Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7116a4a-e4d5-451e-b36d-3494ef34fc4c.roa
File: d7116a4a-e4d5-451e-b36d-3494ef34fc4c.roa (raw, json)
Hash identifier: G9u9ra4cMtxIKRHgKrD+IdFZXexaI4AdFCt8YMgyqEM=
Subject key identifier: 4B:5D:49:36:2A:DF:91:1E:65:DC:0C:2E:98:3C:79:90:85:ED:4E:82
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 67E43DAABD2E4C83947EA383628DD6CD13001981
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7116a4a-e4d5-451e-b36d-3494ef34fc4c.roa
Signing time: Mon 30 Oct 2023 00:00:00 +0000
ROA not before: Mon 30 Oct 2023 00:00:00 +0000
ROA not after: Mon 04 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:e4:3d:aa:bd:2e:4c:83:94:7e:a3:83:62:8d:d6:cd:13:00:19:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 30 00:00:00 2023 GMT
Not After : Dec 4 23:59:59 2023 GMT
Subject: serialNumber=d1c1b33e7f8053d352b1672e793eb1a19aea8bc68a18bf571d104efea448331d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f0:1d:ae:34:3c:59:53:3b:68:0b:b5:c9:83:
f6:f0:72:1a:f4:6b:fe:f6:da:6c:8b:d1:3f:41:07:
12:46:21:fc:64:44:83:03:97:62:ec:a1:6d:8e:ed:
6c:99:86:ee:68:c1:89:d2:c6:cc:96:fa:86:13:64:
49:fd:15:64:16:ef:f4:20:16:9a:62:52:60:99:6e:
72:92:91:24:ca:20:fb:10:2f:c7:db:05:e3:3a:bc:
8b:7a:e8:a0:d4:1c:ba:d4:2b:71:92:31:cc:c0:15:
97:90:17:6a:90:2d:ca:66:34:c6:8c:6f:db:92:35:
4e:7c:41:3c:22:57:10:48:ba:d7:7d:21:cb:ac:38:
68:c9:ee:ec:d1:5b:1a:ad:6b:28:63:d3:14:7d:8e:
6a:56:3f:60:53:38:88:54:de:61:5d:f0:2c:3a:4c:
13:f7:58:b6:bc:ad:ba:73:c5:47:09:93:e0:90:cc:
30:8a:95:65:67:61:a3:43:e1:f6:e1:45:ea:d7:42:
49:ab:e6:90:71:fd:1c:10:dc:2f:b5:50:4b:0c:50:
eb:5f:45:03:f7:db:0d:fc:d8:0c:49:a7:ac:b0:c8:
74:2f:58:38:af:d2:2d:76:05:be:e2:95:26:65:29:
89:f4:b8:69:6d:c7:1b:c5:b2:92:89:19:df:dc:63:
fc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5D:49:36:2A:DF:91:1E:65:DC:0C:2E:98:3C:79:90:85:ED:4E:82
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7116a4a-e4d5-451e-b36d-3494ef34fc4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
32:95:33:8d:0d:9c:13:f7:45:6e:d9:e4:ad:25:5c:a5:c4:27:
5a:6b:7a:c0:98:af:fa:03:2a:86:3d:24:dd:2c:d2:af:81:97:
3c:9d:37:18:e4:7f:02:b6:b7:c7:b7:56:0a:82:03:53:25:21:
63:84:58:12:8f:dc:aa:a2:61:86:b8:41:a6:b4:39:d0:9a:68:
7c:4a:e1:51:d5:fe:51:ed:38:1b:83:91:80:8b:fa:84:c2:0a:
74:9a:b9:2d:57:5c:0f:3a:a7:77:24:cc:6d:63:5c:04:b0:36:
27:00:30:96:6c:e6:40:f7:77:fd:9c:7a:a0:a7:cc:8a:3a:7b:
09:fa:1d:0b:5e:b9:c5:2b:49:6e:07:9b:30:6e:dc:9b:fc:4b:
e6:f6:75:72:42:82:b7:44:9a:3c:c4:0b:de:c9:31:98:08:dd:
ca:a1:2f:5f:ec:08:f8:97:6f:ce:26:55:34:80:df:98:13:d3:
8e:aa:13:46:ad:e9:5b:5b:c0:c4:7b:48:f6:be:56:a2:d4:25:
33:52:84:b4:60:43:38:1c:11:32:ef:6f:c7:10:d2:37:b6:64:
a6:dc:d6:8a:f2:99:78:9c:7a:5c:de:aa:5c:a1:59:89:81:41:
70:f5:4d:b4:c0:dc:30:0e:df:d9:8b:94:b7:1b:9c:0f:1f:20:
5a:19:25:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:29 2024 by rpki-client on console-ams.rpki-client.org