Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bd3f3eb6-eacb-4c43-a27b-0acbc76bc0db.roa
File: bd3f3eb6-eacb-4c43-a27b-0acbc76bc0db.roa (raw, json)
Hash identifier: JdoB1H0ypmKB3gy/T87EcUY/ZNiCGDSdStvPJ/74o6A=
Subject key identifier: E9:7E:2A:50:CE:F1:07:00:0C:97:7F:90:6D:DE:27:75:69:09:C9:66
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6C19DF120BC51AB8BE92E5CCAB7C32BB8304A28B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bd3f3eb6-eacb-4c43-a27b-0acbc76bc0db.roa
Signing time: Thu 06 Jul 2023 00:00:00 +0000
ROA not before: Thu 06 Jul 2023 00:00:00 +0000
ROA not after: Thu 10 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:19:df:12:0b:c5:1a:b8:be:92:e5:cc:ab:7c:32:bb:83:04:a2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 6 00:00:00 2023 GMT
Not After : Aug 10 23:59:59 2023 GMT
Subject: serialNumber=4d9660cc7a26e04ef34c6a2f975a6b28a7cce9a0b13eb62d1b64595edf480748, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c0:ef:e9:4e:f5:90:14:94:6b:8d:ff:d6:c0:
87:30:b6:f0:8f:b0:63:65:b9:33:b0:66:14:96:61:
ec:27:4d:74:21:b9:96:39:bd:a8:3b:38:41:81:2c:
06:ce:59:d5:67:21:0d:85:4b:ba:bc:82:ea:e3:3d:
37:ef:a8:78:d1:b1:c1:59:b7:6b:a1:f5:69:a0:6f:
70:e2:cc:b0:06:a1:ed:e7:a1:30:4d:37:b5:79:2c:
8d:29:c9:fe:10:81:8a:f6:dd:24:43:d7:d5:e1:32:
bb:b9:62:2f:84:bd:80:c7:12:c1:61:66:95:9d:0f:
b1:2a:41:90:da:b9:9d:28:e4:7f:03:31:3f:74:44:
22:dd:98:8d:5e:07:c4:c6:9a:ad:bb:85:19:82:b8:
a2:1c:7f:f1:fb:95:34:90:14:b8:7c:f7:bc:37:98:
47:5c:55:52:70:dc:5e:78:3c:b5:0d:85:d4:11:54:
4a:6e:3d:93:88:2f:89:57:0e:71:61:36:58:58:9a:
81:37:27:d9:03:20:f3:b4:7c:53:b4:ad:e6:36:fe:
d3:be:33:af:4b:d2:39:15:16:08:d1:b1:d7:84:d0:
2a:9d:85:50:f6:84:ad:9c:a8:8e:5b:f6:fe:7e:02:
a5:3e:59:83:78:05:4a:52:d6:03:87:01:9a:16:c6:
1f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:7E:2A:50:CE:F1:07:00:0C:97:7F:90:6D:DE:27:75:69:09:C9:66
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bd3f3eb6-eacb-4c43-a27b-0acbc76bc0db.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:47:1a:4b:62:bb:a8:a9:47:89:e1:91:bc:79:19:b3:9e:8a:
a7:43:ef:7a:0a:4e:96:21:1e:73:c5:ce:3c:1d:44:54:09:bb:
97:b8:17:68:9f:d0:b3:1a:23:46:6a:72:cb:62:6e:f6:8f:9c:
7e:7a:2b:91:3f:21:f7:f7:d1:c5:20:82:ce:30:db:30:64:53:
52:f6:51:36:f9:2c:b6:45:72:a0:f8:ce:7f:fb:83:a1:59:0d:
39:9c:49:58:5f:a9:f6:02:fc:00:5b:8d:cf:6d:a1:d7:54:92:
41:56:23:f4:4a:73:15:57:78:32:52:f8:fa:7c:90:68:66:b4:
e0:49:a4:dc:8d:ab:c2:15:ae:86:09:e6:67:20:62:aa:e9:9c:
0f:6a:a5:e3:5f:37:1c:30:c5:46:39:37:45:bc:63:e8:30:cf:
e5:29:39:b5:67:96:a6:fb:7f:40:28:e6:6b:c7:01:79:76:bd:
c0:e3:15:d4:35:45:75:c4:10:d7:21:f0:3b:e0:f7:6b:ed:12:
4c:8f:70:ea:9e:f6:be:14:89:ba:ff:c2:8c:17:47:b7:57:e8:
73:04:9a:04:ba:6f:d1:2c:98:89:33:74:eb:48:a5:81:97:20:
84:ee:4a:3c:57:35:2e:6e:01:e0:9e:a1:1d:e7:b3:20:df:b6:
de:99:30:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:17 2024 by rpki-client on console-ams.rpki-client.org