Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cae5e083-3193-48d7-a069-44dd3ed94a87.roa
File: cae5e083-3193-48d7-a069-44dd3ed94a87.roa (raw, json)
Hash identifier: MjUFR2MZe8RaEhG6ET7BiXeaBHjVRJYjEqh9xxuNZRY=
Subject key identifier: 23:4A:48:B6:37:76:19:2F:C4:CD:A0:21:77:2C:87:AF:87:8F:BE:E5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 38CD9AC766AA146F382E3F0F602DA2ABDAE4B408
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cae5e083-3193-48d7-a069-44dd3ed94a87.roa
Signing time: Wed 27 Sep 2023 00:00:00 +0000
ROA not before: Wed 27 Sep 2023 00:00:00 +0000
ROA not after: Wed 01 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:cd:9a:c7:66:aa:14:6f:38:2e:3f:0f:60:2d:a2:ab:da:e4:b4:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 27 00:00:00 2023 GMT
Not After : Nov 1 23:59:59 2023 GMT
Subject: serialNumber=0b34d498f0a1e26ca37865035ce22a06a377942bbc4d109b4bbfb650a3ec45d7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:37:65:03:7a:cf:c9:c1:93:bc:f2:2b:9f:39:
99:d9:29:73:ac:c0:57:69:fb:3c:1f:33:30:b0:a0:
92:fc:00:81:6f:3d:e3:94:75:35:6c:01:8d:0e:36:
98:b2:db:92:3a:76:8f:69:bc:21:74:3f:c0:59:3d:
6a:6b:43:d5:5a:67:22:9e:1f:1b:3b:27:b2:62:ae:
c1:72:69:6d:32:8d:9e:93:e5:b0:5d:b9:5c:35:b1:
ac:d3:5c:3b:04:15:7e:80:7f:5c:6b:cd:05:cc:65:
9d:8c:c2:f6:47:6e:13:6a:8b:b3:5e:b2:52:a0:99:
99:42:0c:36:4a:6c:16:b6:ed:46:fa:59:3e:f8:13:
5c:61:16:45:9f:81:9a:41:45:31:50:cf:74:9e:f4:
43:0c:19:9b:a5:b1:c6:4e:04:e9:c3:64:8e:25:f1:
53:1d:55:df:91:50:78:71:1f:6c:44:a0:b2:5d:9c:
59:9c:d8:56:f1:91:0f:e9:62:e6:04:9d:14:f3:7f:
46:58:6d:1e:ea:93:e8:fb:fb:9b:4a:ee:f3:68:d2:
3a:d0:93:70:40:f9:b4:bb:ff:d3:8d:6d:c2:4f:c5:
7a:4d:89:5e:62:88:b2:82:e9:dd:34:b7:ec:92:ad:
65:e0:2d:f5:98:0f:cf:1a:aa:1a:cf:c5:66:73:10:
78:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4A:48:B6:37:76:19:2F:C4:CD:A0:21:77:2C:87:AF:87:8F:BE:E5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cae5e083-3193-48d7-a069-44dd3ed94a87.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:42:bd:d6:a9:f7:65:1c:ce:69:ff:7a:7e:b3:bc:af:59:46:
d6:47:18:1b:d9:25:7d:ae:98:65:ef:ce:59:51:ef:d9:3f:95:
62:cd:37:16:c6:c3:c5:c1:60:16:6e:d7:6f:a8:6a:b3:27:1d:
a8:c6:38:13:71:9f:18:c7:d1:c8:64:5e:25:75:72:88:41:5f:
f6:48:6a:2c:23:9e:89:ab:2d:1f:e2:93:ea:d5:95:f0:bf:33:
3f:b9:4a:2d:ad:c4:08:87:51:7b:c0:c6:3a:a5:6d:1d:0e:40:
c7:87:23:1a:7f:57:58:3b:f6:4d:05:16:5f:42:d5:23:f8:91:
81:11:56:db:e2:8a:80:b9:58:93:17:46:b6:f2:61:af:74:e3:
44:ab:08:ac:94:e5:0b:7b:97:8b:a3:32:2d:8b:93:79:4b:30:
df:0f:6a:b8:4c:1e:a0:a0:df:3e:9b:5b:42:a0:fa:4f:b8:02:
b2:ef:82:18:1c:c9:4c:81:bc:a4:04:f0:85:33:58:49:2e:d3:
0c:15:89:d9:a6:e3:24:b3:e6:1e:b0:8c:87:43:fc:57:02:ee:
a0:ec:09:c5:3f:17:f3:ca:92:42:21:c2:42:b2:f9:9d:85:cf:
e6:46:1f:ed:dc:f9:52:6b:15:c2:fe:67:ac:d6:9e:4a:77:2c:
fc:7a:23:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:20 2024 by rpki-client on console-ams.rpki-client.org