Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/acaf3dc5-f49e-46ea-809c-a4e16c33715c.roa
File: acaf3dc5-f49e-46ea-809c-a4e16c33715c.roa (raw, json)
Hash identifier: CRWMOQJFu09QjvDAOCbZK8UW44L5sxkHfYKDzBbeLOY=
Subject key identifier: 86:14:B2:48:48:F5:90:C0:94:5D:AD:71:C2:33:8B:4E:59:FF:41:D7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 45CC6708166D3B72F911C0643C0B9C627C8247E8
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/acaf3dc5-f49e-46ea-809c-a4e16c33715c.roa
Signing time: Sun 13 Aug 2023 00:00:00 +0000
ROA not before: Sun 13 Aug 2023 00:00:00 +0000
ROA not after: Sun 17 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:cc:67:08:16:6d:3b:72:f9:11:c0:64:3c:0b:9c:62:7c:82:47:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 13 00:00:00 2023 GMT
Not After : Sep 17 23:59:59 2023 GMT
Subject: serialNumber=2b73cd85c3820f9fdcd9477e50d7de689ac1502b140098a4f479c791f9f53ade, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:24:25:3e:b6:3e:da:f1:3f:9f:34:c6:b4:2b:
5d:67:00:64:90:6b:34:df:f8:35:db:13:ca:ab:4b:
4f:c0:70:7a:68:92:82:f6:36:85:79:56:9a:1e:14:
7b:67:23:b9:62:8b:25:44:78:38:e0:78:59:8d:d1:
d6:22:c8:62:5f:03:a8:67:1e:5f:06:2f:e3:90:de:
ff:3c:ce:0a:61:40:69:0b:9e:08:7f:47:a4:d6:3d:
db:03:0c:2b:62:97:0e:44:57:b2:49:ed:66:f6:a9:
03:6f:0c:f3:67:04:c1:bb:64:02:22:8f:fd:a7:6c:
5f:be:78:cc:90:20:eb:26:29:64:31:77:62:93:04:
3d:84:12:3b:cd:a0:df:07:fd:f4:de:a9:98:ad:88:
5d:4e:af:ca:06:b4:49:17:d0:a4:dc:f8:7b:31:6b:
5a:d0:ea:ee:18:b7:1e:ef:92:33:82:f3:cc:7d:43:
4c:01:d0:88:28:50:ec:53:54:97:e0:76:da:24:06:
da:08:70:9c:ad:a5:2f:a7:4e:40:8e:eb:2c:e7:03:
34:0f:c6:89:51:6f:22:d7:99:68:bb:0d:05:06:50:
27:f0:4c:ad:2b:63:7f:4a:eb:67:d2:2a:93:d3:0f:
38:9d:61:8e:97:8c:f5:65:d3:b5:30:87:53:13:b6:
cb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:14:B2:48:48:F5:90:C0:94:5D:AD:71:C2:33:8B:4E:59:FF:41:D7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/acaf3dc5-f49e-46ea-809c-a4e16c33715c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
34:fa:a2:e1:bd:db:59:98:9b:b3:23:84:c2:1c:c4:62:95:15:
82:3e:25:a3:c1:6a:9a:d9:a5:b3:e9:af:db:d6:9b:ea:bb:54:
22:80:d5:31:66:b2:31:88:f2:bb:e6:f3:c3:98:2f:c2:d2:14:
e0:a9:54:3a:ff:dd:d7:1b:b1:a4:d2:5b:9e:67:71:fc:cd:f6:
c7:fd:f0:9f:9a:8c:6a:72:27:62:bd:8e:56:d8:8e:23:6a:e1:
7d:3f:86:42:1c:70:e1:23:60:10:cb:41:08:a2:7c:4c:54:a9:
23:5e:36:d3:b4:58:fa:73:c3:12:42:37:a7:e7:53:a6:78:cf:
61:f8:a9:b9:89:32:51:c7:af:aa:59:3d:5d:78:30:13:16:2b:
84:bf:18:4a:9f:0d:03:60:ad:1c:bf:b0:06:2e:38:ce:26:b9:
3b:7d:02:3e:6c:d5:f7:f7:f8:fe:4b:5c:33:83:71:90:a4:64:
c5:d1:db:1a:eb:45:38:07:6f:fa:fc:4d:9b:2e:42:81:a9:6e:
89:e0:78:17:0e:8c:ed:fa:59:2e:0b:0c:1f:56:f1:cb:9a:70:
ef:e3:24:1c:97:5b:38:6f:3e:33:b0:bc:78:01:f7:d0:37:76:
ac:28:87:39:4b:6a:a0:70:46:1b:18:89:db:21:ef:09:5c:de:
a0:ed:a2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:07 2024 by rpki-client on console-ams.rpki-client.org