Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7d7cf8a-61ce-4aa9-a23a-9dd5483b7897.roa
File: b7d7cf8a-61ce-4aa9-a23a-9dd5483b7897.roa (raw, json)
Hash identifier: TcXcBxZGtbSeaVaCug0Y/qLqzw+Wi60snSh4EVoo4B0=
Subject key identifier: 56:D5:47:E3:57:D7:04:89:BF:DD:64:ED:59:21:9E:BB:AA:1D:36:7F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3EDAA1F27E57B31E63ABE5FB837A590757AC2A4B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7d7cf8a-61ce-4aa9-a23a-9dd5483b7897.roa
Signing time: Wed 13 Sep 2023 00:00:00 +0000
ROA not before: Wed 13 Sep 2023 00:00:00 +0000
ROA not after: Wed 18 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:da:a1:f2:7e:57:b3:1e:63:ab:e5:fb:83:7a:59:07:57:ac:2a:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 13 00:00:00 2023 GMT
Not After : Oct 18 23:59:59 2023 GMT
Subject: serialNumber=457f7d846c3990e7affed259e5c6ff299c2b36f10e208c9fb2c3ca08c515dc6a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ca:3a:99:72:6e:c6:58:61:b6:c4:28:dc:d3:
85:be:15:7c:21:b4:cb:a1:da:26:97:d9:cb:8f:2b:
73:99:b1:d7:db:de:43:b1:83:2f:a7:70:cb:b9:13:
47:2b:ca:bf:97:38:2b:4f:e2:4a:01:e8:13:6f:28:
51:07:93:27:76:4a:71:18:c4:29:f3:ff:ae:b8:06:
cb:ce:58:43:8b:dd:87:ca:34:0c:61:d2:75:21:6b:
36:ab:53:c3:9c:67:13:7a:24:1c:50:c5:e0:78:14:
1b:e0:54:6f:3f:42:65:a0:1f:c4:f6:82:85:36:d8:
5b:fe:ce:b6:90:af:92:84:da:e2:6c:49:9b:88:cc:
1f:93:f3:c8:ce:a6:ce:c6:c0:51:dd:20:10:c7:4a:
e1:a8:46:c8:2d:67:f6:ff:ed:a3:9c:7c:03:1b:dc:
4c:e3:29:33:85:cb:62:53:c8:25:3a:16:91:ec:11:
37:17:03:53:6e:32:f2:77:af:57:2f:7f:cf:c6:a9:
df:30:70:3c:e7:fc:35:b0:9b:db:f2:30:f2:f2:8f:
2e:d2:c8:ce:25:c4:9a:40:97:3a:cd:7f:e7:69:ab:
61:ff:09:23:8e:5a:fc:2b:bf:48:8d:3d:0e:b1:13:
c9:79:4c:98:8c:7c:88:da:5c:89:31:39:1e:e3:ed:
fc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D5:47:E3:57:D7:04:89:BF:DD:64:ED:59:21:9E:BB:AA:1D:36:7F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7d7cf8a-61ce-4aa9-a23a-9dd5483b7897.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:c4:d6:93:01:a7:0c:ff:41:48:2b:b0:92:1d:bb:cc:fd:18:
29:a9:54:18:78:37:8d:99:4c:b3:69:91:8b:a7:b0:4c:d5:b5:
32:0b:32:1d:fb:ed:22:46:17:1e:b6:f4:80:7b:9e:ec:e2:48:
70:93:e9:1a:ad:5f:38:3a:bc:1f:0b:09:6c:2b:0c:01:c8:b7:
0c:ed:06:9b:67:22:5e:69:55:af:7e:50:ee:9b:78:e0:a4:cc:
3a:51:5e:ea:85:5f:c5:ee:17:3d:a6:e1:00:a5:29:d4:df:7c:
dd:92:e1:12:d9:1a:29:00:55:9d:1a:a2:ae:80:22:34:cf:63:
b5:60:58:73:60:4b:37:41:21:c0:21:1e:8a:c6:1b:8f:26:0f:
a1:7c:e1:9f:45:45:85:6b:04:4e:cb:88:80:13:d7:5c:53:37:
16:86:ca:73:89:ee:02:bb:41:09:0b:4a:fd:11:a4:5c:1b:d3:
8e:a0:83:66:b1:4c:29:86:f3:a1:93:cd:75:c1:bf:d0:97:18:
aa:24:8f:c9:2c:42:b8:65:c5:41:34:84:3c:a0:38:58:58:ea:
db:ee:78:e1:3c:9d:f2:62:26:c6:17:38:3f:a7:bf:b2:fa:dc:
cb:00:35:fe:62:ba:d4:4d:a5:3e:dd:72:79:0d:f4:45:bd:b8:
89:ca:5e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:41 2024 by rpki-client on console-fra.rpki-client.org