Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d2b14c1b-8e2a-4629-a94d-0a48129d005b.roa
File: d2b14c1b-8e2a-4629-a94d-0a48129d005b.roa (raw, json)
Hash identifier: KcgghviKANKO5bQtGg8E6Rs/6+aiVItnBsrSPZcrJxE=
Subject key identifier: A8:0C:E2:67:9B:AF:13:48:20:70:F5:45:DC:F7:54:89:BD:E6:A2:15
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 148A10E60EB559693586C83640C0A286BFE76E12
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d2b14c1b-8e2a-4629-a94d-0a48129d005b.roa
Signing time: Thu 31 Aug 2023 00:00:00 +0000
ROA not before: Thu 31 Aug 2023 00:00:00 +0000
ROA not after: Thu 05 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:8a:10:e6:0e:b5:59:69:35:86:c8:36:40:c0:a2:86:bf:e7:6e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 31 00:00:00 2023 GMT
Not After : Oct 5 23:59:59 2023 GMT
Subject: serialNumber=02c4a7ee5259ff8ee38887d4fca61bd3cade86cc77a3164cbca5894fbfd3020b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:55:02:ae:e0:cf:2d:ec:84:53:f2:f5:b4:e0:
da:9c:b3:42:d8:a1:ee:3f:b0:8a:6c:ff:23:10:f3:
d2:31:cf:26:ce:66:1b:1d:b0:bd:15:d3:bb:34:0e:
ba:0f:7e:d7:43:59:7e:f4:16:36:81:d8:9a:93:88:
d5:01:f0:16:43:be:67:49:a0:86:75:e1:d1:62:a2:
3b:29:02:cc:1a:84:68:5a:e0:0f:44:f8:67:ee:8c:
ca:97:b2:33:af:d3:28:a4:9d:74:ba:03:49:17:ee:
f6:17:37:89:26:8c:6b:58:b6:7a:f0:7f:66:67:9e:
17:cf:27:38:35:a1:18:4e:fe:89:6a:ae:7f:a0:cc:
b3:07:db:d0:d9:df:a9:ea:ef:ff:f0:f1:ad:4f:a4:
57:55:7f:4a:34:51:c4:af:60:d6:c9:5b:17:5f:29:
fe:34:12:2e:c0:2a:2c:c9:9a:40:ac:55:28:00:73:
88:61:4f:8a:2c:38:9d:a1:40:86:7b:25:e2:6a:74:
ef:5a:1e:b3:3e:57:7e:10:59:e6:d4:b7:4e:b7:78:
ca:b4:09:a4:af:93:59:b8:0b:c1:25:3f:f9:c9:47:
ba:ce:81:62:e2:3e:ae:b5:5d:17:de:71:72:4a:0c:
46:6b:17:e7:83:66:1b:36:82:64:a1:d7:89:51:f3:
74:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0C:E2:67:9B:AF:13:48:20:70:F5:45:DC:F7:54:89:BD:E6:A2:15
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d2b14c1b-8e2a-4629-a94d-0a48129d005b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:2f:85:dc:df:82:f3:1e:28:bc:bb:5a:f8:e4:ed:ba:be:08:
b3:45:03:e5:02:27:59:b9:1f:33:64:95:68:00:8c:ae:9c:29:
de:ca:70:b3:9e:a1:44:d6:cd:96:43:87:e2:a5:9c:9f:3e:59:
9e:71:13:cf:24:64:50:d7:56:b9:27:cf:5c:02:97:74:d3:c2:
33:fc:bc:7c:c4:22:e2:e5:89:8b:a8:ab:09:3c:59:46:78:8a:
db:92:04:20:8d:1e:fe:b5:7f:ba:e3:93:c6:0b:1c:cf:d1:f3:
a5:f1:fb:c9:1e:92:f2:dd:57:36:94:45:f8:2d:18:57:61:6c:
2b:9b:c2:5b:ce:f9:3c:a5:51:00:ba:0b:9f:ad:be:9c:c3:62:
e8:1e:e5:a1:25:1a:a0:c8:dd:7f:5a:7d:de:2d:3d:69:9f:8e:
11:b2:83:ff:d2:29:44:82:3f:8b:bb:70:07:6d:40:81:70:d4:
aa:ff:93:02:da:7f:bb:de:fc:54:87:ce:d3:b0:12:90:29:96:
d4:89:71:55:92:4e:7f:37:c9:33:c4:77:48:52:63:aa:c4:3d:
d8:90:47:58:47:b5:85:47:da:a7:87:b8:a4:b3:b1:ac:89:0d:
c4:07:73:72:3d:ac:08:ce:90:b2:5d:94:8f:24:96:d1:4c:cd:
56:c4:85:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:21 2024 by rpki-client on console-ams.rpki-client.org