Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dc82601b-dd49-48a4-88b3-7ff5fbc20c90.roa
File: dc82601b-dd49-48a4-88b3-7ff5fbc20c90.roa (raw, json)
Hash identifier: 689V7VvqXKbt71277owstEVszkhdlUwcT5UtwJi3a84=
Subject key identifier: 95:02:C9:5B:78:05:9C:56:DA:CC:56:AA:F4:3D:89:E9:00:75:6C:EF
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 33A35B9DD0156045A231E31B4232F2F27CB984E6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dc82601b-dd49-48a4-88b3-7ff5fbc20c90.roa
Signing time: Mon 27 Nov 2023 00:00:00 +0000
ROA not before: Mon 27 Nov 2023 00:00:00 +0000
ROA not after: Mon 01 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:a3:5b:9d:d0:15:60:45:a2:31:e3:1b:42:32:f2:f2:7c:b9:84:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 27 00:00:00 2023 GMT
Not After : Jan 1 23:59:59 2024 GMT
Subject: serialNumber=53caa1b7feb42617a5a6528c6dd9ecefd1f6e5445c8c22f87cb6165599f80a56, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5b:71:5b:a2:2c:9d:a6:79:71:3b:70:1f:b5:
92:e3:56:41:cd:5b:00:54:4d:5c:80:85:89:ce:7a:
15:cd:34:88:a1:17:bb:e3:4e:da:d3:f8:2d:ee:07:
0d:86:2d:a8:81:21:d7:16:e6:7b:69:53:ef:41:5f:
2c:a6:19:03:82:50:0c:6a:cd:fb:3e:74:fd:b9:e3:
14:83:b3:61:61:f0:8c:5d:22:c8:84:79:91:52:5a:
6d:a7:72:e5:73:84:7a:b6:16:7c:5a:bd:4a:fd:c6:
c6:21:76:dd:de:b9:f0:74:a9:7d:41:83:9e:f2:68:
2c:32:2b:a0:09:f8:0b:86:81:aa:21:e0:99:fe:ff:
fd:36:8e:1a:99:0d:e9:f5:1a:e4:eb:1e:27:36:7d:
1e:fb:f2:c0:63:7b:bc:5c:55:20:ef:ab:7b:fa:10:
fe:c2:5e:3d:ca:75:08:0b:5c:00:8b:9a:a0:4f:0d:
8c:fa:a2:5d:e3:ea:d5:d0:c5:59:e3:2d:50:ac:1e:
62:d5:5e:4d:e1:6c:d5:18:81:fa:e6:f6:70:6c:4e:
6a:60:c9:84:77:3f:1f:b1:4e:06:80:87:c1:8a:d1:
94:e5:3b:4c:cb:e0:cc:c3:47:51:46:b3:39:b6:71:
ef:a1:c8:d2:49:98:b4:4a:45:ba:bd:33:65:1a:3b:
a8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:02:C9:5B:78:05:9C:56:DA:CC:56:AA:F4:3D:89:E9:00:75:6C:EF
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dc82601b-dd49-48a4-88b3-7ff5fbc20c90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
11:66:51:c6:11:67:a1:39:88:72:63:7b:c8:4d:20:aa:38:ed:
f5:bd:75:9c:28:9b:00:ef:6f:e0:ac:03:88:f0:e8:c1:19:ce:
87:44:ba:b1:0e:30:54:ef:ce:d9:d6:d5:5d:86:88:fc:3c:2d:
84:b6:d1:0b:9a:b3:d4:1c:63:86:e3:19:1d:b7:55:1e:fa:18:
34:51:f7:0a:36:cd:8c:eb:93:b8:fc:ab:18:39:e6:b0:fe:d6:
86:2b:7b:d0:ff:b9:96:ad:50:4a:e0:a0:b7:dc:1a:dd:2c:c5:
8f:67:9b:85:fe:7c:25:6e:c0:9b:8b:12:f5:3d:ef:4a:51:01:
6f:05:fd:5e:3b:2c:21:25:64:88:29:95:3b:2b:37:57:47:e0:
3a:b5:44:22:91:72:35:e5:d3:3f:54:2e:6f:dc:c0:01:c0:c2:
fc:f3:45:e0:c3:de:e2:d7:88:18:05:d4:42:95:2c:bc:2f:31:
55:d9:f4:b0:36:2c:a4:99:74:c1:17:7b:dd:ed:88:af:9e:aa:
7f:4b:9b:57:af:59:41:48:bc:a4:34:9f:ef:ea:31:ed:6a:21:
dd:2f:e4:4f:37:d6:26:fc:a9:55:0a:9a:23:03:ee:dd:1f:70:
91:1c:fc:79:2c:79:ed:d7:b2:8b:7b:4c:5e:fd:9c:e2:06:9c:
e0:06:82:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:30 2024 by rpki-client on console-ams.rpki-client.org