Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e43a4004-a6e7-4b54-8df9-dc7fc03d9153.roa
File: e43a4004-a6e7-4b54-8df9-dc7fc03d9153.roa (raw, json)
Hash identifier: sRZQIC1lj9HxSL+wFLP2w2fXJFKPf63rIc+pG0R/jjM=
Subject key identifier: A9:A1:39:9A:3F:23:C1:13:71:26:D8:80:33:E4:A0:25:8A:BC:6A:6A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6D29ECFCF95528E795F2E8B45AA3E6355A7447D3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e43a4004-a6e7-4b54-8df9-dc7fc03d9153.roa
Signing time: Sun 05 Nov 2023 00:00:00 +0000
ROA not before: Sun 05 Nov 2023 00:00:00 +0000
ROA not after: Sun 10 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:29:ec:fc:f9:55:28:e7:95:f2:e8:b4:5a:a3:e6:35:5a:74:47:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 5 00:00:00 2023 GMT
Not After : Dec 10 23:59:59 2023 GMT
Subject: serialNumber=1a4d4e7db4e4913d96d057d57b9e5c8029ffb5c1cac0f20b2eaba0762d65ddda, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ca:15:6b:b5:56:f1:0f:b9:bb:28:94:7a:9d:
d8:d4:f5:b2:92:53:eb:48:43:f5:12:56:8c:ca:73:
6d:7f:fa:9a:81:f4:9e:70:6e:e5:a1:39:0c:36:87:
a9:0e:85:61:95:2d:46:a8:c5:45:c6:d3:7f:5f:2b:
d2:e6:f8:85:83:69:9d:d5:83:40:f4:01:53:0b:cd:
65:e7:9d:6e:cc:4b:74:5e:3f:b4:20:fa:01:47:ee:
b0:0b:6f:ef:16:8e:7e:f1:87:a8:e5:4b:25:ac:53:
2a:28:d1:6a:5b:b7:ed:b2:76:f6:fe:6a:79:ad:ac:
1b:57:f8:66:0a:10:df:e0:c0:3a:f7:cc:cf:5a:cf:
b4:71:7c:c4:82:c7:d9:a8:5a:3b:47:d8:d3:58:2d:
a7:ee:c9:a6:81:ec:9e:70:df:04:05:dc:bc:ac:39:
dd:68:38:05:7c:fc:1b:f8:c6:d8:08:c9:2d:cd:ee:
36:8e:c8:74:b3:3d:a0:5d:f4:ef:fb:b7:ba:89:a8:
59:77:95:62:f9:6b:1e:82:d6:92:9c:12:7d:4a:9b:
49:98:38:bd:f4:18:a6:83:64:77:d4:97:22:49:6c:
f0:59:10:f0:2e:51:ea:63:a3:4a:ea:7c:b3:05:4d:
91:8c:43:8d:ae:bc:a8:bf:a6:32:d5:56:1b:84:1f:
ed:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A1:39:9A:3F:23:C1:13:71:26:D8:80:33:E4:A0:25:8A:BC:6A:6A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e43a4004-a6e7-4b54-8df9-dc7fc03d9153.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
77:75:ff:54:08:03:5f:4c:44:ea:3f:0a:96:21:55:4a:c3:c1:
d8:40:b2:eb:21:66:5c:f7:92:df:a0:f2:9f:34:bc:b9:33:8d:
69:b9:cb:44:af:ef:48:4b:07:b2:46:4e:e7:f9:f6:5a:dc:34:
1f:af:14:0d:e7:cf:23:20:fe:8a:bf:24:bc:ab:47:4c:66:7b:
a1:84:df:3a:a2:5c:07:57:73:a9:ec:fb:50:4d:93:ac:d4:ee:
fd:76:be:67:76:a8:f8:b3:84:09:1e:9c:45:dd:1a:86:13:60:
14:f1:00:f1:78:7f:09:19:c7:3b:a3:4e:53:88:69:fa:ec:fa:
72:6c:8b:2a:72:6a:3c:5d:3a:6d:69:50:54:3f:fc:cb:ec:9c:
20:5d:e8:89:87:fa:04:cf:9a:06:30:4d:8f:cd:5e:c5:27:ad:
b5:28:0b:03:2c:b6:c5:2f:0b:29:33:0c:b6:56:6e:4c:24:d2:
45:aa:d2:40:bc:ea:13:b7:ad:60:d4:05:45:a5:1f:0a:3c:db:
af:82:0c:09:57:5c:76:b2:7d:31:a5:52:43:ac:ee:56:2d:a2:
55:9b:80:0d:fc:7b:0f:de:40:73:8e:5f:97:93:86:d8:c8:7e:
32:11:4e:41:61:2c:f1:0a:d2:ff:72:20:84:27:55:4e:38:bf:
1e:e7:c5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:31 2024 by rpki-client on console-ams.rpki-client.org