Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c6bdbe23-9ec8-4f1f-b8ac-7421e6c68070.roa
File: c6bdbe23-9ec8-4f1f-b8ac-7421e6c68070.roa (raw, json)
Hash identifier: gsEsLppBrHmvAiryXNOjATq2jOXcxOaoQPeLVZnBjFg=
Subject key identifier: E7:C1:C5:8F:A6:73:65:9A:C3:A9:6A:D9:F2:E4:D1:59:AA:FC:2D:36
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 599D16CC2564F3AF805AEF896F62F2EAA3E72F98
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c6bdbe23-9ec8-4f1f-b8ac-7421e6c68070.roa
Signing time: Sat 29 Jul 2023 00:00:00 +0000
ROA not before: Sat 29 Jul 2023 00:00:00 +0000
ROA not after: Sat 02 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:9d:16:cc:25:64:f3:af:80:5a:ef:89:6f:62:f2:ea:a3:e7:2f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 29 00:00:00 2023 GMT
Not After : Sep 2 23:59:59 2023 GMT
Subject: serialNumber=9993cdb972f8badd69e09325f3115a62d5bb7b223d1a4bc40960b0a259a1f2d5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:8d:ac:da:23:b8:bd:d7:3f:c0:8e:e0:aa:
8d:00:f4:6f:08:69:e2:df:c9:32:7d:16:9c:f0:48:
27:b8:74:2a:5c:e8:ca:4b:ef:ad:0b:26:50:cf:97:
2f:1f:0a:59:5d:9e:a1:71:a8:6f:3e:4c:d0:ff:b0:
12:7c:83:67:24:89:87:96:26:dd:44:5d:77:7b:f2:
7e:aa:09:2a:36:bb:90:bb:de:2e:7c:61:46:5a:8e:
bf:55:3f:c4:40:10:20:dd:4a:89:0c:7a:e2:7e:70:
d8:df:a6:74:e5:8e:09:f9:df:10:7f:40:2b:90:a9:
b4:07:f5:a9:29:0e:78:41:8e:86:9d:e4:8e:32:70:
bd:64:e6:d9:44:92:a2:75:d9:56:14:53:f0:43:c7:
7c:73:b2:4e:a7:ef:f1:98:f7:e8:2d:c8:84:47:82:
62:16:35:86:03:18:43:24:6c:ae:be:7a:cb:2d:b6:
be:3c:fa:95:98:08:0b:82:a5:2e:3d:69:24:b7:85:
35:23:db:1c:50:51:89:62:35:55:6c:03:43:07:2a:
61:ca:62:d3:74:8d:65:1b:41:7c:bf:22:a5:43:68:
3a:94:bb:dc:26:76:15:17:9f:5d:1b:06:91:97:08:
f3:bd:86:16:52:c1:17:7d:87:d0:45:56:84:9b:11:
c3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C1:C5:8F:A6:73:65:9A:C3:A9:6A:D9:F2:E4:D1:59:AA:FC:2D:36
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c6bdbe23-9ec8-4f1f-b8ac-7421e6c68070.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:7a:01:fd:98:6e:83:64:bc:62:84:b4:76:9c:06:e4:d4:fb:
1e:50:ab:43:b3:fa:0d:14:b8:74:4d:fd:26:34:62:07:d9:30:
69:dc:12:7f:e6:e9:e5:44:33:53:1f:8b:7c:37:a2:f2:3b:b8:
2d:ad:2c:36:d4:02:2e:ad:10:2c:6f:d7:55:db:2f:51:38:4f:
86:33:81:cd:e9:e9:b4:1d:8b:d0:cd:62:35:c5:5d:67:da:12:
dd:1f:6a:87:39:65:69:bc:8c:31:93:28:57:0b:bb:b8:d2:c8:
79:53:6f:d9:6e:6d:44:2e:1c:86:ac:2a:3c:91:79:77:c0:0a:
09:d0:83:85:ff:04:f3:55:c8:95:d4:4c:97:49:38:58:e1:72:
57:d1:63:35:cf:93:4b:5f:2d:da:26:36:65:b2:61:a8:59:d4:
df:8a:9d:66:09:c3:75:4e:e0:49:4a:4f:e7:e8:d5:9c:14:f6:
34:17:72:12:a2:98:29:34:16:3f:89:86:f0:89:56:1d:a9:71:
b6:19:c9:f7:43:0d:49:4c:87:8e:d5:e0:83:e3:4f:6f:3d:c4:
19:7e:49:d4:e1:a1:f5:ce:db:e4:c7:da:54:93:90:cc:8f:8d:
b6:82:8f:91:53:78:a2:a2:82:43:1c:45:e0:0b:8f:74:40:27:
56:0d:9b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:44 2024 by rpki-client on console-fra.rpki-client.org