Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/083b510f-824b-469e-bdaf-b8aa9fd0c45c.roa
File: 083b510f-824b-469e-bdaf-b8aa9fd0c45c.roa (raw, json)
Hash identifier: A7s0VfbSOWP/sjC++n+8ivc0ofmGqBGsQmXwFMlKf0Q=
Subject key identifier: E9:FB:EB:AA:B0:AE:34:2C:51:0E:4F:DC:48:EE:9F:05:AE:AE:76:22
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 645D35E466C9CBF77DA9E05366B58204C42E8678
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/083b510f-824b-469e-bdaf-b8aa9fd0c45c.roa
Signing time: Fri 17 Nov 2023 00:00:00 +0000
ROA not before: Fri 17 Nov 2023 00:00:00 +0000
ROA not after: Fri 22 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:5d:35:e4:66:c9:cb:f7:7d:a9:e0:53:66:b5:82:04:c4:2e:86:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 17 00:00:00 2023 GMT
Not After : Dec 22 23:59:59 2023 GMT
Subject: serialNumber=6c19c088e77a1703547b854a8bb1921703e56ebb2260fed3a90b653d50e31681, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cb:31:48:fe:1f:9f:86:be:20:ca:f6:1b:fe:
7a:94:fc:fb:41:8d:ab:b4:3a:97:4b:90:d6:b7:94:
b1:1f:fa:78:ae:19:c0:e1:e4:84:1f:5c:7a:56:f0:
b6:cf:e7:c9:0f:8a:53:01:3e:4f:d1:52:e4:92:75:
a9:7c:a9:c3:ee:5e:22:57:0b:c2:3f:ea:e6:e1:c1:
7f:31:3c:08:77:d6:7d:07:55:84:61:ea:d0:2b:aa:
6b:43:88:13:53:8e:f1:92:83:b8:44:9d:42:65:79:
3c:2d:35:21:20:6e:3f:91:59:a8:2d:b9:4b:c8:23:
49:62:7d:97:49:ca:27:9a:bd:33:a3:b3:5c:12:f3:
8f:05:42:4f:b4:0e:8b:97:df:00:91:0c:2b:b4:4d:
c4:b7:2a:6a:92:8d:02:af:e7:31:9d:0d:7f:db:46:
a0:6a:11:6d:df:a6:b4:a5:49:a5:86:59:3f:45:66:
98:01:d6:76:cb:0b:b8:27:9d:43:29:94:17:10:bd:
b3:24:73:4a:a7:78:af:31:c4:94:0e:d6:72:26:3e:
56:af:18:f8:54:a6:04:55:d7:72:24:f8:d0:c7:38:
10:99:1e:6a:c3:f6:dc:11:b6:5d:fe:94:a1:ec:94:
9f:23:e1:e5:7f:5a:4d:3c:68:cc:06:c3:35:d9:aa:
13:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:FB:EB:AA:B0:AE:34:2C:51:0E:4F:DC:48:EE:9F:05:AE:AE:76:22
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/083b510f-824b-469e-bdaf-b8aa9fd0c45c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
88:fe:8b:72:b2:b0:7c:44:cb:4c:84:bb:e5:b8:ab:b5:81:3d:
5f:86:9d:91:2d:ac:b1:ec:af:b6:d7:92:5a:83:ac:19:c2:04:
7e:b3:33:81:f1:05:ed:6f:6c:0f:67:df:e6:f4:09:d5:d6:7d:
92:7c:41:7f:09:b4:71:40:99:4d:87:86:b8:6a:bb:68:ee:67:
3b:1d:84:f2:b2:5d:a3:45:a6:8d:a1:53:18:02:b0:4b:58:01:
ff:49:bd:9c:87:50:e4:fd:fd:48:c7:97:ca:18:c8:cd:57:13:
76:8e:05:49:d4:ba:09:64:d5:c5:d8:50:ae:f4:83:91:e7:0e:
e7:38:d0:18:57:7f:ea:74:00:d2:df:8f:9c:a5:e1:fd:e5:14:
72:0e:4f:04:34:71:79:04:7c:4a:8e:c4:d7:e2:be:d5:55:6c:
53:52:0a:72:22:cf:84:6e:28:e9:b1:8b:a0:64:29:bd:b9:e5:
d3:84:c7:8f:bb:7b:80:0f:97:b4:c9:d8:99:49:76:1e:c7:12:
db:a2:01:b0:53:f9:6c:d2:4e:5c:53:c3:2e:a0:d7:47:89:63:
30:9b:5d:69:27:da:e9:b2:63:9a:4c:a7:fe:8f:7d:3b:e8:25:
5c:c3:c9:3b:45:6c:6d:17:33:35:24:57:51:00:77:10:49:9c:
40:28:27:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:06 2023 by rpki-client on console.sobornost.net