Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f3408e9a-2008-4ca5-833a-c786c6007c6a.roa
File: f3408e9a-2008-4ca5-833a-c786c6007c6a.roa (raw, json)
Hash identifier: 3MhU1GJNe0lXZom3hkrLF36FOUN7MKnGZXJxdCWsCY4=
Subject key identifier: 1E:EE:E8:D3:EF:E4:18:DF:C4:7D:C2:90:12:B4:7F:60:79:2D:37:77
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 66806077C494282928564DC7271E4CD94950784E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f3408e9a-2008-4ca5-833a-c786c6007c6a.roa
Signing time: Sat 05 Aug 2023 00:00:00 +0000
ROA not before: Sat 05 Aug 2023 00:00:00 +0000
ROA not after: Sat 09 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:80:60:77:c4:94:28:29:28:56:4d:c7:27:1e:4c:d9:49:50:78:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 5 00:00:00 2023 GMT
Not After : Sep 9 23:59:59 2023 GMT
Subject: serialNumber=b1362f82289ddf12c341945341a974ec0a1bbd8622d305077fb062695fc67d29, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:71:07:1f:3d:94:94:94:5d:5c:13:51:80:4f:
0c:5e:23:3e:1f:f3:1d:d0:ce:85:b9:a1:56:0b:bc:
9e:ae:b0:70:e2:2d:92:3d:8d:e2:39:0e:fb:00:33:
08:ba:84:aa:85:07:30:6c:fa:5c:cd:00:89:49:30:
4d:a6:f5:ba:0a:72:80:40:65:32:ac:e9:fb:8a:dd:
88:7b:58:7c:b8:a9:6e:15:48:3f:08:e0:70:ec:8a:
bd:9e:13:2c:43:e9:96:3d:af:82:06:96:89:55:ec:
bd:57:ee:0f:e6:80:05:76:64:bf:68:60:ce:53:e8:
1e:f8:28:35:f7:3d:84:6f:ba:7c:27:0c:c4:80:b0:
45:95:ae:31:32:91:99:14:8b:07:60:08:a5:2a:74:
5d:94:d3:06:a8:93:d9:bf:db:7d:ac:35:e1:8b:03:
82:d8:4c:61:ee:5d:a7:ae:c7:b0:d1:95:d9:fd:1f:
81:3d:63:13:48:ee:22:69:94:13:a6:85:83:33:d2:
49:a5:9f:b5:af:21:b3:a2:0d:6c:17:a8:a6:30:9b:
54:d0:d5:14:68:83:01:28:e6:7f:e2:f0:f5:9e:16:
8c:b0:b9:8f:af:bd:13:79:ac:18:dd:77:a8:94:08:
8e:52:d9:51:c3:71:e6:93:73:1b:3c:53:3b:0f:8d:
74:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:EE:E8:D3:EF:E4:18:DF:C4:7D:C2:90:12:B4:7F:60:79:2D:37:77
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f3408e9a-2008-4ca5-833a-c786c6007c6a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
54:d6:b4:ab:67:15:e1:85:14:03:af:bb:06:67:d9:10:96:8e:
d0:6b:f2:fe:c8:51:ae:92:bd:43:c7:e7:08:49:97:f0:ed:4d:
24:8a:70:c3:b5:e9:0d:17:2e:46:a2:63:4c:d0:e3:7c:97:0d:
3c:59:15:96:49:e0:91:67:21:c6:b8:6b:c6:f6:f2:fe:36:67:
9a:cb:6e:97:67:5a:90:bf:5c:40:6e:82:cf:d9:06:34:41:22:
65:9b:31:29:e6:56:be:45:05:4f:7b:6f:8e:d6:18:90:4b:f2:
99:6c:ba:bc:db:cf:bf:bd:ad:14:5c:1f:38:ea:28:ca:4d:f6:
2e:21:6d:30:2c:f8:83:20:16:88:51:c4:7f:10:c6:2c:4b:4d:
b2:a7:ce:80:fa:60:8d:d6:6d:97:ef:18:3d:9f:d8:7a:21:da:
6d:95:e3:58:a3:3d:0c:3f:98:7a:05:6b:da:a0:ec:e0:54:27:
8e:57:11:e2:16:f4:02:84:99:36:0f:b0:50:87:57:e6:2a:b8:
d6:4a:46:a8:9e:4a:e7:c9:e9:07:50:87:15:e3:5e:e6:42:9a:
5d:1d:a9:be:a5:d3:4d:17:95:8c:88:c2:f4:b7:f6:f0:da:08:
47:ef:71:26:de:7a:75:2f:83:fd:62:9e:34:2a:bb:73:db:e0:
25:9f:86:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:50 2024 by rpki-client on console-fra.rpki-client.org