Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e732285b-89dd-4301-93e5-e7fd544693ac.roa
File: e732285b-89dd-4301-93e5-e7fd544693ac.roa (raw, json)
Hash identifier: S0MiOn1hfFzGrUnSTB7YJkfgeg9GH2kobAKg0m5SVBQ=
Subject key identifier: F5:C8:1E:37:ED:3F:25:6C:F2:B8:B5:49:61:82:D0:A6:50:A3:62:F7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 05F4E90553B3B4C306C6986DA79D88314BC8FD46
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e732285b-89dd-4301-93e5-e7fd544693ac.roa
Signing time: Tue 12 Sep 2023 00:00:00 +0000
ROA not before: Tue 12 Sep 2023 00:00:00 +0000
ROA not after: Tue 17 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:f4:e9:05:53:b3:b4:c3:06:c6:98:6d:a7:9d:88:31:4b:c8:fd:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 12 00:00:00 2023 GMT
Not After : Oct 17 23:59:59 2023 GMT
Subject: serialNumber=2ed4153924e65cde8178cea27adda3901affdeee20d45074454909bcdd05d607, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:42:d6:30:96:f4:33:c0:54:01:93:98:ba:20:
ad:e5:40:d7:14:db:97:6f:bc:c7:a4:e6:3a:dd:65:
fd:da:13:28:df:d8:31:ea:24:41:ac:24:5b:b5:76:
ae:18:73:ac:41:50:ed:f9:ca:94:19:2f:e9:4c:65:
63:cc:a6:d3:de:d2:d5:c8:e7:fe:af:f7:ad:70:36:
0f:7e:ad:76:1d:1e:22:db:cb:eb:dd:e9:14:fc:26:
3a:2a:15:4e:4e:1d:68:46:f8:3e:7d:a5:02:14:1f:
b2:05:f5:8b:4a:df:9e:b5:06:d6:44:55:58:f5:ab:
1b:b5:a2:12:70:a2:94:6c:ae:c7:c3:84:99:5e:30:
a8:d5:f8:87:b5:c1:0e:1a:3b:52:39:87:a7:65:77:
73:f9:06:e7:47:c0:ca:ee:56:96:2c:55:7b:aa:ec:
a9:8a:dd:fb:bf:cd:64:a1:e4:5b:e0:61:e6:3e:31:
3b:c5:e8:9e:7b:52:2b:f4:ec:f0:fd:f7:e5:31:42:
e0:ef:13:3e:fd:34:b0:87:ba:e2:1f:30:19:b4:5c:
ed:95:0a:a0:d9:02:f9:82:78:76:fb:84:b2:a2:1a:
82:3e:40:d8:ac:f4:27:45:0f:90:67:91:c5:46:76:
c4:88:de:1d:7c:2f:1b:98:d2:a1:f0:e9:a4:42:f2:
8f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:C8:1E:37:ED:3F:25:6C:F2:B8:B5:49:61:82:D0:A6:50:A3:62:F7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e732285b-89dd-4301-93e5-e7fd544693ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
51:3f:1e:6f:fc:bb:f0:10:18:61:26:22:2f:ef:52:63:d7:b8:
a4:da:7f:1f:11:d5:4c:1b:90:16:7f:44:3c:ff:b1:29:f9:a8:
60:f7:42:f7:67:ea:da:35:92:b7:f3:8f:bc:a2:d0:7f:35:68:
ce:d8:7b:3a:a3:c9:c7:9e:87:d0:17:06:4e:56:37:76:30:c2:
54:e6:63:93:85:e4:3e:e1:bd:e3:c3:cc:ae:cb:5b:e8:4e:d0:
7c:c8:99:57:9e:53:99:2f:0b:49:6f:3c:56:0e:8d:06:a1:1e:
c0:38:a6:cf:d3:59:7a:e1:14:5e:ad:0d:41:b7:e2:d7:aa:98:
a5:77:4e:9b:1b:54:ce:4d:ef:24:77:f8:0e:d6:75:34:30:aa:
d9:24:30:ca:27:e3:56:b0:c4:55:1b:dd:d6:0e:9d:75:e2:ba:
46:81:d2:ee:84:b2:6d:01:e3:82:cb:35:c1:30:91:78:91:10:
09:51:bb:46:7d:c3:ad:ad:db:58:8c:9f:bc:ef:b1:fb:11:ed:
43:98:99:60:cb:24:bc:2f:eb:43:db:7a:d2:31:61:ce:b9:82:
69:70:45:ac:49:7c:c8:f0:bd:85:2b:d5:41:fc:07:2c:b3:b8:
b9:de:a1:15:63:71:52:65:a1:b4:22:f9:ac:21:0b:18:ae:09:
53:c5:ed:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:48 2024 by rpki-client on console-fra.rpki-client.org