Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fe4c34e4-748d-469d-8c7d-66cc0e0aa7a1.roa
File: fe4c34e4-748d-469d-8c7d-66cc0e0aa7a1.roa (raw, json)
Hash identifier: Lsqg9mFI4jVh+IA6tYdFhBj+nhITgSwlqaKi+pvPOTQ=
Subject key identifier: 00:4A:81:A7:BE:42:95:6A:74:E6:1A:D5:1A:EE:46:87:75:5A:28:1B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1FC7E9AB41265674C4C8D1A3EA02C45D85F2857F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fe4c34e4-748d-469d-8c7d-66cc0e0aa7a1.roa
Signing time: Wed 03 Jan 2024 00:00:00 +0000
ROA not before: Wed 03 Jan 2024 00:00:00 +0000
ROA not after: Wed 07 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:c7:e9:ab:41:26:56:74:c4:c8:d1:a3:ea:02:c4:5d:85:f2:85:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jan 3 00:00:00 2024 GMT
Not After : Feb 7 23:59:59 2024 GMT
Subject: serialNumber=754bae112dd3a34d13eb20fa2df3e9765a93f30db3b7abbb8916e80a1c0d5801, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:21:9f:60:53:df:22:7f:1e:74:05:75:b5:51:
1c:61:c3:02:ee:4c:b1:ed:eb:9c:b3:90:d1:bd:84:
a7:46:3c:ef:b9:52:46:32:14:1b:06:42:82:f7:fd:
25:b6:11:ee:d9:cc:15:76:a2:1e:29:cb:78:f1:5c:
3c:b4:95:7f:d6:9f:5d:7e:ef:40:45:93:10:6f:92:
04:d8:63:3e:13:0b:49:04:cd:ac:38:66:6e:68:bf:
20:b5:c6:47:0a:65:f1:ca:22:8d:d9:cc:a9:d2:8b:
a3:9a:49:c3:ef:1c:58:1e:c7:fa:14:8c:0d:b2:be:
41:6f:55:79:15:fc:92:fd:e5:d6:1a:ae:9f:66:fe:
e9:25:8b:45:ed:25:9e:f8:29:d1:d0:eb:9d:3a:c2:
0e:55:c3:08:0a:6a:45:9e:05:29:cc:4f:76:21:9b:
b6:bf:78:80:29:d3:d9:8a:b7:2a:8a:66:79:64:29:
bc:87:a5:33:65:3a:74:97:c6:f1:7d:46:90:56:d9:
c1:67:d3:0b:81:24:d3:a5:5a:a9:83:8b:c7:19:72:
bd:dc:26:20:3f:68:a5:a9:7d:1c:6e:e4:7d:d2:46:
13:de:1a:11:d6:9a:9f:56:1a:b0:ed:b8:78:5d:70:
ae:ac:84:31:2b:64:1b:e5:1c:db:2e:4b:a7:79:12:
65:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4A:81:A7:BE:42:95:6A:74:E6:1A:D5:1A:EE:46:87:75:5A:28:1B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fe4c34e4-748d-469d-8c7d-66cc0e0aa7a1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b7:d9:51:09:49:bc:38:c1:05:88:24:79:af:c1:9c:fe:b5:
f7:11:32:ec:b8:5d:9b:15:29:57:43:88:37:9a:e1:05:ca:67:
58:e0:06:66:01:66:a1:32:8a:25:48:6e:68:2d:de:76:63:2d:
10:d0:50:b2:85:b7:60:9e:f1:fb:57:cb:bd:1f:82:a2:3e:18:
4f:4f:56:98:1a:be:90:2a:90:77:ec:16:2e:e3:f7:42:78:7a:
31:5e:df:3d:53:f7:0f:77:32:0f:0c:76:24:c4:a9:3d:1e:53:
a2:8d:53:b7:51:64:4f:81:4c:90:b0:be:77:5e:34:8a:9d:fd:
3b:5b:83:34:31:66:b2:55:d4:77:c5:8d:68:bf:75:bf:ff:7b:
d7:a5:63:05:75:27:93:76:36:b2:46:92:dc:d6:34:57:5c:9a:
dd:9b:9e:1a:76:16:cd:03:e5:89:4c:19:9e:41:85:a8:f8:a5:
93:e4:5c:6a:ca:d0:9e:56:97:d9:6d:9d:b5:d1:e7:f9:67:55:
3c:f2:5a:cb:60:b6:89:fd:2b:a6:15:bc:0d:9c:50:99:4e:12:
03:08:79:74:dc:aa:ec:f8:c4:d2:b3:0f:2b:71:d9:50:63:bb:
d8:37:a6:20:ea:40:ca:ea:14:a9:99:ae:e7:f6:19:a5:09:b6:
a9:78:6d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:41 2024 by rpki-client on console-ams.rpki-client.org