Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fcb26672-e79d-4055-87c8-d85343065daa.roa
File: fcb26672-e79d-4055-87c8-d85343065daa.roa (raw, json)
Hash identifier: btKZo7WFn8pB0JLGm+g/VYp1fufXePFwkdxAgmI2UNI=
Subject key identifier: 30:21:01:A2:08:BF:92:89:B0:A8:C4:57:BF:3C:C9:31:7E:5E:2C:85
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3FEDCFD46CD2C410670BCC9675D27F1EEB233275
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fcb26672-e79d-4055-87c8-d85343065daa.roa
Signing time: Sat 10 Feb 2024 00:00:00 +0000
ROA not before: Sat 10 Feb 2024 00:00:00 +0000
ROA not after: Sat 16 Mar 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:ed:cf:d4:6c:d2:c4:10:67:0b:cc:96:75:d2:7f:1e:eb:23:32:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 10 00:00:00 2024 GMT
Not After : Mar 16 23:59:59 2024 GMT
Subject: serialNumber=78f7e923b17380ee8cd9ffeba17864649cf7e8cc4f920cc80d8e7eb07433ce23, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2a:ba:e9:23:9a:88:00:36:ac:ca:e8:d3:c5:
6f:6c:ed:ae:69:fc:42:e9:a8:42:75:07:15:2d:1f:
37:46:5a:df:ff:d9:a0:b2:f6:5d:f6:e2:63:b0:a8:
2b:9e:63:53:3b:fb:89:80:64:bb:50:2d:1b:5b:67:
92:b0:26:fb:02:16:99:4f:e8:7d:26:78:e8:59:c0:
78:86:aa:5b:fc:85:b5:92:d1:5f:5d:b8:8a:e9:fa:
72:9b:b7:03:db:fe:00:30:4f:3d:e1:1a:43:31:7b:
c9:d6:f3:19:83:0d:4a:52:9e:9e:d7:de:37:ac:9e:
14:10:a4:57:4b:16:25:49:75:94:42:ae:17:51:b3:
84:87:ea:a2:55:ce:fc:8d:70:fd:ad:50:2c:20:80:
47:e6:6b:83:c0:bf:e3:df:3a:00:5f:42:7b:31:63:
7b:3d:b7:8c:cd:03:41:35:fc:16:65:13:ee:80:cf:
79:e5:69:e5:a7:7a:af:df:88:3b:61:9a:b5:f7:d8:
c7:72:3c:ce:e6:e5:6a:68:73:04:28:88:7b:0f:b2:
60:09:59:57:fb:dd:59:8f:0b:dc:44:af:7d:23:02:
fe:02:1d:9f:ac:e7:4e:e3:66:06:2f:90:68:db:22:
9f:d1:b7:be:29:d7:dd:df:6e:9d:a3:99:87:fc:e7:
67:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:21:01:A2:08:BF:92:89:B0:A8:C4:57:BF:3C:C9:31:7E:5E:2C:85
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fcb26672-e79d-4055-87c8-d85343065daa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:3a:9d:79:0e:a9:44:a5:fe:f1:67:75:01:6a:97:f7:c1:72:
64:62:87:b0:45:74:9b:c9:fc:ee:27:3e:05:0a:ca:c6:a9:3e:
ca:b7:6d:8d:c5:1d:82:08:90:4c:ee:7d:74:b1:b8:4b:e9:b2:
e5:48:bf:df:dc:19:29:33:fa:48:13:eb:c1:26:04:5f:9a:bc:
46:41:4e:2d:e1:56:29:af:a0:ae:58:d3:9e:19:f5:5f:57:ab:
e4:13:de:b5:ff:4b:a8:8a:49:a8:30:04:47:e8:cb:3d:d6:7e:
d4:4a:5a:00:ad:0b:a4:89:80:04:89:c7:4f:95:8b:42:20:f1:
6f:65:43:c4:7c:a4:97:fd:30:e2:67:70:bc:c9:97:af:19:4f:
be:a1:4f:51:f4:03:c6:33:a1:7b:71:47:72:4d:64:93:43:f5:
d1:69:a6:af:ad:7e:1b:e9:ee:c0:d4:24:c3:24:a6:e1:39:6c:
90:4e:5f:4e:cb:4a:02:9b:c7:39:0d:ab:45:fd:6e:f9:cc:4b:
d2:4b:3e:69:18:d0:a0:a6:62:ee:ac:50:bb:b0:4b:05:b8:ca:
f0:ef:43:f7:4f:64:d0:6f:5e:0e:f3:62:1b:16:35:52:a4:2b:
42:89:16:ce:f1:66:65:9e:e8:55:a2:c4:0e:32:05:b0:97:4d:
81:cb:64:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:51 2024 by rpki-client on console-fra.rpki-client.org