Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eac41f41-0dae-4fcd-8492-09ff73afad74.roa
File: eac41f41-0dae-4fcd-8492-09ff73afad74.roa (raw, json)
Hash identifier: rq/rVGPoFJqjsK33MjBVOVkV4g3dzi7eAm1CVDYDLoo=
Subject key identifier: 61:AB:4C:0F:25:D6:89:32:32:53:69:E0:6D:3D:33:97:C0:61:42:A0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1BC4B548A514F5AC53346D9B0501AB7FE265DF74
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eac41f41-0dae-4fcd-8492-09ff73afad74.roa
Signing time: Mon 04 Dec 2023 00:00:00 +0000
ROA not before: Mon 04 Dec 2023 00:00:00 +0000
ROA not after: Mon 08 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:c4:b5:48:a5:14:f5:ac:53:34:6d:9b:05:01:ab:7f:e2:65:df:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 4 00:00:00 2023 GMT
Not After : Jan 8 23:59:59 2024 GMT
Subject: serialNumber=64e3535a489c83f8f4dd36250735872a56b7530db2feb9b2bb0b25b8b62199c0, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2f:5b:16:64:b9:61:d8:87:72:1a:94:3c:09:
a2:fe:f7:35:f6:15:d3:77:5f:50:48:8e:95:20:91:
ec:e0:6b:ae:19:e2:63:f2:36:05:cc:00:4d:aa:a5:
35:68:a9:8b:51:67:16:dd:61:23:9c:b1:e1:3d:3a:
86:76:67:9f:f5:f3:0f:60:35:99:b0:95:cd:70:eb:
c1:b7:d3:2d:9c:66:15:d3:6b:ac:f6:5a:d5:fc:e0:
c6:56:38:e6:3e:54:e2:14:1a:eb:61:83:2c:3b:05:
ae:21:21:25:3c:90:18:20:24:70:fa:3c:e0:af:b9:
a6:b2:4e:6d:53:de:e3:b6:f3:91:ab:2f:db:87:e6:
bf:93:af:d3:04:db:ff:6a:ef:ef:d9:4f:3f:8f:ba:
51:6e:99:0a:b8:8c:c0:d4:30:39:fa:fd:d6:7a:9f:
b0:9b:55:75:1a:b8:7c:4c:cd:78:5f:f7:8b:6e:5e:
24:d7:fd:01:b8:ea:1a:36:94:91:22:82:76:22:9e:
da:ae:19:32:41:6b:b0:77:4e:d4:c7:5e:ff:38:80:
e7:02:28:a6:a2:7c:f1:00:b1:ad:e3:a8:41:bd:77:
84:a6:8f:76:39:ea:44:64:1f:67:8f:15:86:d3:52:
26:67:83:f6:1a:15:04:7e:c5:8c:f7:96:e9:32:f6:
8f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AB:4C:0F:25:D6:89:32:32:53:69:E0:6D:3D:33:97:C0:61:42:A0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eac41f41-0dae-4fcd-8492-09ff73afad74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:56:fb:df:98:80:5d:31:01:8c:ac:56:a6:da:05:f4:f3:40:
a0:9e:aa:0c:9c:92:df:95:28:32:b6:c6:86:43:4c:93:49:d8:
4d:22:1b:e8:b5:ab:ea:11:83:e8:5a:98:4c:d7:a5:a6:ae:a9:
0d:38:cc:7d:fa:39:03:9f:0f:5c:08:58:a1:b6:43:9b:cd:96:
75:26:a9:7d:9e:9c:84:93:ba:cb:d0:dc:c8:49:fd:7d:ca:c7:
45:2e:bb:10:68:05:83:9e:61:05:b7:32:25:d5:61:0a:e8:e8:
e3:80:34:d7:47:c7:b7:d5:22:23:3f:44:96:a7:dd:ae:b6:01:
8e:4a:a0:6a:8f:da:49:3a:aa:55:9a:1e:7d:01:82:2b:9f:0e:
9d:15:53:11:4a:b2:41:7c:3a:ab:b7:9e:e8:16:17:4d:b2:e8:
82:96:a4:0e:ae:11:f6:62:67:c4:49:8c:f4:14:ed:8d:eb:d1:
03:01:3b:23:e0:9c:97:cb:61:44:b9:52:d6:45:fd:fe:e0:67:
cc:9f:8d:ae:c1:00:44:51:54:9c:ce:7d:30:3f:6b:72:8a:fb:
e6:ac:b6:e0:27:cf:65:bd:8f:eb:d2:5f:38:5e:c8:24:f8:2b:
41:52:88:14:1f:9a:dc:3a:e5:14:b3:93:00:9d:8d:80:f9:7d:
c9:16:58:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:48 2024 by rpki-client on console-fra.rpki-client.org