Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb5aa3ae-04e0-4650-b98d-d7fd2b4a1b4c.roa
File: fb5aa3ae-04e0-4650-b98d-d7fd2b4a1b4c.roa (raw, json)
Hash identifier: jMdWLFKMP8V6eerxnJV5t1j3gXN6GK+8TNar8z3WiI8=
Subject key identifier: B9:17:9B:12:A6:D5:C4:7F:10:8C:C4:28:CD:4B:B7:49:78:38:2C:C1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 72C2EBB24AD059E947717E39607F39A5C0E62154
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb5aa3ae-04e0-4650-b98d-d7fd2b4a1b4c.roa
Signing time: Tue 03 Oct 2023 00:00:00 +0000
ROA not before: Tue 03 Oct 2023 00:00:00 +0000
ROA not after: Tue 07 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:c2:eb:b2:4a:d0:59:e9:47:71:7e:39:60:7f:39:a5:c0:e6:21:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 3 00:00:00 2023 GMT
Not After : Nov 7 23:59:59 2023 GMT
Subject: serialNumber=9aeced36a7cd23b1a6c3dacc47f808af90afbae5c385ad5caee5ee75e2340954, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ca:0a:0a:64:0e:3e:ff:ab:2a:e9:58:fc:be:
8f:71:fb:ae:b7:5b:96:b6:36:ce:de:fc:c1:03:2f:
5b:25:ca:a9:3f:e7:54:59:a7:cb:d2:ba:9e:d8:7f:
03:31:06:99:80:3a:b8:92:3c:87:57:7e:d8:87:8f:
e4:3b:09:8a:19:ed:72:67:00:67:0b:09:15:8b:b1:
88:89:c6:0b:b6:e7:9d:0a:4f:1e:ae:40:43:4f:75:
9a:97:38:4c:df:45:61:0c:10:cb:15:fc:ca:33:4b:
01:7d:25:23:5d:65:fc:2a:f7:85:c6:0d:c3:ee:70:
8c:97:73:2a:3f:73:70:d4:98:3d:d5:af:71:9c:56:
30:5e:e5:6a:c4:6d:f9:eb:e6:b8:28:76:c5:ee:86:
cd:ae:37:15:67:65:9c:0b:f4:e5:b4:dc:db:9b:58:
f6:b5:b0:61:c3:d1:28:b9:21:d2:02:3e:3d:0c:02:
6d:c5:ae:c9:62:01:cf:31:19:aa:a7:64:d3:ad:05:
ec:f9:14:d6:eb:b3:e8:4d:12:3d:c7:fe:2f:43:0c:
e5:2a:72:e8:ef:46:cd:83:c8:ce:1e:fc:93:dd:7c:
8c:33:83:97:9f:3b:7e:24:eb:c5:ef:98:ac:3e:bc:
bc:4d:e1:08:c6:d1:1b:90:df:45:53:5a:77:61:0d:
76:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:17:9B:12:A6:D5:C4:7F:10:8C:C4:28:CD:4B:B7:49:78:38:2C:C1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb5aa3ae-04e0-4650-b98d-d7fd2b4a1b4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f9:b4:49:27:1a:89:f9:67:f9:d3:90:68:24:5e:df:42:93:
e3:49:81:ab:75:01:5f:14:69:d1:3f:5f:6a:8f:1f:27:d0:a4:
2d:f5:38:f6:4a:b4:bb:7c:21:9b:44:4a:21:8f:20:1a:14:a7:
dd:34:67:02:6f:ad:48:1a:2e:d9:ca:3d:f5:06:3c:a7:1b:c2:
03:6b:15:cd:dd:01:3c:16:76:26:20:3b:6f:e0:9b:28:5c:7a:
f3:6f:e1:30:12:11:89:83:39:c0:e0:bb:ac:d4:54:54:6b:0b:
84:b2:a5:bb:d9:a6:0f:ab:56:44:20:95:1a:c5:b3:c6:11:48:
2c:9c:9b:82:c0:09:61:75:fe:88:d6:a6:50:02:51:11:bf:2a:
1e:2f:ac:70:a6:4d:cb:ce:f2:ee:7d:f1:b4:e7:d6:97:17:b8:
6c:1a:f1:35:c8:72:3f:50:a0:4e:80:a5:f5:af:18:ba:ac:5c:
bc:6d:82:df:a9:92:a1:14:ad:ed:b4:0d:ee:e2:69:6b:d3:af:
18:b0:a7:66:e7:50:46:36:85:12:af:48:0b:0c:a0:a6:b0:4f:
33:ff:fa:ed:e4:70:67:46:ed:61:99:1d:3c:f8:6d:c7:33:78:
5a:14:39:97:f0:8c:79:d6:38:0d:72:46:9f:91:15:91:cd:ac:
37:e3:4b:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-ams.rpki-client.org