Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d609d662-c36a-42c7-9363-0501028b9b6b.roa
File: d609d662-c36a-42c7-9363-0501028b9b6b.roa (raw, json)
Hash identifier: 9kWhgit4EwYrdXdWIVYc/R1x8eCBIMfOjVE+aV8hYCk=
Subject key identifier: 31:25:EF:F9:DD:54:C6:06:76:24:9A:80:AB:6A:E2:81:B9:18:0E:4C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5CF382E92E571D451B9C6618279DE077B991FD15
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d609d662-c36a-42c7-9363-0501028b9b6b.roa
Signing time: Sat 16 Sep 2023 00:00:00 +0000
ROA not before: Sat 16 Sep 2023 00:00:00 +0000
ROA not after: Sat 21 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:f3:82:e9:2e:57:1d:45:1b:9c:66:18:27:9d:e0:77:b9:91:fd:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 16 00:00:00 2023 GMT
Not After : Oct 21 23:59:59 2023 GMT
Subject: serialNumber=023cab6edc896d3437c6aa197b44ffc823a27ce3a69785a53644d445e8b6e174, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1d:bc:77:f6:0c:f6:e6:00:52:3a:e4:f0:86:
5b:ba:04:df:a3:6b:de:d4:de:f1:76:7f:b6:17:e1:
c6:40:0c:ac:66:5e:2b:59:df:7c:5c:c8:43:f0:fa:
00:0f:ae:f9:23:cd:04:59:86:4c:22:63:64:01:73:
1d:df:5d:d7:aa:5f:5c:8e:61:8f:0c:d2:f2:ec:51:
54:f1:93:d2:01:28:df:34:2d:a6:69:65:15:33:bd:
51:9b:76:72:83:40:63:ab:b1:78:60:f5:88:9c:4e:
dc:01:00:48:5a:b8:0e:9e:19:98:59:c5:5c:40:6a:
0f:3c:ed:a4:70:10:aa:5c:79:ce:90:92:d0:a1:fb:
26:ad:b1:e6:50:22:e1:b8:44:99:09:c6:09:38:a6:
31:e5:5a:5b:c0:19:e5:64:b3:17:2c:52:6c:e2:83:
89:25:f3:b5:98:f9:08:83:d6:6e:84:83:2b:f6:b4:
bc:34:0c:a2:8c:c2:59:60:9c:3e:b8:59:9f:9e:6c:
2b:87:a4:88:1b:67:d2:57:40:71:90:cf:dc:f1:15:
39:d9:ef:ec:1b:30:7f:40:d9:2d:7e:a9:d1:09:92:
5a:7e:45:ed:87:fa:8f:d9:2c:00:b1:30:e8:ca:0f:
0e:8b:21:e9:bd:b4:2a:b1:68:47:03:1b:06:33:f9:
56:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:25:EF:F9:DD:54:C6:06:76:24:9A:80:AB:6A:E2:81:B9:18:0E:4C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d609d662-c36a-42c7-9363-0501028b9b6b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
36:7c:6d:45:8e:eb:b7:87:12:e5:4b:78:3d:4d:50:9b:20:a6:
dd:fa:a3:65:7f:b1:34:46:78:29:27:19:e8:88:c1:8b:95:f1:
d2:e0:0f:49:a4:df:00:e6:b4:fe:67:de:06:db:ea:01:04:09:
7c:89:67:1d:32:3f:e6:c2:60:c3:cc:ad:aa:99:14:5d:e4:67:
aa:62:d9:87:83:e9:a6:9b:b3:3c:66:e5:a9:cb:63:05:0c:b5:
53:0c:1a:6d:77:82:a5:7f:20:04:84:c2:00:7b:45:0e:64:db:
bf:f4:66:ca:e2:43:35:ce:bc:ff:50:a8:53:6c:d1:c0:18:a1:
9c:4f:b8:16:75:9d:4b:1f:bc:bf:d2:06:ce:9f:31:20:9d:5f:
0f:e3:8d:7d:34:79:90:7c:14:a2:44:49:d1:d2:7e:38:d2:90:
fb:5f:64:5d:41:c5:b7:e7:5b:be:41:5b:87:4a:cc:e6:54:61:
3a:7f:30:8c:82:80:38:77:82:34:63:ae:9e:1f:70:7d:95:df:
ad:62:70:4b:8b:95:50:0d:e6:c3:5b:19:0b:a4:3f:52:83:0a:
d2:16:f8:c4:02:0e:2a:d2:bb:a3:29:7e:2c:21:dc:8e:05:5b:
04:8c:45:52:86:de:67:af:36:dc:d7:94:10:20:3d:e6:f8:67:
f5:61:70:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:29 2024 by rpki-client on console-ams.rpki-client.org