Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cbf7a7a2-c187-4f73-b285-dc61b004357f.roa
File: cbf7a7a2-c187-4f73-b285-dc61b004357f.roa (raw, json)
Hash identifier: RclkGRTulmwBBTLQwEVYWz5Q+P098PtzKp1B9fOrIpo=
Subject key identifier: 87:80:92:94:E3:35:ED:8D:96:26:C4:17:28:81:AF:88:41:65:43:CB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2443B8A5272DCB8396A048EDEFFE069C7E35103F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cbf7a7a2-c187-4f73-b285-dc61b004357f.roa
Signing time: Tue 02 Jan 2024 00:00:00 +0000
ROA not before: Tue 02 Jan 2024 00:00:00 +0000
ROA not after: Tue 06 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:43:b8:a5:27:2d:cb:83:96:a0:48:ed:ef:fe:06:9c:7e:35:10:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 2 00:00:00 2024 GMT
Not After : Feb 6 23:59:59 2024 GMT
Subject: serialNumber=c254624c1109531693af8fb2305a1245c4b36ece5ba702a49796cfcbe4ec9f1f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:ef:ff:a2:1e:1a:31:a7:89:77:3c:fa:59:
55:ca:6d:cf:e8:16:26:95:05:fd:1e:b9:7c:43:06:
b6:67:f7:1f:f3:6f:0a:f0:ed:6f:70:84:ee:ad:98:
fc:95:a5:9d:10:b7:0d:15:33:6b:cb:f2:02:2a:c8:
3e:9b:db:b5:5f:2d:40:a4:86:b7:be:7e:05:f4:3b:
45:c5:a1:05:63:ee:dd:33:5c:15:26:ed:0f:9a:81:
8a:72:ce:43:32:9a:0c:63:f2:b5:74:b4:07:89:40:
cb:2a:84:70:51:77:ce:40:92:69:17:51:18:cc:5f:
b0:a1:45:1f:d7:6e:f0:c0:d6:40:ac:48:09:0d:a4:
9f:aa:f8:4d:da:7c:b6:2a:2f:69:8e:d4:7e:67:6b:
ec:ed:c9:c2:e0:35:7b:d4:c7:92:14:98:d5:26:1b:
b7:83:cd:15:94:2e:b2:d7:80:20:dd:1b:a5:82:89:
97:1f:df:78:34:dc:76:84:d8:b0:d4:e5:ac:bd:c4:
06:fc:78:e4:88:2c:e8:09:33:ca:44:8e:1f:6b:0a:
80:f1:e6:7d:ee:d2:b2:8c:c3:8f:0c:00:d6:52:f9:
ce:d0:6e:e2:67:5c:a6:cd:80:e8:e1:e2:ec:69:a4:
b6:8e:5b:92:6f:18:df:eb:8f:9b:49:56:77:e7:b3:
79:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:80:92:94:E3:35:ED:8D:96:26:C4:17:28:81:AF:88:41:65:43:CB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cbf7a7a2-c187-4f73-b285-dc61b004357f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:16:bb:9a:f3:df:08:37:43:1e:01:9b:56:b2:b3:27:13:67:
0c:de:db:39:08:a6:b7:ec:cf:2e:71:03:5b:13:33:aa:bf:85:
d4:d1:56:de:d4:72:c4:e3:20:4d:aa:23:5d:7e:32:72:35:e2:
5f:61:0c:b7:bd:19:81:66:57:00:93:5e:f9:f9:7e:7a:5f:06:
e5:8a:4e:cf:b7:a3:32:91:3d:eb:95:ee:62:12:61:98:49:17:
13:a0:8d:e5:c1:69:7d:79:2b:24:36:83:37:96:6c:c5:cd:2c:
01:a1:53:33:36:ee:f4:40:9e:dd:5d:eb:24:c2:17:96:6e:a2:
aa:09:fd:d4:26:be:f8:e8:6c:75:5e:41:a6:30:68:e4:59:60:
32:f6:63:20:9e:d9:cc:51:50:82:96:16:8b:df:a2:0c:b1:d5:
84:e9:b6:41:18:30:2a:9f:d1:c6:d9:a9:56:fd:a4:42:24:36:
ea:42:28:32:07:07:f1:52:f2:be:12:49:d8:82:e0:72:40:99:
d8:4e:ff:0d:1c:bb:78:d2:4e:6d:34:52:bd:c4:56:93:58:52:
49:ff:99:dc:8a:7f:25:6a:ba:fa:f7:37:a4:89:c9:60:8f:05:
89:7d:f4:5d:9c:51:1f:b5:6b:dc:c1:d7:c2:2f:a4:c8:75:8d:
f1:dc:f5:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:20 2024 by rpki-client on console-ams.rpki-client.org