Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f1f2e10f-6517-4463-9afd-eb99298d7ee3.roa
File: f1f2e10f-6517-4463-9afd-eb99298d7ee3.roa (raw, json)
Hash identifier: +cX7cTU8WIJGjTvIhoiBNWhwmFJPMTJbjAkyoBeTH30=
Subject key identifier: 4E:9F:8B:E8:50:7A:AF:57:C7:36:3D:EF:4D:94:88:94:20:3B:26:B8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 28A89D9DA6FAB4FD140E31AC974BB2D1BEAB1236
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f1f2e10f-6517-4463-9afd-eb99298d7ee3.roa
Signing time: Wed 30 Aug 2023 00:00:00 +0000
ROA not before: Wed 30 Aug 2023 00:00:00 +0000
ROA not after: Wed 04 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:a8:9d:9d:a6:fa:b4:fd:14:0e:31:ac:97:4b:b2:d1:be:ab:12:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 30 00:00:00 2023 GMT
Not After : Oct 4 23:59:59 2023 GMT
Subject: serialNumber=ee18150bc80914c36abee5af4a87b7308554213b00dc72392e9e2c2785a042c6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ab:ca:ab:0c:d7:0d:d9:4b:c2:42:3b:59:85:
53:e4:3f:91:bf:69:7b:57:76:9c:06:be:2d:09:81:
8b:7f:ad:d6:95:c8:50:b0:ef:33:e9:87:90:79:c2:
fa:d2:a9:7c:f4:97:bf:4f:26:bb:70:61:42:36:c7:
54:84:c2:cf:db:71:fb:d3:af:63:9f:25:c0:78:81:
89:dd:e8:4c:18:c2:7b:e2:fa:b5:0e:3f:3e:1c:2b:
4f:c7:65:6c:ce:29:e1:e9:1e:96:f9:71:95:0a:fd:
ce:b9:4d:3e:76:12:eb:9e:a3:38:e8:b6:d7:ec:0e:
86:9a:b0:07:45:e6:e2:dd:c5:a1:31:ea:30:f5:ca:
4c:29:21:98:6c:85:d1:8f:1d:6c:61:97:0a:43:ce:
c2:8b:79:ee:88:24:da:0e:c5:3f:15:ff:d4:54:7c:
98:40:fd:bf:92:32:7c:bb:26:af:2c:a1:dc:7e:60:
6f:dc:94:4e:73:68:9b:ca:b0:b6:b3:bb:f9:48:01:
6a:3c:e0:9d:68:09:cb:4b:c8:2d:23:31:d0:04:1c:
33:c4:62:79:a7:32:0e:6a:76:5c:74:a8:f9:28:d2:
59:f2:01:da:3f:20:3a:9a:b9:55:f4:10:a9:04:2f:
c8:12:26:b5:ed:9e:d4:d7:49:71:1a:fe:23:24:ce:
6d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9F:8B:E8:50:7A:AF:57:C7:36:3D:EF:4D:94:88:94:20:3B:26:B8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f1f2e10f-6517-4463-9afd-eb99298d7ee3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
00:c7:96:4b:3d:b6:bd:2f:0f:e5:24:b8:db:a4:41:ce:42:f0:
9e:77:3e:8b:c6:bc:ad:ce:38:62:f0:0f:f4:ed:28:bb:89:25:
10:38:1b:bb:82:73:33:7a:3d:2f:ad:02:65:ee:1f:0c:a5:d9:
42:a8:69:3c:19:d8:b1:15:a2:de:dc:36:48:82:b3:0a:4b:87:
ac:64:46:36:d9:89:61:0b:6e:73:15:80:5f:7d:f5:f8:3e:a7:
9e:df:38:0f:bf:0c:e0:e0:d0:3f:89:ab:bc:a0:0d:9d:42:eb:
b1:dd:77:d7:22:20:e4:b6:f6:c5:b7:53:56:db:b3:fd:c0:06:
37:48:59:9b:0f:7e:be:7b:67:33:f0:36:85:3b:4b:ea:74:36:
60:ee:68:7d:15:bb:32:4b:ad:3f:45:a7:fc:7f:8a:0e:c6:96:
80:34:93:a3:93:9c:48:84:18:05:bf:09:28:d5:3a:59:2d:07:
bf:3a:cc:84:f2:e4:d2:0e:13:0e:97:2c:bc:41:32:5e:7b:99:
d0:2f:54:74:ce:82:bf:a0:a9:22:54:11:37:6b:7d:25:3d:fa:
39:3e:d5:6e:a8:65:b3:13:d9:af:16:e1:57:cc:4d:6c:da:b7:
49:0b:5b:22:48:c1:8e:d3:8c:fc:0d:ea:35:03:20:64:f5:11:
8d:7a:2a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:35 2024 by rpki-client on console-ams.rpki-client.org