Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b46a9fb5-79c7-48c2-918c-346064cbae36.roa
File: b46a9fb5-79c7-48c2-918c-346064cbae36.roa (raw, json)
Hash identifier: Hzj87mMIocm9iz4XJ5i93shkWJq3wrTYRm7sOQ36xfs=
Subject key identifier: 3D:B3:6D:3A:7D:32:9D:3F:48:15:33:EB:FA:2D:7F:57:0C:6D:74:46
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 185C2535D3EF64F881D5499692873C7F3105C5AA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b46a9fb5-79c7-48c2-918c-346064cbae36.roa
Signing time: Sat 21 Oct 2023 00:00:00 +0000
ROA not before: Sat 21 Oct 2023 00:00:00 +0000
ROA not after: Sat 25 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:5c:25:35:d3:ef:64:f8:81:d5:49:96:92:87:3c:7f:31:05:c5:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 21 00:00:00 2023 GMT
Not After : Nov 25 23:59:59 2023 GMT
Subject: serialNumber=236c514518d42d094cd1b12807b2cd7f3669ab2f3855ecac0dfd946ee354fb78, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:59:4f:26:a2:58:fb:6c:31:90:c1:f7:3e:d0:
d1:cd:e3:06:0b:64:90:e2:83:5d:0d:b9:29:3d:d1:
1d:2c:e1:c9:17:65:4d:1d:b3:f0:2f:98:02:28:d0:
7a:dc:d0:03:a5:5e:a1:3d:94:d2:68:26:b0:1f:7b:
90:78:8c:30:fb:3e:f0:bb:bf:97:ad:3f:54:d5:c2:
f1:84:8a:f0:57:00:7f:19:a9:75:46:b7:a5:65:18:
d0:f9:dc:51:78:b0:ad:c9:db:da:f1:83:31:1a:9f:
29:ef:12:b8:71:8e:ce:6d:cb:c4:fc:4f:d7:2a:73:
ee:a8:e8:ba:45:30:6d:5d:1e:a9:56:0d:5e:62:2c:
e9:be:ed:c1:12:6d:9d:23:b0:ce:7c:2f:af:d6:c1:
3e:3c:7d:fe:bb:26:72:31:00:3f:0b:26:d4:b2:02:
34:f9:a2:56:f2:16:73:19:e9:da:ae:ed:84:2b:ce:
2a:68:fc:f9:7d:5c:24:77:4b:0e:a5:fa:b0:cc:65:
01:48:49:aa:83:cb:dd:aa:eb:88:ad:35:72:d5:f1:
fd:67:39:f3:40:e3:6c:69:e9:f9:f9:18:23:a8:9a:
df:ea:c2:75:58:49:30:66:d1:9e:51:7e:7e:d5:31:
b8:16:33:da:76:57:2b:8c:a9:80:01:c9:89:67:49:
91:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B3:6D:3A:7D:32:9D:3F:48:15:33:EB:FA:2D:7F:57:0C:6D:74:46
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b46a9fb5-79c7-48c2-918c-346064cbae36.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:62:29:8e:f4:34:2b:12:47:17:f3:e0:5f:c9:b0:d1:71:08:
01:70:b5:07:88:df:95:40:12:9d:db:64:49:62:08:8c:9f:23:
89:bf:f5:38:8f:25:c7:d6:aa:b3:3e:4e:ef:11:e9:d4:44:b1:
e5:86:cd:14:e0:d7:f9:89:35:2a:dd:2c:d1:c5:9b:73:1b:c6:
69:33:68:98:84:c0:a7:3f:26:87:2e:c9:22:80:29:83:5f:1a:
46:60:71:2e:fd:58:00:0a:40:43:20:79:21:77:4f:d6:e7:71:
c4:3d:f5:6c:cb:73:95:c2:3d:b5:9d:4c:73:82:4d:47:ab:aa:
11:a0:92:96:ff:b9:fe:de:a5:bf:4b:7c:ff:0f:30:42:cc:35:
12:6b:32:1c:18:be:6e:33:6d:bb:d1:e1:3a:80:f6:35:dd:dc:
b3:c7:ae:7d:4f:4e:eb:c4:77:d6:b5:52:b8:8d:01:82:46:11:
df:1e:05:3c:7c:4a:78:93:3e:8d:9e:f8:78:08:12:73:65:48:
f0:73:90:1b:73:c6:72:9c:03:c8:6f:f5:89:26:0c:49:0f:e3:
e9:43:14:69:c6:d4:a2:30:4b:bc:70:2e:27:f2:b9:48:82:73:
3f:a3:a7:ca:b8:d4:79:1e:19:97:ce:2d:96:c7:e0:72:6a:1d:
42:7a:ff:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:09 2024 by rpki-client on console-ams.rpki-client.org