e:9c:69:5e:
83:91:d2:34:bd:42:f9:df:a2:49:1d:70:90:dd:fc:
ed:37:dd:c4:c9:7a:95:10:3a:d2:59:9d:bc:24:da:
7b:49:a1:01:7d:41:6a:34:8a:f0:e2:69:e0:b0:4f:
68:62:35:17:a1:6a:1e:5d:46:7a:79:f5:14:68:6a:
4b:e1:95:3e:b0:fc:7c:7a:87:f0:d7:21:9b:28:fb:
14:e2:a2:3c:d6:91:f5:45:e8:a8:a0:d9:bf:be:7c:
e4:e2:9f:f5:03:cc:2b:fa:fd:08:db:90:f9:8f:f2:
2a:8f:c8:96:38:f3:1d:7a:48:7a:ae:5e:dc:bf:28:
6f:f4:17:99:0e:86:ec:b0:88:9b:0a:21:ab:61:09:
ed:52:5a:7c:c9:99:52:86:cd:f9:04:14:a4:30:27:
77:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:23:17:7A:11:F2:EF:78:52:57:E6:B0:58:B0:A5:4D:B1:8C:67:E6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/aca03af9-024d-45df-8974-1d7fa442e1a4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
71:b9:8c:82:7f:dd:6e:b3:6b:4d:90:a8:b4:c1:9f:c3:66:91:
76:50:a4:86:60:69:99:61:69:09:d0:c0:55:7b:06:d5:12:53:
a3:f7:50:cf:20:5b:b4:2b:9d:3a:87:24:0c:e7:05:1d:dd:64:
dc:cb:de:68:78:ba:1a:41:f0:eb:e9:4f:b7:63:00:39:ee:35:
15:31:da:5f:54:27:cd:d4:04:ac:e5:1a:fd:60:0f:76:9d:1c:
a4:78:65:c9:0e:95:18:75:b4:2a:f2:b8:16:5c:91:66:4b:a2:
9e:26:84:3d:d9:4f:e5:31:2b:d7:33:78:05:77:fe:77:b5:5d:
60:51:76:a0:e7:80:29:2f:aa:34:02:4a:12:c5:9b:6b:32:17:
bb:e9:94:61:88:23:ee:81:16:b2:6b:70:45:dd:cb:99:49:91:
66:cb:73:a9:67:4b:78:08:64:e5:f4:8b:b5:cb:ce:02:cb:31:
0c:cb:87:75:6b:78:a4:a8:ed:ef:64:71:65:86:e8:9b:2b:eb:
1c:d1:24:9f:c8:86:9b:95:d5:25:fb:af:21:a6:7c:b5:f6:d1:
5d:b2:a9:5d:55:df:44:0f:51:ac:be:15:96:69:84:74:05:e6:
17:9a:36:ae:a8:3b:88:45:13:01:e4:8e:16:d7:c8:2f:b7:4f:
d6:0a:a5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:07 2024 by rpki-client on console-ams.rpki-client.org