Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fdf5783f-fbe9-41d6-81e0-a967760fa99a.roa
File: fdf5783f-fbe9-41d6-81e0-a967760fa99a.roa (raw, json)
Hash identifier: YjXA7dtfpq8ll0uIwlwGzwgYCQ7c0ZScW+2xIwdg00o=
Subject key identifier: 8A:66:6A:F0:1A:83:74:36:55:F0:C9:35:72:69:4E:84:D2:4E:0E:A5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6796718921BC59BBBBDC97F35CF5BDE4A0785EB3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fdf5783f-fbe9-41d6-81e0-a967760fa99a.roa
Signing time: Fri 11 Aug 2023 00:00:00 +0000
ROA not before: Fri 11 Aug 2023 00:00:00 +0000
ROA not after: Fri 15 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:96:71:89:21:bc:59:bb:bb:dc:97:f3:5c:f5:bd:e4:a0:78:5e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 11 00:00:00 2023 GMT
Not After : Sep 15 23:59:59 2023 GMT
Subject: serialNumber=4134d58be7cb60c78e04d0cdd63339b26c9d5314781428f5670d8e2cc21ce167, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d8:d4:e5:77:cd:c6:e6:25:01:0c:1d:71:a2:
0c:89:01:be:30:ac:5e:77:6e:d6:83:b6:f8:90:0c:
6e:b1:6d:23:04:45:f8:c1:61:64:38:08:61:dd:4a:
4c:c6:95:54:69:5b:87:f8:8d:0c:6d:70:ea:e0:69:
0a:c1:87:15:ff:51:51:4e:6e:82:63:00:b0:72:fd:
f2:e0:06:0e:86:a8:3f:99:16:06:f7:05:73:5d:05:
7f:fc:0b:85:5d:ae:d8:aa:50:0b:6e:4c:6c:11:99:
3c:6a:38:b4:98:16:d1:e2:9a:20:d8:5c:3c:88:1b:
aa:fc:8c:37:a8:e5:99:c2:a4:64:4d:2f:a5:7c:cd:
b9:91:54:b0:e1:fd:f9:cb:ab:6c:fe:36:02:da:49:
f1:6f:b4:30:04:fe:b8:91:a5:93:f2:6f:4b:9e:16:
a0:ac:b5:90:83:dd:22:3c:16:39:7a:96:4b:01:48:
17:25:8c:ea:38:b5:26:2f:d7:7f:bb:d0:f1:f6:f5:
de:a0:49:91:f2:2e:54:7f:d2:51:a4:1e:70:bc:55:
d7:92:a7:dc:62:e7:0e:d6:7e:dd:99:b3:14:8a:19:
fc:f0:1b:57:db:95:fc:ad:a8:1a:0a:10:99:f4:cd:
9d:06:d8:f1:75:26:5d:52:de:fa:5f:81:26:e1:5f:
11:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:66:6A:F0:1A:83:74:36:55:F0:C9:35:72:69:4E:84:D2:4E:0E:A5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fdf5783f-fbe9-41d6-81e0-a967760fa99a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
91:34:ff:7d:98:65:d9:a7:b5:75:fe:42:13:81:d5:89:50:0c:
5d:f3:d4:04:01:d0:4f:9e:b4:f3:44:93:16:57:8d:de:d0:40:
ec:bd:c1:09:42:8e:be:5f:c8:65:08:cc:48:1b:52:4c:1b:ca:
f2:28:a0:f2:bb:f8:69:a5:73:15:a2:b9:66:a2:45:3e:92:de:
c1:86:a9:c1:8d:ea:9f:13:94:e1:67:6d:4e:3f:1e:8a:6e:78:
80:00:0c:f4:b0:33:4d:56:ca:f4:6c:a5:d6:08:2c:c5:0d:1a:
6a:b3:d9:be:7a:f0:0a:5e:38:6e:f0:4b:e9:55:ff:96:4b:4b:
86:3d:8a:7f:41:bc:11:b8:20:21:76:9a:f5:60:e0:c6:52:b3:
dc:70:3c:08:25:77:e1:84:50:1c:70:a8:3a:c8:d8:b1:42:b6:
e5:5c:59:d7:63:51:66:17:00:5e:5f:6d:52:23:1b:b3:60:0c:
0f:f0:0a:59:b5:26:90:e7:ab:b7:0c:27:11:e4:43:8e:5f:8a:
49:fb:99:0f:d7:19:53:ef:6a:99:e1:4f:33:c3:30:ab:c7:2f:
35:97:fc:83:ab:43:8d:1f:dd:01:62:86:2e:5f:e6:f0:e8:9e:
6e:ac:e2:03:9b:8e:34:2e:cf:75:3c:57:80:4c:25:2e:5a:f7:
63:f6:bd:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:41 2024 by rpki-client on console-ams.rpki-client.org