Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b99690e7-95a5-4fbb-9bba-21ec6a9dddd3.roa
File: b99690e7-95a5-4fbb-9bba-21ec6a9dddd3.roa (raw, json)
Hash identifier: Go4Rgm/Ylbef4150M9uZYhINb4mIPS5HqxOjAuwiI5Q=
Subject key identifier: 20:82:45:84:EC:D5:11:8B:0C:C5:51:BD:B8:48:73:F5:A4:89:97:89
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 460AE85F68933A156C5C8ADCE9944AF934004E59
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b99690e7-95a5-4fbb-9bba-21ec6a9dddd3.roa
Signing time: Sun 06 Aug 2023 00:00:00 +0000
ROA not before: Sun 06 Aug 2023 00:00:00 +0000
ROA not after: Sun 10 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:0a:e8:5f:68:93:3a:15:6c:5c:8a:dc:e9:94:4a:f9:34:00:4e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 6 00:00:00 2023 GMT
Not After : Sep 10 23:59:59 2023 GMT
Subject: serialNumber=b7f70e7b4ae529476ec86bbe4c77517f83cc5b35b94b1f40f20b6c209d586b13, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6c:be:d2:13:a3:ad:5d:b1:0b:be:b6:88:2f:
2c:c4:5d:6b:ad:a0:cc:8e:7f:af:13:4e:0e:74:64:
5d:c8:67:8e:f7:78:95:bc:5a:75:21:03:83:68:a6:
43:9a:eb:79:c9:cd:5c:7c:c7:63:d0:34:c2:2f:5e:
ed:68:58:e5:e5:7c:06:92:e8:bf:d5:2e:65:6e:be:
30:a6:0f:92:3b:11:9f:94:ee:cb:5c:99:c9:f2:55:
a1:11:61:fd:de:ac:73:dc:af:7f:1c:5a:94:47:84:
e8:65:6d:61:ec:04:e6:87:6e:80:21:20:00:12:c5:
c0:be:8c:15:4a:41:cd:a3:40:1c:95:0c:c5:ef:2c:
7f:63:37:7a:7d:bd:45:1b:97:35:aa:25:48:cb:43:
8f:13:1b:34:9f:76:56:c7:47:2d:d9:ff:12:de:de:
94:5c:a6:a3:48:27:3a:86:4d:0d:bf:f9:17:85:bf:
1d:0c:ef:0b:21:75:38:d4:48:38:95:ff:fe:b3:bb:
13:99:a4:8c:d8:90:b7:03:9f:8a:d3:6e:ac:99:25:
d5:31:cd:9a:e3:26:52:31:58:3b:cc:c6:71:b8:34:
28:b8:0d:77:da:fd:9c:38:79:0a:c6:20:73:05:14:
f5:e4:c5:95:7d:de:f0:fa:18:ff:03:0a:ee:e7:02:
bf:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:82:45:84:EC:D5:11:8B:0C:C5:51:BD:B8:48:73:F5:A4:89:97:89
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b99690e7-95a5-4fbb-9bba-21ec6a9dddd3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c7:d2:e4:f7:5d:a1:a7:7b:87:59:94:24:ae:53:4a:d4:ac:
db:75:30:91:99:88:27:46:ad:c8:32:c4:cb:c8:c6:0d:14:05:
fb:7d:e5:62:5a:39:ce:d2:90:67:7f:d6:b7:2f:5f:ca:67:12:
18:35:43:32:69:6a:f0:f2:fa:1d:df:36:4f:6c:ee:b4:4a:9f:
6a:bc:d3:a0:a2:a0:34:fe:31:77:ae:69:2d:65:71:54:3f:94:
2e:74:bb:b8:88:09:06:0e:27:ee:ec:6d:b7:aa:f8:8b:16:c9:
01:28:a7:10:4a:03:b6:5c:a2:1c:6c:04:53:0f:f6:0d:2f:14:
bf:90:5b:18:01:6a:da:94:36:58:92:ab:fe:8c:cc:d3:11:e2:
dc:33:cc:74:5e:3b:b6:5f:6f:45:55:d1:df:84:71:d0:de:72:
5c:cb:cd:e2:3e:94:0c:53:d1:c9:5f:64:18:e1:2f:ec:d3:7b:
13:9f:68:3a:d5:96:55:4b:fd:ed:72:9f:ac:cd:a9:bc:02:06:
7a:14:8d:0f:57:c0:81:0d:26:1e:cf:29:c9:27:13:24:4a:60:
be:f1:19:c1:53:30:50:e0:09:15:59:59:d0:13:a1:c4:78:22:
ce:e3:56:60:e2:68:77:1c:1e:b8:93:28:4c:3e:b9:96:e8:70:
0c:6d:7e:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:42 2024 by rpki-client on console-fra.rpki-client.org