Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b1c8da2f-1efe-47ba-98af-6829f1ad2995.roa
File: b1c8da2f-1efe-47ba-98af-6829f1ad2995.roa (raw, json)
Hash identifier: 4nKHm5OAU3bBWuFHS0siXj8W6ASrL7Slv4QeuAqvSvc=
Subject key identifier: 93:E3:58:9F:EA:A5:B1:42:1B:FC:DC:90:EC:2F:D3:B1:45:1C:C2:89
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 42E9DFE2861A9B15E870471F841B98A8DED5978F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b1c8da2f-1efe-47ba-98af-6829f1ad2995.roa
Signing time: Thu 27 Jul 2023 00:00:00 +0000
ROA not before: Thu 27 Jul 2023 00:00:00 +0000
ROA not after: Thu 31 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:e9:df:e2:86:1a:9b:15:e8:70:47:1f:84:1b:98:a8:de:d5:97:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 27 00:00:00 2023 GMT
Not After : Aug 31 23:59:59 2023 GMT
Subject: serialNumber=0949f896bbdea2806b79a7e92784edf6fac6c4ce2326a7036dc1fc4f63a4232a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f1:8a:ab:15:84:f0:7b:b7:74:4d:88:f8:47:
08:ad:5c:0f:f6:e2:3f:91:95:67:1b:64:30:7a:a9:
0c:7d:c5:02:91:23:09:8f:84:bc:44:05:35:bc:3a:
5d:be:fc:aa:73:37:6b:34:d9:c3:35:d2:43:04:eb:
13:d7:e6:61:38:68:0e:64:e2:8f:75:b6:93:eb:75:
16:d8:94:cd:c1:ea:65:01:d9:bc:25:44:95:53:00:
3a:6d:97:64:52:91:b8:bb:4b:c3:10:64:23:5d:14:
73:04:2b:04:54:4c:cd:ec:78:29:5d:e3:d7:1e:85:
08:84:46:5e:66:aa:51:1f:11:1b:86:d0:7a:fc:85:
94:ff:eb:17:f5:fc:75:0f:4c:09:31:dd:e0:99:16:
22:8e:bf:3f:54:79:56:d0:34:c4:79:fc:20:11:41:
cf:38:4c:61:43:b1:82:4f:6d:45:04:36:81:4f:86:
95:69:8e:01:73:ef:c7:d6:16:41:e3:b3:a6:34:b2:
24:b7:05:ed:91:53:10:18:ba:1c:f3:ed:47:83:61:
3e:58:95:ec:81:56:3e:8f:59:03:41:f5:4f:a3:f8:
a6:bd:0f:41:31:e8:90:26:04:bc:7b:6c:63:19:2c:
17:1f:0a:da:13:9f:16:dc:f1:1e:d5:72:30:0f:ca:
14:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E3:58:9F:EA:A5:B1:42:1B:FC:DC:90:EC:2F:D3:B1:45:1C:C2:89
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b1c8da2f-1efe-47ba-98af-6829f1ad2995.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
79:24:e9:0b:d6:3d:b0:77:cb:9a:50:cf:36:f3:94:76:7d:8f:
81:a2:3c:1e:58:63:16:11:04:d5:e8:22:0f:50:fa:c4:90:35:
e4:a4:fc:f7:b6:1f:8c:5a:fc:b3:36:32:d9:ad:09:97:8b:6c:
fd:df:b4:cd:c4:0b:ff:e9:b5:b3:97:31:4f:74:6a:8a:d4:ec:
28:7a:3e:c5:ec:ab:8f:f3:bc:d7:73:81:99:54:91:c4:13:fa:
2d:5a:e8:43:f2:f8:06:a5:4a:71:0a:f7:62:9f:a5:ef:51:e5:
84:a8:ad:d2:99:4e:73:5d:e0:31:4a:d1:d4:ac:c6:23:79:7f:
41:6b:7c:ae:ef:e6:95:e8:c0:46:87:0c:cd:08:6e:52:23:77:
6a:ac:ac:d6:99:d5:33:35:c3:eb:f5:17:e1:ce:2f:3d:9d:7c:
1d:c6:1e:02:23:db:3f:fa:05:4d:cf:d3:a5:ed:b0:a9:dd:99:
5d:b1:61:c7:84:65:64:9e:7f:2f:8e:39:e7:79:1a:fc:f2:5e:
ea:f4:29:ac:c2:8a:82:46:31:4c:b3:96:59:cf:b5:de:b5:7f:
c9:db:f0:49:fc:c7:d7:fa:d7:cf:ac:a3:1a:72:1f:8d:fa:14:
5d:90:65:4c:7c:0e:96:65:92:b8:6d:46:8c:48:2c:4f:6b:99:
64:4d:2d:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:09 2024 by rpki-client on console-ams.rpki-client.org