Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d9575bbf-0092-400e-9272-a1d1635b9e1f.roa
File: d9575bbf-0092-400e-9272-a1d1635b9e1f.roa (raw, json)
Hash identifier: KKGf5HkxTT5vnUqnwvH55kFkBy7o6TuMX4Xh1IDer40=
Subject key identifier: C5:CB:5E:E6:0E:C5:CC:DC:A3:09:A3:23:A4:B8:CE:CD:B5:1F:CA:B6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3D9DDD93BA15FA01C585D21BEEA0A673E7B420
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d9575bbf-0092-400e-9272-a1d1635b9e1f.roa
Signing time: Mon 30 Oct 2023 00:00:00 +0000
ROA not before: Mon 30 Oct 2023 00:00:00 +0000
ROA not after: Mon 04 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:9d:dd:93:ba:15:fa:01:c5:85:d2:1b:ee:a0:a6:73:e7:b4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 30 00:00:00 2023 GMT
Not After : Dec 4 23:59:59 2023 GMT
Subject: serialNumber=4b9261725ed8b0b66b5bc696c7a742f7abf9e6656484036d89d1ac5e47524f3d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ff:1c:27:f7:5a:c8:a8:ef:fd:59:af:84:97:
17:47:c8:30:3e:54:9f:ff:47:0c:71:e9:0c:ab:9c:
6a:c7:bd:15:27:8a:85:3b:91:b4:2d:9f:99:b3:7e:
0a:c8:05:49:bf:6e:21:ca:b8:8d:b9:ef:b2:22:88:
20:f3:46:f1:a2:e4:b8:a8:6e:54:29:8d:89:12:8c:
76:98:40:59:d1:80:0e:3e:02:96:9b:17:58:02:c2:
51:df:8e:ce:69:06:21:ab:de:ef:a9:27:9b:6f:5c:
29:11:78:80:3c:8e:e5:66:91:dc:e1:c3:9d:6c:bc:
33:3c:9c:2f:00:0a:c6:4e:f5:09:f6:b7:51:9e:4b:
da:6b:cf:d7:e8:62:2e:04:2e:5b:38:e4:8b:f0:e1:
03:9e:5c:4c:e8:8c:74:8c:47:76:29:3c:fe:1a:35:
24:fa:90:54:02:e5:b4:02:e5:6e:35:90:26:1d:35:
14:90:54:70:ef:2a:cf:ff:f0:a8:7b:75:d8:ef:a6:
20:02:4f:8f:d8:d1:72:6c:7b:ad:f1:12:6f:d5:5e:
a4:41:a3:f9:ec:f4:da:0d:cb:0a:e2:0f:c7:37:94:
2e:da:83:86:49:15:c1:f7:35:75:54:3a:41:46:50:
c1:92:07:4b:91:0d:4e:a0:90:94:52:ce:14:22:47:
c1:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CB:5E:E6:0E:C5:CC:DC:A3:09:A3:23:A4:B8:CE:CD:B5:1F:CA:B6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d9575bbf-0092-400e-9272-a1d1635b9e1f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
21:2d:fc:0f:07:dd:f7:bc:11:3c:3d:ce:50:83:82:3d:c1:a1:
1a:12:e5:ff:02:a1:0e:5f:3f:de:3a:e7:e4:42:b3:49:fc:ff:
e3:b2:b6:78:d1:bd:d0:ce:24:ba:5b:51:5c:23:6a:10:96:72:
d1:9f:c6:d7:d0:3c:b2:a0:00:0b:97:ad:ee:e0:cb:dd:d1:71:
9e:72:b2:ca:6d:d7:4b:5e:5e:5d:d9:0b:ef:a6:a1:ca:4f:05:
be:0b:80:a5:8f:51:0e:10:9c:94:79:53:01:65:4a:5e:d0:e7:
78:47:1b:14:43:d9:fe:4e:fc:78:bc:8e:43:b3:d9:e8:ab:07:
da:9e:d8:be:50:f9:e7:52:81:3f:00:87:7e:6a:3b:71:ff:61:
bc:a6:6d:2e:59:b3:f0:5b:d2:8a:31:9e:c4:ff:d0:6e:4e:a4:
fb:13:e2:3a:04:c8:de:9c:67:05:ef:9f:8e:57:2e:0b:e3:13:
37:8a:b8:4e:23:06:59:7b:df:76:6d:3a:b9:a9:74:d4:3c:8b:
27:cd:49:2c:5f:a9:0a:01:92:94:99:dc:3c:13:4e:d3:6c:83:
04:6d:dd:0a:c5:29:a8:c7:b9:a5:73:28:21:86:2d:8d:67:23:
2c:d7:8e:d9:1e:41:72:fa:a9:59:e4:a4:c9:67:70:bb:d1:25:
a7:8e:b0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:29 2024 by rpki-client on console-ams.rpki-client.org