Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b4c18122-6161-49c7-83f5-461c4ca06774.roa
File: b4c18122-6161-49c7-83f5-461c4ca06774.roa (raw, json)
Hash identifier: zNxPbImU8XlCnNqfk8r3H2YOOaVnyKQg54NsGNUNUPQ=
Subject key identifier: A3:40:D1:68:77:81:EC:92:AE:46:A4:4D:AA:FD:30:0E:54:0A:45:40
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 62DC05316024089AE51F2941EF97B7C1BBD01123
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b4c18122-6161-49c7-83f5-461c4ca06774.roa
Signing time: Mon 01 Jan 2024 00:00:00 +0000
ROA not before: Mon 01 Jan 2024 00:00:00 +0000
ROA not after: Mon 05 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:dc:05:31:60:24:08:9a:e5:1f:29:41:ef:97:b7:c1:bb:d0:11:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 1 00:00:00 2024 GMT
Not After : Feb 5 23:59:59 2024 GMT
Subject: serialNumber=1278d5192f731315acbb97b538614b70cb39b8d95874642ed1d08e10c66d5a9b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:0f:b8:cc:db:15:14:2f:ea:3e:56:04:30:8e:
5b:1a:04:3d:b0:2a:07:c4:d5:50:be:93:c6:fe:ca:
fd:7c:ef:14:8f:c4:0d:e2:60:47:e5:6f:40:0e:8f:
be:33:9d:75:ed:a6:59:8b:5b:d1:3d:03:62:02:64:
f8:19:00:66:f6:0d:50:d0:d9:ef:b2:0f:0d:fa:43:
7e:19:7f:87:68:74:f6:58:94:9a:ae:aa:97:17:ab:
e0:4f:b9:9f:cf:79:d1:56:d8:07:3f:07:c4:84:ce:
69:3e:9f:33:50:66:b1:33:c6:4c:68:6d:dc:93:ff:
ea:a9:1e:60:73:c3:02:f8:c8:24:46:df:27:3c:ad:
1a:71:0c:67:66:f3:ab:2b:12:9b:01:20:96:68:e5:
42:71:1a:33:60:5f:72:f3:8e:8d:a9:12:50:c4:fa:
d5:f9:37:f7:43:d0:75:06:72:b3:cb:6c:c0:5f:48:
a2:58:36:b0:f1:a7:d7:89:8b:4b:d3:81:19:44:c9:
b6:13:e9:6e:96:db:f0:21:7e:b3:2e:b2:98:a9:12:
cb:b9:ff:db:b6:51:1a:9c:fb:0e:32:50:1b:f2:4b:
bc:13:66:89:1e:82:c9:cb:4a:cd:43:ca:11:58:b9:
9c:eb:f3:34:f2:78:86:8c:a4:15:76:88:27:5d:9c:
65:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:40:D1:68:77:81:EC:92:AE:46:A4:4D:AA:FD:30:0E:54:0A:45:40
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b4c18122-6161-49c7-83f5-461c4ca06774.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:fb:13:30:98:7f:7b:62:e8:2c:00:21:cb:94:2b:18:75:ca:
fe:bd:56:29:24:a3:ec:6f:7e:52:26:e4:b6:02:36:25:a0:ec:
04:57:af:d6:7c:7b:f7:82:a6:ba:72:22:fc:21:6c:84:98:5a:
41:8b:1e:26:75:65:cd:9b:8d:fe:29:67:6c:78:81:e1:70:33:
c3:60:3f:67:72:02:0c:16:d3:3b:1f:5f:b4:4c:bb:48:49:c7:
89:9b:f8:55:de:76:ff:47:d8:81:8e:df:be:17:75:71:94:88:
68:5a:00:e0:59:bd:5f:b2:bb:87:2d:41:8d:d9:a0:12:d6:b8:
09:ca:cc:26:19:15:be:48:b6:1d:85:00:ef:7d:cb:df:ff:be:
7a:3a:fe:60:f5:bc:6a:37:15:96:69:78:fa:c6:8d:9a:b2:d1:
9a:d8:ff:31:0f:19:b2:a5:5e:56:92:a4:6d:65:48:a6:d3:97:
d4:16:29:1f:df:f5:b9:80:ea:f0:6b:62:fb:4c:97:d7:31:35:
8e:2e:a2:5f:a0:d0:c6:a6:cf:a7:a6:c4:81:b8:51:27:33:d7:
a9:3b:a5:ae:d1:5d:ac:16:47:5e:86:e2:f5:10:1b:3d:e9:21:
e1:b5:cc:db:7c:d9:78:71:b0:33:4a:be:88:fb:97:c5:3a:a3:
c1:32:d1:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:09 2024 by rpki-client on console-ams.rpki-client.org