Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f71b048e-6def-4b80-a98b-a82f2d47c3ff.roa
File: f71b048e-6def-4b80-a98b-a82f2d47c3ff.roa (raw, json)
Hash identifier: XAzF0KxfC3b1fqlggTKBORkMLPx+68GTZTBhi+E/72A=
Subject key identifier: BA:A9:00:8D:DB:17:3E:BE:FD:32:03:27:B1:AD:DE:F7:DC:97:EC:04
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 15A116CE655DA4E2E2113EDAEB9B45AD02205310
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f71b048e-6def-4b80-a98b-a82f2d47c3ff.roa
Signing time: Mon 04 Sep 2023 00:00:00 +0000
ROA not before: Mon 04 Sep 2023 00:00:00 +0000
ROA not after: Mon 09 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:a1:16:ce:65:5d:a4:e2:e2:11:3e:da:eb:9b:45:ad:02:20:53:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2023 GMT
Not After : Oct 9 23:59:59 2023 GMT
Subject: serialNumber=01256137dd2b2864c938136b58a097f2d7ad1006de8e5adecb85c5e39ec1e911, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:35:93:0b:3a:01:9e:8e:ac:1d:54:ae:10:ea:
d0:95:ef:53:c4:d6:4f:e4:b2:17:0a:10:eb:cc:81:
4f:3f:65:b9:0a:80:31:0f:f1:8b:d8:9e:24:d0:4c:
84:5a:df:03:41:17:6e:08:4d:de:30:de:23:b3:fc:
dd:63:86:e8:43:b7:d8:29:77:88:d8:dc:af:dc:d1:
d3:5c:d2:4e:71:d2:61:a6:62:83:b2:25:c7:b4:56:
9f:fa:d8:d2:d7:70:e2:37:e4:a8:bd:bf:23:18:d7:
e9:d2:40:50:d6:ad:03:5b:54:1c:24:d8:73:d3:b5:
3f:76:d2:5b:17:a9:51:cc:9e:67:a4:37:ca:1e:b8:
71:95:18:a4:45:a7:6f:d0:05:5f:2f:00:6d:64:0f:
4b:9b:c2:2a:53:8f:b1:71:15:00:48:d0:50:57:1d:
52:b0:b3:0d:af:97:02:c5:7f:ed:e7:76:25:86:95:
33:d6:ee:c4:18:ac:ae:9c:85:09:cb:a1:1f:de:c6:
7d:93:89:87:9a:0f:6f:0c:c3:7a:a6:b3:25:16:00:
ff:c0:48:40:0a:d9:ec:db:06:5b:9f:74:b0:7c:ca:
2b:e9:5b:4c:91:01:b9:c4:ee:e8:66:f6:61:be:82:
22:24:3a:d3:e4:52:d4:fe:be:4d:35:07:e4:a8:1b:
5d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A9:00:8D:DB:17:3E:BE:FD:32:03:27:B1:AD:DE:F7:DC:97:EC:04
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f71b048e-6def-4b80-a98b-a82f2d47c3ff.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:c3:8f:c5:e9:40:40:3a:83:28:3b:27:a0:2a:4d:13:3d:c4:
30:8f:4c:2a:8d:82:cb:f8:ae:18:74:66:66:5b:c5:0b:7f:c5:
f7:b3:83:0a:0c:90:a6:0e:02:47:2c:0f:f7:84:23:90:b4:e7:
30:98:e2:7b:7d:cd:1c:a5:f6:92:f5:32:70:35:fd:66:44:31:
64:3f:cf:ab:7a:74:96:a0:d2:c0:63:a6:62:79:27:66:68:8d:
77:bc:7c:7c:bf:fd:72:b9:4e:50:22:d0:47:dd:87:01:59:c0:
d1:ba:92:13:65:ef:3c:83:01:70:21:7f:d5:d2:0c:7f:cf:49:
fc:f0:d9:bd:a4:7b:94:7e:97:74:b6:6d:40:ce:17:62:ab:40:
54:15:4a:d1:e7:b2:3f:8d:12:73:a5:d1:6f:bf:22:82:d2:09:
9e:55:46:63:0e:32:e8:48:f7:c7:d7:a0:a7:60:3f:bb:30:7b:
7d:67:a2:c6:15:48:1e:37:0b:7c:0a:1c:31:94:76:de:a5:37:
da:6b:e3:87:1f:d1:57:61:f0:81:2b:eb:92:9f:c6:8f:c1:0a:
17:0c:cd:ba:d2:cd:a4:27:3a:3e:85:8e:b9:e9:a7:8b:34:28:
7f:85:85:6b:c3:9b:05:45:5e:be:9b:e7:ea:c7:6d:c0:7f:4d:
1a:84:3e:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:50 2024 by rpki-client on console-fra.rpki-client.org