Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ced76fbd-248f-4c16-906e-0b26a58f319f.roa
File: ced76fbd-248f-4c16-906e-0b26a58f319f.roa (raw, json)
Hash identifier: Wr6sUC2o1HdRtu9xxh0ldH15nUmHXMekZNhUfgZU9dA=
Subject key identifier: 53:88:12:69:5F:A3:7C:6A:7C:55:63:81:8B:9E:28:6C:34:DA:B7:B2
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 794B0FAF3D2CDF45325ACD32A1F3ED5635799FB1
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ced76fbd-248f-4c16-906e-0b26a58f319f.roa
Signing time: Tue 25 Jul 2023 00:00:00 +0000
ROA not before: Tue 25 Jul 2023 00:00:00 +0000
ROA not after: Tue 29 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:4b:0f:af:3d:2c:df:45:32:5a:cd:32:a1:f3:ed:56:35:79:9f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 25 00:00:00 2023 GMT
Not After : Aug 29 23:59:59 2023 GMT
Subject: serialNumber=bf1601339f1d0124d14c4b3a9210ef62d20255745c55cdb796006b2033a03e4e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1a:1d:1d:d7:2f:4b:17:1a:40:0e:d1:62:86:
5f:23:78:e8:e6:8e:b0:71:55:07:d7:2a:98:25:b4:
ee:8e:59:ad:21:3a:52:7a:37:e4:f0:63:c1:72:02:
6c:93:b5:57:3b:38:a0:a3:6c:d5:f1:ed:f8:ca:97:
ec:0e:6a:15:35:db:d7:e0:92:06:af:32:14:cd:1c:
25:e3:e0:1c:7a:15:38:5c:03:51:9c:bd:26:fc:3d:
5e:39:5e:61:df:88:72:c2:b7:67:3a:f6:7d:27:7a:
13:9e:6c:17:a7:96:14:2b:bc:db:97:d2:81:94:f5:
f2:d8:75:bd:16:fd:12:21:32:4e:40:97:bc:5a:65:
67:25:5e:60:e4:67:f4:83:cb:7c:2e:88:e0:58:32:
58:68:f0:69:5e:32:75:d0:25:0a:7a:d2:7e:ad:c1:
6d:51:58:aa:d9:19:ed:00:5d:ae:b7:c9:c6:b3:02:
c6:39:b7:15:f7:3d:22:1a:18:03:cd:87:45:2d:1a:
ff:e5:3c:82:84:61:11:77:7a:37:ed:cc:0c:f8:89:
c4:17:24:4b:2e:f2:75:7c:70:fd:77:60:91:38:33:
47:31:ae:51:b7:e8:cf:00:b0:a6:97:0d:c9:85:f0:
d6:74:60:94:a8:e9:82:91:cb:5b:83:77:43:00:ec:
2e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:88:12:69:5F:A3:7C:6A:7C:55:63:81:8B:9E:28:6C:34:DA:B7:B2
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ced76fbd-248f-4c16-906e-0b26a58f319f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c9:06:ae:d6:f8:5e:98:bc:a9:6d:1f:7f:44:a7:9c:bd:f4:
1d:40:8b:2d:b4:5f:60:bc:6b:87:e4:59:0b:7e:55:b9:cc:09:
72:38:b9:d3:4e:92:e7:39:b6:dc:b9:da:ab:ef:5a:d0:a2:d5:
8c:21:97:41:0b:94:57:64:86:ce:63:b9:53:cb:18:2e:e1:53:
c4:6d:b5:d9:a5:ef:60:1f:e2:fa:f7:49:43:ee:34:71:5a:12:
b0:5a:4a:b7:15:09:d3:18:c8:0d:65:ed:97:c4:dd:29:19:40:
14:a8:ff:2d:3d:bd:b2:50:01:0e:d9:f6:17:00:69:5e:f1:4a:
f0:d1:96:5a:57:c4:53:02:ca:3d:ec:d7:97:4d:c5:c4:05:50:
5e:09:42:8d:4b:5e:64:e1:6f:b3:e7:f2:e0:3f:c6:41:8b:6b:
81:67:23:c6:c4:cc:3f:6a:53:b6:3e:e7:0f:47:f0:73:29:48:
05:68:4f:f1:93:c2:19:e9:78:82:d9:47:62:e0:5a:83:77:e5:
20:16:93:7e:12:d6:bf:74:45:4d:7f:02:c3:be:aa:fa:7f:fb:
d7:ef:cd:0c:e1:ee:b7:9f:0a:d2:ea:c5:4a:ae:db:6e:aa:82:
41:ae:33:26:20:2b:c0:df:9f:31:aa:c6:af:23:fc:3b:be:86:
13:88:8b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:21 2024 by rpki-client on console-ams.rpki-client.org