Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e952c1d1-e5a7-47b9-99f7-bd72d649b106.roa
File: e952c1d1-e5a7-47b9-99f7-bd72d649b106.roa (raw, json)
Hash identifier: +jgJiwgu9TKJJsDHruwJhyrNkdH9VFjRS6CUu/J38pc=
Subject key identifier: C9:40:FF:AE:69:0E:C8:A8:5F:B8:C8:68:05:C2:C1:EF:E0:12:1B:45
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1B5D7C3FE7082556B58D10DE356EABF7F5D43F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e952c1d1-e5a7-47b9-99f7-bd72d649b106.roa
Signing time: Sat 26 Aug 2023 00:00:00 +0000
ROA not before: Sat 26 Aug 2023 00:00:00 +0000
ROA not after: Sat 30 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:5d:7c:3f:e7:08:25:56:b5:8d:10:de:35:6e:ab:f7:f5:d4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 26 00:00:00 2023 GMT
Not After : Sep 30 23:59:59 2023 GMT
Subject: serialNumber=fbeee0b442c93a4e743890ca77005adbb801fcb3231b2322eabca81b5bc5d247, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:02:02:c7:55:b3:0e:ea:38:97:75:c6:75:54:
f9:5a:ce:49:24:6e:16:24:70:d8:c2:d5:60:68:f7:
52:33:3b:53:70:f3:d8:c4:d3:94:40:c6:a6:36:c8:
5c:8d:99:c6:37:be:aa:94:15:3a:d1:43:7c:60:2b:
8d:b9:fe:d2:ac:d5:b6:0c:fd:33:62:7f:1f:21:cb:
56:94:bb:68:e2:85:2b:4a:8c:06:6e:6a:20:b3:d8:
3b:7f:7d:9b:4e:55:3b:70:9f:64:36:73:b5:35:75:
b1:06:fd:b5:20:61:5e:a4:a0:41:f0:a2:f2:58:ba:
76:e6:9a:d2:2e:4d:cd:05:ca:b4:cb:86:51:3a:21:
0a:6a:3c:84:a0:8a:09:9b:34:7f:e5:0b:8f:72:9c:
2e:fc:62:e5:66:90:bb:94:46:79:20:6c:94:14:4a:
7d:ad:6c:dd:0a:24:1a:14:dc:15:ca:19:64:54:12:
d4:c5:3c:8e:0d:7e:2f:b6:49:1d:15:76:70:0e:4b:
cf:eb:83:d3:dd:40:fe:b8:1a:77:24:32:02:20:12:
83:fe:38:97:2f:8d:97:a6:5d:7c:16:d1:44:47:15:
21:d1:d5:27:82:73:bb:3b:ea:40:3f:aa:6e:06:0a:
83:4d:56:4a:82:2d:30:2c:07:97:b4:4e:90:df:84:
cd:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:40:FF:AE:69:0E:C8:A8:5F:B8:C8:68:05:C2:C1:EF:E0:12:1B:45
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e952c1d1-e5a7-47b9-99f7-bd72d649b106.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
37:aa:b7:9c:41:fc:d5:d9:61:36:f2:2d:df:e0:48:65:d7:a8:
88:40:86:b7:30:b9:d8:42:bd:4c:05:5d:e6:e6:78:a2:5d:20:
7a:df:ad:b1:d8:1b:77:bf:59:cf:08:64:bf:71:7f:65:a1:34:
a6:63:4b:08:e7:3a:f7:20:96:e9:30:f8:f2:1a:77:d7:26:5c:
91:cc:7a:cf:51:c0:65:44:d9:33:cb:80:b4:b5:7b:b9:d9:e9:
fa:7e:2b:01:32:15:9f:70:3c:df:d0:20:cc:da:47:95:2f:f6:
d2:3a:fb:4c:03:ee:02:d4:3b:33:45:4c:14:86:99:ce:19:da:
e4:a3:ce:94:1d:fa:37:69:ce:ee:93:ff:05:bf:1a:6d:b6:27:
67:a7:bd:86:55:50:84:57:93:40:bf:55:1a:43:2f:69:08:c9:
49:cc:1c:4e:23:16:3e:64:65:d7:7b:21:c6:82:c5:c7:57:47:
5d:e9:1c:2c:81:56:20:0c:c2:82:6d:47:bd:79:82:8c:a2:83:
0b:84:45:a0:e6:38:b4:55:47:c8:5d:a1:8e:15:3a:bf:3d:1e:
8b:77:90:87:fc:1b:6b:02:97:a4:57:b9:4f:70:20:61:9e:34:
90:41:f7:69:2a:b2:bd:99:63:40:c7:2b:c8:d4:aa:68:47:9f:
63:9f:32:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:32 2024 by rpki-client on console-ams.rpki-client.org