Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e7f83487-bf4c-4901-ab15-8fe76b5b26c2.roa
File: e7f83487-bf4c-4901-ab15-8fe76b5b26c2.roa (raw, json)
Hash identifier: 4lOSgN3F3qMOSnyvM7gZecPP8Q+/BCvyjVbfNBVpSfk=
Subject key identifier: 8B:2F:3E:7B:DE:EC:34:A7:53:F7:0D:13:01:7E:90:A6:57:FE:2C:18
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4AD68EEA77BDF6368D147CB7DA96CC205AB8715F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e7f83487-bf4c-4901-ab15-8fe76b5b26c2.roa
Signing time: Fri 21 Jul 2023 00:00:00 +0000
ROA not before: Fri 21 Jul 2023 00:00:00 +0000
ROA not after: Fri 25 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:d6:8e:ea:77:bd:f6:36:8d:14:7c:b7:da:96:cc:20:5a:b8:71:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 21 00:00:00 2023 GMT
Not After : Aug 25 23:59:59 2023 GMT
Subject: serialNumber=765684c95008c16b07bd84391d6e038280e62392a2e42396c086791383bdba9c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:a2:e8:62:e9:60:f8:29:68:a3:c7:bd:b7:de:
ff:71:a2:b8:73:43:57:57:91:f4:d1:e2:40:85:4c:
ce:97:4c:27:ff:77:56:e2:e5:93:5a:06:5c:f4:bf:
60:59:71:42:95:86:56:22:10:a0:c6:47:b5:bc:53:
48:fe:b0:c2:00:13:a1:27:0d:3b:db:20:98:1b:1a:
53:83:53:04:55:33:1b:22:06:e9:79:05:70:52:37:
52:a6:e6:61:e4:e9:00:d8:25:f7:0c:bd:a4:c4:cd:
11:40:65:4c:58:39:8d:e8:5a:57:d4:88:05:e4:17:
92:e3:0d:26:fc:c4:59:82:a2:bb:38:09:ee:0c:2d:
5c:c4:03:cd:25:59:59:04:8c:26:bb:f6:41:9e:8e:
54:e3:bd:69:b0:c6:39:8d:04:ec:0b:bb:c0:81:f8:
41:29:b5:ae:a7:e8:5a:f1:c6:72:53:16:83:d9:60:
00:bd:9c:b2:b2:ac:40:ae:ee:ca:d8:56:54:72:33:
3d:8a:64:e6:a5:02:2f:42:bf:b0:be:95:7f:2e:bd:
01:b0:1b:54:7a:72:63:63:6f:09:ab:52:ea:db:65:
42:b9:06:a8:c4:02:de:d5:57:a5:a0:b2:46:c6:06:
de:9f:51:8f:d2:63:f3:9f:91:1e:49:f7:09:fb:73:
1f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:2F:3E:7B:DE:EC:34:A7:53:F7:0D:13:01:7E:90:A6:57:FE:2C:18
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e7f83487-bf4c-4901-ab15-8fe76b5b26c2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
84:ec:bb:2b:c1:76:1f:b2:94:c9:ef:5d:b9:39:56:8f:77:84:
23:c8:d8:46:9d:da:71:f0:34:e7:5c:8c:73:e5:87:7f:bc:50:
30:a2:d0:7d:e6:60:f2:33:3b:c8:9a:87:29:ae:0b:5d:35:4e:
18:03:ed:17:c8:a2:50:2f:e6:85:55:e7:56:4e:63:35:1b:5e:
c9:a1:9f:7b:0d:96:e2:dc:53:6c:e7:4b:13:80:47:c2:3c:8a:
1b:ba:2b:5d:18:89:d0:a8:d5:e8:d8:c8:2d:0e:33:24:52:51:
0f:ae:44:31:b1:b6:1b:0b:8b:a4:4c:9a:d0:51:70:66:77:38:
9b:e9:81:cc:e5:4e:1d:e6:8a:33:95:52:f3:9d:35:cb:c4:be:
ce:93:26:9c:9e:b6:a7:d7:73:ba:3d:64:05:b0:ff:dc:b7:1a:
06:8c:3e:8a:82:15:8b:41:a6:5b:19:fe:eb:1b:10:05:56:e6:
c3:a1:3f:cf:ba:d5:51:7a:ed:31:14:b4:f7:28:e9:aa:eb:9a:
4f:f1:a8:46:27:8c:0b:40:a9:9b:c0:53:85:0f:27:15:bc:29:
65:b5:96:a1:37:4c:fe:12:a4:35:cd:8f:b0:98:75:6c:80:eb:
e2:56:42:81:a4:94:73:5b:01:86:e8:83:27:5e:4c:3f:7c:58:
c7:ed:0b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:32 2024 by rpki-client on console-ams.rpki-client.org