Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e1f1d3bc-7c70-468b-8aad-27a1c04c967c.roa
File: e1f1d3bc-7c70-468b-8aad-27a1c04c967c.roa (raw, json)
Hash identifier: x5josycaZnZDZr7TlB85IH9HZRQ+4Ct5+Bi+cgvuBMI=
Subject key identifier: 9A:44:AF:8B:30:C2:03:E8:9C:B1:22:EB:66:0D:F0:31:CE:9B:30:BF
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 43230C67E19ABBE038EF0B9DDC51C920625DBD19
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e1f1d3bc-7c70-468b-8aad-27a1c04c967c.roa
Signing time: Sat 13 Jan 2024 00:00:00 +0000
ROA not before: Sat 13 Jan 2024 00:00:00 +0000
ROA not after: Sat 17 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:23:0c:67:e1:9a:bb:e0:38:ef:0b:9d:dc:51:c9:20:62:5d:bd:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 13 00:00:00 2024 GMT
Not After : Feb 17 23:59:59 2024 GMT
Subject: serialNumber=70d656b651375d76d5466c6b2df3c7c32be4b4074381fd4637bc65c36be95f30, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5a:2c:cf:b3:ee:94:54:01:82:3f:ec:ae:81:
bf:d6:b2:8d:8f:ef:59:92:7a:e6:ee:c6:f6:c8:83:
4d:7d:5a:ee:2d:c2:93:5e:a5:02:aa:5f:74:18:66:
9d:9e:51:91:8a:66:45:cb:21:b9:96:da:23:37:54:
58:4e:67:aa:bb:9d:99:55:e8:be:da:97:db:fe:db:
57:51:7d:d6:6c:61:25:1f:c6:64:30:ad:41:58:33:
14:bf:dd:c6:93:94:c5:d2:cf:2a:eb:56:e2:26:af:
53:14:ae:34:a3:90:59:e5:a8:06:68:9e:5b:13:ef:
ec:b1:01:a2:09:a0:55:3d:e9:3e:63:6e:e2:49:93:
b6:ea:17:13:0d:b2:48:c7:ec:3e:19:8e:2c:57:38:
cb:79:46:ad:07:ea:c3:a6:40:a8:18:e4:02:35:23:
3d:50:e3:55:58:17:f7:2c:31:07:ce:9a:ed:f3:4c:
96:de:44:67:fc:4a:12:3d:cb:de:3a:64:7d:8e:51:
72:87:f2:90:c0:c7:1b:2d:81:a2:1a:18:89:25:a6:
18:36:9f:53:b5:f1:d5:4c:c6:0f:cd:14:42:c7:1e:
8a:ac:ca:96:0f:74:50:75:15:2f:bb:4a:1e:1a:c6:
27:79:46:a0:45:27:29:77:fa:52:58:bb:5e:6b:c7:
01:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:44:AF:8B:30:C2:03:E8:9C:B1:22:EB:66:0D:F0:31:CE:9B:30:BF
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e1f1d3bc-7c70-468b-8aad-27a1c04c967c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:82:93:a4:a9:3f:fb:e3:f8:8e:19:2b:8e:e3:26:bc:23:ef:
42:1c:f4:b5:f3:da:8d:c7:c7:2b:89:30:e5:b5:34:71:df:95:
ec:d9:02:7f:d0:8f:aa:b7:30:b8:70:d9:9f:b1:c9:5e:68:55:
df:c8:10:3b:94:e1:aa:2f:ed:12:68:0c:82:f6:11:68:7d:b4:
94:6e:d9:d7:89:0b:70:14:ef:67:69:18:85:1e:df:5c:e5:29:
a9:ed:fa:a4:f3:30:c2:50:8f:b1:e2:32:8f:e3:94:d1:e8:fd:
48:a7:a8:29:6a:e5:14:d5:93:11:5d:12:b2:c9:87:d7:44:b6:
40:3e:d0:50:b8:63:4a:30:5b:f2:3f:e0:f7:6d:b1:9a:87:47:
83:87:46:2e:b2:33:f2:30:d3:f4:2c:f2:92:06:45:f7:e5:f8:
d0:fc:a6:53:12:86:e1:d0:8a:3f:14:86:01:c8:69:b0:ed:76:
60:f1:e7:53:45:c6:66:ff:e9:e9:18:eb:5b:e8:ba:90:d9:8e:
cb:1d:a3:06:76:57:ae:79:17:5d:ce:7c:30:c9:61:d5:43:ac:
53:9f:ab:67:3f:35:6a:15:2d:ff:4d:33:69:65:19:b8:99:a4:
99:45:c7:21:6b:49:8c:c3:68:fa:de:52:f5:02:34:e8:e5:8d:
d8:fc:ce:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:31 2024 by rpki-client on console-ams.rpki-client.org