Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f3a632f7-2d17-49eb-bc6d-d8aa141d0128.roa
File: f3a632f7-2d17-49eb-bc6d-d8aa141d0128.roa (raw, json)
Hash identifier: oOh4N3LGTQEvorSJVO6e6vO2f9ner2rZM7EvnstWHXQ=
Subject key identifier: C4:70:B0:7B:A0:BE:3B:80:97:75:2D:8E:B0:D6:9A:91:7E:14:EE:E9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5B522DB81F6761F63BFA121F6F39FB6370D774CC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f3a632f7-2d17-49eb-bc6d-d8aa141d0128.roa
Signing time: Sat 05 Aug 2023 00:00:00 +0000
ROA not before: Sat 05 Aug 2023 00:00:00 +0000
ROA not after: Sat 09 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:52:2d:b8:1f:67:61:f6:3b:fa:12:1f:6f:39:fb:63:70:d7:74:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 5 00:00:00 2023 GMT
Not After : Sep 9 23:59:59 2023 GMT
Subject: serialNumber=06e4265e69614c8e97e00e9f6fc7d550b4a02f719d9f3b3614d7f05bf4ed2f36, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:1b:dc:60:0a:96:e2:39:47:ba:3f:d2:d7:0f:
35:fd:d0:cc:dd:d3:4b:f0:48:60:67:73:ba:eb:b3:
c0:4d:c5:74:b2:c5:4c:8b:ba:97:ff:e2:dc:3f:14:
8a:85:a4:28:04:30:b1:c2:ad:1f:92:6e:69:64:63:
b9:c8:e8:89:50:99:dc:d1:bc:f7:bd:f8:96:11:96:
ee:c2:ca:b3:8b:00:22:b4:1f:15:20:63:9c:ba:82:
15:e7:3d:2c:73:6d:a7:66:06:f4:4d:ca:dd:65:8e:
c6:56:33:7e:a2:ee:3c:a5:77:9e:61:71:ff:17:85:
7f:21:cb:f6:3c:26:53:8f:bf:a6:c7:6f:91:92:37:
a7:02:74:05:77:0b:6e:d9:c5:41:7b:9e:df:b5:23:
01:52:a3:de:d0:8b:39:ca:08:3f:b9:ff:5c:06:c6:
00:e9:e0:19:ed:fd:44:50:94:10:21:df:81:41:85:
a7:3d:49:63:08:5b:1a:09:1e:2e:66:c4:d2:62:89:
d4:2c:2a:12:8e:8e:9d:cc:57:73:11:6f:e4:c7:2d:
7a:1c:3d:c9:ce:bb:ed:fd:1b:e9:30:50:f1:ff:b4:
03:a3:88:d4:f0:8e:ef:7e:e9:73:25:dd:1f:38:64:
f7:08:e3:18:55:97:e1:08:9f:74:25:b4:f9:14:84:
22:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:70:B0:7B:A0:BE:3B:80:97:75:2D:8E:B0:D6:9A:91:7E:14:EE:E9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f3a632f7-2d17-49eb-bc6d-d8aa141d0128.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:51:f0:85:23:fd:85:31:d1:f9:85:f4:e4:f6:0d:0c:ff:f2:
ee:1d:f8:5a:ee:40:fd:25:70:d5:10:45:0b:9e:d9:47:2f:8a:
3d:7c:8c:02:4b:b9:cf:e4:56:dd:e4:25:ee:88:e5:72:97:63:
8b:14:e7:02:91:e5:8c:b3:70:85:60:fc:99:79:44:d5:ae:65:
d9:b3:e4:da:eb:73:01:a2:30:bb:9a:2b:6d:60:b3:fe:ad:8b:
1c:79:8a:4a:5d:5b:2b:79:be:20:9b:6f:0d:5f:fb:2a:b8:36:
fb:1b:b6:2f:bc:e9:64:90:80:c4:d9:a3:ed:ab:44:93:1a:e8:
09:fe:72:05:95:80:5d:f8:27:76:42:0b:6a:70:15:ff:ce:15:
5f:9a:e6:ea:e1:74:3d:82:2a:84:09:81:f7:59:fc:37:cc:d2:
9e:47:74:f8:f4:3b:48:ba:21:18:fc:e3:3b:6e:aa:8b:ac:ea:
2b:e8:99:8e:9a:8c:d3:f0:ca:7d:72:a5:67:79:6b:43:e7:5e:
5d:86:a9:66:96:43:de:2e:59:46:a1:1d:79:b3:e4:67:8d:c5:
20:71:9e:4e:98:ce:a1:70:66:06:a7:7a:47:0e:50:91:bd:b9:
63:21:0a:3a:2f:81:78:30:89:70:58:8d:61:14:85:d7:da:f9:
91:16:b2:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:35 2024 by rpki-client on console-ams.rpki-client.org