Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fd9ba7a7-63f3-46bb-b15c-8caa56084459.roa
File: fd9ba7a7-63f3-46bb-b15c-8caa56084459.roa (raw, json)
Hash identifier: LBexchEvKX4jbAYZbL9FUr1m+Tfy5n9G3XHSqyMOjgw=
Subject key identifier: 73:44:1B:8E:12:A1:83:DD:33:70:39:DF:03:E4:02:21:BD:29:C3:5A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1773F3DA5DD3150C6DECA7972CAA7EFB25C604FF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fd9ba7a7-63f3-46bb-b15c-8caa56084459.roa
Signing time: Wed 18 Oct 2023 00:00:00 +0000
ROA not before: Wed 18 Oct 2023 00:00:00 +0000
ROA not after: Wed 22 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:73:f3:da:5d:d3:15:0c:6d:ec:a7:97:2c:aa:7e:fb:25:c6:04:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 18 00:00:00 2023 GMT
Not After : Nov 22 23:59:59 2023 GMT
Subject: serialNumber=3854b938130e1243bdf8979c22f3b4f0189faf29f01d4db3dde042fca5655a0a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c3:31:b5:82:39:98:67:c4:11:04:bd:aa:1a:
7a:5a:dd:a0:67:ac:eb:96:2a:1b:57:5f:0a:93:06:
4f:1b:78:6e:89:2e:33:3e:96:31:29:0c:23:76:a3:
65:5b:d2:0a:59:bb:4f:68:c7:55:c6:0f:57:48:f2:
91:a3:d3:dd:d1:54:16:10:da:b9:b4:5d:01:9f:30:
1e:59:e8:f6:30:72:0d:d3:53:c4:5d:bc:d3:4f:45:
a4:d0:aa:86:fd:b5:00:74:db:5d:41:2e:a1:49:b3:
7f:c7:f2:b7:a0:e0:10:e7:96:e9:3e:1b:4b:26:6c:
a8:ce:aa:03:e9:a7:67:8e:c9:cb:5c:59:1b:ce:7b:
9e:bb:ef:3e:38:11:7f:be:4e:05:db:7b:91:ef:b1:
bf:0c:00:16:03:5f:65:42:0d:67:fc:1e:e1:3c:f2:
7a:e7:43:2d:9b:51:73:15:00:15:72:22:4c:12:36:
19:e5:e7:3f:a0:51:50:46:ab:60:b1:b7:77:50:7e:
a2:7c:da:2f:c2:38:75:1b:ce:e2:a8:3a:ee:55:80:
54:c4:66:85:26:f0:af:67:0a:64:4e:95:3a:42:fd:
5e:60:e7:e1:43:0a:b4:08:19:e2:b9:ee:86:2a:e1:
ea:47:85:48:41:6e:9c:ac:8d:e4:22:83:80:39:75:
9d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:44:1B:8E:12:A1:83:DD:33:70:39:DF:03:E4:02:21:BD:29:C3:5A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fd9ba7a7-63f3-46bb-b15c-8caa56084459.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:e8:eb:21:ad:99:b0:9f:a2:f1:39:2f:66:23:f5:30:47:07:
eb:ee:1e:04:00:bd:b9:fa:5e:7a:b9:65:5a:38:0d:87:9a:e9:
ce:b6:27:8c:08:ac:cf:e7:ef:f4:b2:87:2e:22:57:52:ea:85:
13:7e:c8:71:39:d6:c7:3e:35:5d:47:8e:40:e8:eb:67:8b:3b:
98:1f:6f:bd:c1:12:b5:d4:21:4e:79:63:02:ea:6f:b2:f5:eb:
92:0d:fa:1c:c5:93:7f:4d:ff:3e:a5:ae:bf:64:4b:39:47:ca:
89:b6:37:5d:71:ee:10:b4:41:88:56:a3:58:20:5d:4a:c7:0e:
c9:fc:31:fd:c3:69:91:88:76:cd:6c:74:25:b5:09:c5:88:b2:
71:79:ac:65:bf:10:06:07:53:c0:1e:4a:e0:a5:7e:c4:a2:e6:
f7:c7:a6:62:14:7b:5b:b8:e8:0c:ef:35:45:71:cf:26:e5:72:
e5:b2:65:50:af:da:89:5d:81:08:ba:41:97:66:4b:5c:72:11:
e3:44:7c:3f:c1:4a:d5:41:c5:f4:f7:f8:cd:73:6b:93:9e:d1:
54:9b:af:d8:cb:a0:d0:b7:eb:86:5e:b1:e5:ed:4d:e9:40:1a:
41:01:85:89:cd:ee:40:10:50:b1:f6:f5:6a:91:1c:b2:af:7b:
8b:ee:bf:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:41 2024 by rpki-client on console-ams.rpki-client.org