Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d5c0b424-1bc6-48db-8339-343106a78a81.roa
File: d5c0b424-1bc6-48db-8339-343106a78a81.roa (raw, json)
Hash identifier: l2DFy2+wYYIrqbKqYWEinSbBjFNA6jqZiUVe0BHqhQI=
Subject key identifier: 23:D3:7C:DF:C9:FE:2C:2F:6A:D0:B4:C8:10:C8:1D:3A:56:39:26:F6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 67AF5A516689CD4416DE2730CF8711752BF10091
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d5c0b424-1bc6-48db-8339-343106a78a81.roa
Signing time: Mon 16 Oct 2023 00:00:00 +0000
ROA not before: Mon 16 Oct 2023 00:00:00 +0000
ROA not after: Mon 20 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:af:5a:51:66:89:cd:44:16:de:27:30:cf:87:11:75:2b:f1:00:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 16 00:00:00 2023 GMT
Not After : Nov 20 23:59:59 2023 GMT
Subject: serialNumber=510a8a2578ad2046241253d5adeec054bd08c76689d7755332c79dfbb64241e9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:90:03:28:f9:ed:b3:22:49:73:3e:c3:fd:9c:
ab:aa:fc:31:80:64:b4:cf:a6:0c:80:ba:59:1a:ee:
01:8d:0e:46:76:3a:64:3f:14:5c:88:80:87:e4:9c:
b6:4c:9f:9d:1e:a5:dd:6c:58:6d:6d:eb:de:22:8a:
1a:1c:40:f8:bb:b4:88:39:4f:ef:45:5f:84:79:7c:
76:54:cf:b8:10:82:4e:14:b3:d9:58:b0:a4:51:9b:
29:b8:75:bc:c5:a0:2f:d4:b5:83:bb:8b:b8:62:fd:
20:a6:61:a7:1b:30:a0:c4:bf:3d:b6:79:42:82:30:
8f:94:74:fd:bb:aa:44:22:16:dd:9c:4a:0f:29:fa:
f4:6c:b6:e7:5b:8c:e5:57:63:11:f9:50:d9:46:5f:
81:0c:58:ab:de:9f:c7:81:85:96:27:43:43:7f:f5:
06:fd:dd:d5:55:8c:38:7b:c6:00:ec:f5:b3:ba:c2:
ff:f3:f5:6a:be:5f:d6:51:12:f4:c9:bd:d7:f2:e9:
73:4a:13:2b:7d:a3:20:d1:de:3e:3a:b4:37:3b:4e:
fb:38:ca:3d:f4:0a:92:cd:71:e7:0e:1f:c0:db:c2:
87:22:94:8d:42:34:0d:4e:ae:5f:62:7c:21:1c:15:
b4:2d:be:41:58:77:c0:0a:04:43:81:c2:82:d2:d2:
c9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D3:7C:DF:C9:FE:2C:2F:6A:D0:B4:C8:10:C8:1D:3A:56:39:26:F6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d5c0b424-1bc6-48db-8339-343106a78a81.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:b2:ff:93:1d:dd:60:ed:a4:9d:bb:64:2f:41:1e:3b:f5:ac:
d6:be:77:10:b8:d3:7b:bc:23:7e:9a:25:08:1c:93:d8:c5:c2:
2e:60:61:2c:43:83:6d:b2:6a:e7:b8:d7:7f:d4:59:49:87:60:
86:c7:f9:34:cd:d8:03:c1:51:30:19:40:47:8a:0c:48:fe:22:
7b:9c:53:ea:0a:e9:04:34:77:cb:8d:68:ef:cc:47:73:a6:39:
b8:d0:93:f0:74:7b:ca:7b:33:15:bc:3f:d6:6b:7f:e0:13:37:
9a:82:9f:b9:89:31:c0:53:ee:a7:3f:12:5d:87:0c:2c:f9:98:
a9:03:c1:ac:87:55:e1:5a:86:4d:9a:23:a6:ca:f9:7a:dc:3a:
a6:f9:d5:b4:04:a8:ff:3c:30:26:83:84:4f:f6:8a:6d:c8:d0:
91:1c:05:a5:b6:b4:86:3f:c0:42:ae:62:92:d0:8e:c1:00:db:
6a:a1:db:08:36:65:43:3f:55:0d:f8:c2:7f:80:15:1f:8a:62:
21:b8:63:5f:8d:21:cf:7f:71:80:4a:a1:3b:99:8e:a0:6d:f7:
af:43:dd:42:97:c7:9b:e6:5e:a5:dd:e1:19:56:d9:20:ed:26:
95:c2:30:6a:e8:ac:da:c2:45:4b:7f:7f:ab:77:81:dd:e3:41:
71:8e:1e:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:28 2024 by rpki-client on console-ams.rpki-client.org