Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/be204890-ac5e-4c7c-af69-6ce8029a968d.roa
File: be204890-ac5e-4c7c-af69-6ce8029a968d.roa (raw, json)
Hash identifier: POYVSsTM0tN71fI77NsmWhka+4f8QmWqdCvFMTN3dZg=
Subject key identifier: D9:C2:87:21:75:55:39:AD:8F:D7:C5:BF:85:FE:1E:C9:D6:B4:0D:8D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 78BC046D749E4810F47F731396BEE82C181D6BCD
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/be204890-ac5e-4c7c-af69-6ce8029a968d.roa
Signing time: Sat 30 Mar 2024 00:00:00 +0000
ROA not before: Sat 30 Mar 2024 00:00:00 +0000
ROA not after: Sat 04 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:bc:04:6d:74:9e:48:10:f4:7f:73:13:96:be:e8:2c:18:1d:6b:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 30 00:00:00 2024 GMT
Not After : May 4 23:59:59 2024 GMT
Subject: serialNumber=3064a46a20163b5350964b4c9127ccb8cb639b1eae9c3734564db6df50255c41, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:94:a6:11:3a:68:45:b2:91:54:eb:7c:95:53:
52:90:df:f3:8e:ad:78:63:56:77:8f:8c:3c:ae:d7:
a8:f3:1d:18:a3:4b:47:0f:9e:56:2f:d2:34:9c:ab:
29:f7:28:59:1e:2e:c7:02:e9:c2:a0:bb:1b:a0:d4:
77:f6:45:2f:10:4f:b5:06:9c:95:75:ec:e2:25:bb:
96:16:34:02:c3:47:59:53:b2:5c:07:b2:11:ad:bb:
9d:c2:7d:5f:43:bc:53:eb:07:60:98:6b:0e:42:0f:
53:f8:0c:d1:1b:2a:70:d7:b8:e0:b5:81:4e:fc:b0:
2e:bf:a1:94:b7:57:1a:29:55:de:50:b0:0e:16:ba:
3e:8f:1d:64:21:d2:d0:08:b6:43:bc:c4:1e:28:28:
60:c9:4a:75:7e:91:e1:ca:9a:db:ef:2b:22:b9:0f:
77:f3:c2:77:ef:27:2f:68:99:ec:ee:d6:05:8e:32:
d0:27:96:23:0e:ec:7e:84:ce:4c:fd:ac:b1:7d:ed:
db:5b:7e:5d:ce:45:b6:27:77:74:6c:5d:be:84:fe:
03:33:43:87:35:d9:6f:b6:61:ef:86:a1:10:e7:8d:
72:0f:05:4f:e2:c6:88:6c:ac:7d:84:a8:6e:a3:25:
f5:08:ce:fd:23:f6:9d:c0:d5:8f:3c:c8:c8:bb:e2:
af:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C2:87:21:75:55:39:AD:8F:D7:C5:BF:85:FE:1E:C9:D6:B4:0D:8D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/be204890-ac5e-4c7c-af69-6ce8029a968d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:8d:70:d2:69:5f:2d:58:a3:4e:cf:e8:a7:2f:85:7e:6d:77:
83:dc:3f:26:b2:c9:f2:12:ff:63:3d:90:a1:80:62:5e:5e:8e:
91:43:d3:f7:82:c5:81:e2:5a:a2:a7:a5:c3:78:a0:8c:18:c9:
e3:ff:d0:8f:73:42:fb:c1:d8:b1:8f:86:45:b6:cc:60:c6:f5:
76:97:90:d4:e3:a3:89:fe:61:d4:96:f2:98:51:0c:88:0b:eb:
b1:9f:05:ab:05:d8:2c:fd:c3:0e:fc:05:93:81:41:57:85:8d:
53:5b:2f:c0:38:92:ec:ac:55:a1:96:25:f5:1a:46:53:b6:55:
cd:5f:fd:9f:7f:6a:59:48:b3:31:f5:2a:b9:a7:a0:5d:7d:38:
03:0e:68:cc:94:47:a3:ca:79:78:d2:75:1a:f9:84:64:4f:da:
c4:0c:2d:ab:c6:bc:a2:e0:b5:55:de:62:40:8d:0b:f5:6a:9b:
73:c7:d4:30:15:19:31:a1:fd:3a:f9:71:24:6c:b9:23:30:9b:
6c:51:34:5b:04:78:21:18:7c:a8:d8:81:39:69:91:13:b6:b5:
9d:de:e4:24:85:86:3f:9b:bd:a3:bc:3d:2c:59:fe:4c:c0:43:
44:7f:9d:ba:79:27:e9:8e:89:8f:e1:f1:75:27:56:4d:55:4c:
6f:1c:c5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:17 2024 by rpki-client on console-ams.rpki-client.org