Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f7be25fe-887b-4339-8b20-62868d696c47.roa
File: f7be25fe-887b-4339-8b20-62868d696c47.roa (raw, json)
Hash identifier: PMcg2eXSmDbv2rf41X4vROt4oCIoDFsEvwUJNPy2DmE=
Subject key identifier: 04:68:35:81:63:9C:EA:7F:CA:3A:35:0D:04:50:E8:87:6A:AC:97:69
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5DBFAE3DE5DFE5CB6E8EFAA82D0EB7F8CE0D010A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f7be25fe-887b-4339-8b20-62868d696c47.roa
Signing time: Mon 25 Sep 2023 00:00:00 +0000
ROA not before: Mon 25 Sep 2023 00:00:00 +0000
ROA not after: Mon 30 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:bf:ae:3d:e5:df:e5:cb:6e:8e:fa:a8:2d:0e:b7:f8:ce:0d:01:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 25 00:00:00 2023 GMT
Not After : Oct 30 23:59:59 2023 GMT
Subject: serialNumber=b08c577cc4cd639aea475b6013a89d7fc33cee7bafee28ca6c5334d63eb146ee, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bb:bf:64:dc:9f:5f:e7:51:18:99:14:c6:e5:
bc:f9:9a:d8:22:58:cb:51:86:a6:dc:f5:51:29:5e:
ba:85:b1:71:05:e1:8f:24:d7:73:a6:5d:0d:e8:35:
65:67:34:45:0a:cf:bd:78:92:67:c3:9c:5f:e5:d8:
c2:1c:1e:b7:15:9b:0d:3e:fe:02:07:69:ca:2b:b2:
69:c8:ff:8f:6b:13:57:fc:fc:21:bf:bd:39:ae:f8:
83:d3:d4:3d:52:37:16:99:39:8e:2c:51:62:de:e2:
18:81:a3:57:2e:97:65:e4:2d:8c:9a:f0:0a:d7:05:
41:3b:94:1f:6c:6c:4e:36:ea:02:50:ba:1f:42:5b:
10:be:9b:a0:ac:f8:e9:16:4c:6d:56:34:40:c4:2a:
b9:ec:63:99:c0:97:04:6b:1b:2d:1d:0e:66:07:7c:
0c:2f:65:16:44:c6:55:28:76:d8:e0:7f:cd:97:74:
49:a0:38:d6:02:53:33:72:04:53:ed:f3:d3:59:17:
0a:bb:11:4a:11:3d:a7:e5:74:2c:5b:b5:44:84:73:
ce:59:0c:e3:cd:ef:ac:f8:cf:5b:a6:86:30:d1:c6:
c1:db:3f:bd:60:76:70:9a:38:ce:bf:bd:46:99:d4:
52:a9:ce:8c:2c:22:29:cd:78:4b:f2:59:e2:42:a6:
38:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:68:35:81:63:9C:EA:7F:CA:3A:35:0D:04:50:E8:87:6A:AC:97:69
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f7be25fe-887b-4339-8b20-62868d696c47.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:ee:ec:ab:9e:ba:10:f4:aa:31:ee:50:ac:03:f1:51:79:5d:
da:7e:ef:d4:88:52:7e:33:4b:ca:9c:30:34:4a:55:60:66:27:
79:87:5b:31:d8:03:b5:07:df:ed:a7:ff:0a:fb:22:d7:ea:60:
db:da:96:27:ce:4f:8a:e9:8e:d7:5d:25:1e:e8:93:8e:d3:a0:
d9:f1:94:12:d1:e9:39:0c:fb:d9:13:3e:06:ba:6c:c3:8c:40:
89:d4:55:ad:6b:f3:a6:17:17:4b:80:80:26:b6:46:11:61:bd:
ed:fe:f1:ee:15:c2:66:62:c6:bf:c3:d0:f6:12:98:db:0d:c0:
75:17:fa:e4:8f:71:98:31:38:7d:8c:55:ee:b9:6c:5a:28:ad:
84:3a:05:83:84:5b:a3:77:c5:84:65:6c:0d:16:0d:36:57:e2:
eb:fe:34:1a:85:82:75:f3:17:8a:3c:92:fd:bd:83:c0:96:6a:
2f:09:19:ec:99:da:c6:27:58:2f:2a:89:fc:15:14:cf:8a:ea:
60:9b:f1:45:b2:10:53:d6:57:33:65:74:32:47:ac:91:db:39:
71:34:ec:f6:9a:cf:01:a3:1f:a9:e3:cf:05:dd:d5:35:3b:7a:
0c:6a:44:e7:94:09:ff:c8:91:8c:77:d1:94:9d:f5:42:82:84:
65:53:ac:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:36 2024 by rpki-client on console-ams.rpki-client.org