Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c8d249fe-db90-47bb-98be-69f80042a66d.roa
File: c8d249fe-db90-47bb-98be-69f80042a66d.roa (raw, json)
Hash identifier: jmDD1jCwTzZzaALizyRcYsWpftE3iTPyzx7Vignq1g0=
Subject key identifier: 0C:D8:2C:6E:1E:0D:AB:BF:A8:EB:C5:65:14:6C:07:33:69:D6:8F:F5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6615382C5B27AACDB133EA5AF3EF2232AA4BE03F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c8d249fe-db90-47bb-98be-69f80042a66d.roa
Signing time: Fri 01 Dec 2023 00:00:00 +0000
ROA not before: Fri 01 Dec 2023 00:00:00 +0000
ROA not after: Fri 05 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:15:38:2c:5b:27:aa:cd:b1:33:ea:5a:f3:ef:22:32:aa:4b:e0:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 1 00:00:00 2023 GMT
Not After : Jan 5 23:59:59 2024 GMT
Subject: serialNumber=23202dcdbfd333625bb7dd333f5ca4e166f2ae8dd8f948d6aceafe4aa7bd7e81, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b1:ea:79:1e:7b:d6:11:0c:2c:bc:8f:09:2d:
0d:15:b9:44:d6:19:f4:6e:7f:08:67:d2:2a:ff:45:
29:36:ed:cf:48:4f:a9:ef:2b:0e:bb:3f:36:0b:f6:
58:5c:52:9a:bf:15:79:be:3c:8e:26:6a:63:d7:83:
63:44:64:73:f1:ab:c6:72:57:db:c3:d3:55:3e:e3:
ae:64:11:67:08:2a:8b:2d:13:03:9b:86:c9:e8:ba:
45:92:38:ac:63:8a:03:1c:4a:b2:07:9e:21:22:74:
0f:03:ff:c7:7f:86:e3:93:f0:ce:ff:2d:10:7e:86:
57:e5:f7:ad:51:c5:bc:76:84:6a:88:fc:17:62:19:
3f:e9:1c:9c:03:5d:ca:56:a0:4f:be:fa:60:76:cc:
cf:71:69:47:71:f0:1e:01:64:91:e4:a3:9c:23:f1:
89:60:b5:99:ce:b9:17:da:d5:08:2b:78:e5:8e:ca:
a6:39:38:b0:28:d1:c4:cb:91:49:33:6d:de:17:81:
a8:75:bd:46:df:7b:3d:1f:a1:72:89:0c:6a:b0:34:
cf:a5:8a:60:50:6c:8e:c5:61:78:20:04:bb:2f:53:
3c:8d:54:e3:d6:fc:4d:45:2d:0f:9f:24:ec:da:cf:
1b:62:e0:16:17:a1:e1:b2:b2:2a:46:d5:96:b4:b4:
52:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:D8:2C:6E:1E:0D:AB:BF:A8:EB:C5:65:14:6C:07:33:69:D6:8F:F5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c8d249fe-db90-47bb-98be-69f80042a66d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
23:a1:db:3a:2f:65:17:05:04:5f:3b:1d:c9:20:82:4d:57:68:
cc:29:94:ba:12:5c:5f:a6:53:11:67:f3:64:49:6f:8e:7c:ae:
5b:36:77:dd:54:da:02:4a:5a:4b:29:5a:db:37:4e:13:53:60:
57:41:7e:bb:5b:d1:ee:65:ad:75:19:8a:f9:f7:68:95:c1:0f:
87:37:8c:70:cd:26:7a:69:91:9f:4c:42:2b:5c:2b:f4:e3:28:
73:4e:53:49:0a:8c:6b:69:b9:a1:9e:d8:a2:29:c5:ac:7a:8e:
32:ab:cf:da:47:cf:4e:47:5e:d4:9e:d4:a8:54:3c:57:10:01:
b0:69:6f:b7:3e:ff:9e:1c:30:04:a9:78:f3:c0:6f:7e:81:98:
9d:64:c1:f3:cf:d5:2c:4f:29:eb:0f:82:da:62:b0:35:c6:e9:
53:70:a7:85:a3:f9:b5:ae:bd:27:b3:70:df:f6:33:c6:41:80:
f6:84:2d:a9:a4:2a:70:25:fd:94:cf:f3:f3:a2:4f:f0:71:c9:
01:3d:2d:e0:78:07:6c:48:8c:95:c7:9d:77:c2:e9:88:e6:98:
bf:39:f5:3e:1f:50:7c:22:fb:30:79:4d:10:61:4b:b0:54:fa:
11:cd:c6:d7:c0:ef:71:8e:6a:38:88:a5:80:41:59:b5:da:60:
c6:f4:a2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-ams.rpki-client.org