Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c473b51e-8991-40ad-8f7f-92e2fd12980b.roa
File: c473b51e-8991-40ad-8f7f-92e2fd12980b.roa (raw, json)
Hash identifier: ivUvekOEzONC6tH51IvkNj5adBgl7//SjmdCj8rI/+c=
Subject key identifier: 30:CD:C2:8F:AC:4B:5F:A8:8B:37:2F:29:78:A8:78:42:0D:D2:F2:CF
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4D71F0D4C1F149E9B4503C20AE9FAF116C2BBD25
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c473b51e-8991-40ad-8f7f-92e2fd12980b.roa
Signing time: Sun 23 Jul 2023 00:00:00 +0000
ROA not before: Sun 23 Jul 2023 00:00:00 +0000
ROA not after: Sun 27 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:71:f0:d4:c1:f1:49:e9:b4:50:3c:20:ae:9f:af:11:6c:2b:bd:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 23 00:00:00 2023 GMT
Not After : Aug 27 23:59:59 2023 GMT
Subject: serialNumber=78e2994383f6fe7f1ff02a3cc166383eb7566f339291cf328430292bc097ae82, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:56:57:3f:45:f5:d3:26:5e:e6:cd:ec:3b:b0:
09:76:d2:f7:2f:d3:3c:02:6d:0b:e3:6a:ba:5c:56:
52:53:e8:1c:59:96:30:03:ee:cf:0c:20:da:d4:a0:
6c:a5:22:b2:bc:b0:6b:a9:df:5a:b9:d7:aa:39:ed:
6d:b5:a0:66:79:56:50:da:bf:08:06:b0:a5:74:24:
3f:39:c4:9d:64:c1:5f:18:3b:ca:a1:fb:e5:5d:39:
19:c2:75:c7:d8:d7:d4:c0:a7:b1:aa:eb:3d:99:92:
9f:de:49:8e:cf:db:fa:8a:a8:a8:fc:66:2d:48:74:
f4:76:e0:e8:bd:dd:7c:56:23:f9:d9:c2:29:b2:31:
74:75:b9:50:0d:52:07:05:8e:ed:b8:c1:e5:6d:5c:
c5:df:97:31:e2:86:98:11:bc:b6:a3:02:fa:ad:a8:
19:f5:05:e0:2f:94:64:e7:78:46:17:f7:8a:23:07:
b4:f5:f2:a6:6c:ee:c5:15:e4:4d:e1:f8:8d:cd:f2:
12:55:1b:ec:4b:1d:92:91:6e:33:31:7a:a7:bf:fd:
46:df:41:4e:ac:be:5b:53:e2:e8:5c:3a:15:bc:08:
20:31:09:e7:0a:da:a9:47:1e:e5:e9:e0:61:19:b4:
5b:7b:b5:d8:c4:c9:39:ac:af:47:8d:b4:47:34:33:
3b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:CD:C2:8F:AC:4B:5F:A8:8B:37:2F:29:78:A8:78:42:0D:D2:F2:CF
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c473b51e-8991-40ad-8f7f-92e2fd12980b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
50:79:f8:cb:9a:d9:51:35:5a:17:f9:d4:22:57:dc:8d:1e:e5:
63:33:cf:b1:6a:14:14:e3:fc:23:e2:27:c6:5e:90:3e:3d:88:
ef:ed:ce:ed:8d:ef:db:0b:97:67:93:17:9e:6b:92:ae:8f:73:
bc:2f:b4:a7:12:ac:94:49:1c:1a:08:b8:91:40:a8:0b:94:3b:
87:73:1a:5b:8b:55:9a:8d:67:29:db:75:37:a2:09:a4:b1:44:
8b:de:99:ba:16:e7:88:8c:58:8b:db:c0:b5:6c:98:f6:68:58:
dd:c1:c3:49:d6:11:5f:0f:03:63:a9:9c:8b:e4:bf:f8:19:12:
c7:1e:6d:3d:63:9b:5e:fc:a1:40:5a:5c:1d:78:7c:98:d0:aa:
07:e3:21:35:5d:ee:90:d3:3f:eb:83:c9:ee:7a:5b:8d:e5:00:
ec:d2:e8:19:ab:31:1c:f4:85:af:99:03:61:31:0a:f5:ad:6a:
81:80:19:85:cd:4f:d0:e3:d6:98:0e:1e:c8:e3:29:c5:ff:b4:
f0:b5:85:0b:d9:44:a2:6c:7d:32:d3:f3:45:9f:10:ae:7f:56:
c5:c2:88:e5:c8:59:34:0c:93:26:92:41:d3:2c:c3:9e:44:f0:
8a:0f:c9:e2:74:80:e4:62:5d:77:14:51:8b:71:d0:58:36:7a:
de:4f:ef:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:18 2024 by rpki-client on console-ams.rpki-client.org