Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1109b3be-cf01-4929-b76d-696a3e92353a.roa
File: 1109b3be-cf01-4929-b76d-696a3e92353a.roa (raw, json)
Hash identifier: L25hfbZ893wefRJf7IrYL9iD1ltnOBR16Nt2ybLPgdI=
Subject key identifier: 6C:57:F8:CE:22:4B:13:B9:48:F4:03:5D:14:7C:65:C2:B6:B3:CB:29
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 010CE9B0E541822A1F745986F057E3E9DE367163
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1109b3be-cf01-4929-b76d-696a3e92353a.roa
Signing time: Wed 25 Oct 2023 00:00:00 +0000
ROA not before: Wed 25 Oct 2023 00:00:00 +0000
ROA not after: Wed 29 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0c:e9:b0:e5:41:82:2a:1f:74:59:86:f0:57:e3:e9:de:36:71:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 25 00:00:00 2023 GMT
Not After : Nov 29 23:59:59 2023 GMT
Subject: serialNumber=335cfa73a2e4e4cb6ba0cfab2a4f946efcb599df97f6bd26af9142f046b32f84, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fa:2a:d2:e8:51:55:d0:36:e6:9b:14:a8:b6:
ff:32:78:75:cb:27:ef:76:1a:16:1a:d6:61:db:53:
f9:d8:9e:13:a3:f6:cc:8a:36:e9:c0:e0:83:f0:84:
98:3a:2a:35:c4:4a:2a:0f:c5:0a:6e:b5:7b:eb:99:
41:56:d7:6f:e6:73:ca:9f:d5:d7:82:ed:d8:ea:42:
99:f4:1f:90:08:6c:17:98:01:54:ea:24:a8:46:7b:
5c:89:a8:8f:de:f4:aa:51:30:8c:6b:88:76:7a:54:
df:d1:76:76:c2:e2:cf:1f:ec:61:19:de:c0:21:42:
9a:af:ff:ff:5c:25:43:34:b7:ee:98:8e:1c:b8:ea:
64:1d:76:b3:f6:d7:eb:37:84:9d:8a:d0:5b:e4:e3:
8e:61:d3:31:a2:e5:0d:ae:42:19:38:f8:56:6f:69:
f8:16:3a:f0:e5:66:d2:30:32:66:83:d2:a1:fe:b7:
6e:e4:0a:ed:32:f1:b2:8b:b5:f4:80:39:26:dc:81:
e7:a0:6b:ea:4a:f7:a6:13:94:41:a1:e9:eb:ba:2c:
64:d9:52:ff:2b:a7:d4:0f:f0:01:8c:dd:74:62:ab:
b0:8d:cb:50:d6:c1:5e:89:cf:2e:3d:e6:06:93:eb:
5f:03:1d:99:43:c3:7a:03:83:6f:9b:0e:aa:77:6e:
18:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:57:F8:CE:22:4B:13:B9:48:F4:03:5D:14:7C:65:C2:B6:B3:CB:29
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1109b3be-cf01-4929-b76d-696a3e92353a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
91:99:02:a3:95:b4:f0:14:02:fb:02:ea:ed:36:b0:d4:5d:df:
1d:15:fe:1b:3a:0c:9d:40:ac:da:37:3a:85:02:1c:ca:ce:28:
eb:42:1d:05:75:52:51:e1:ea:05:05:f8:a2:0d:79:c5:66:05:
9b:95:0f:9a:b6:1c:ab:cc:e4:59:29:70:25:d1:5c:56:1f:d8:
2f:ca:41:4e:1d:d2:95:59:d1:e6:4b:06:32:be:99:d4:6d:44:
22:cd:6c:83:5f:6d:8c:69:f5:1f:17:08:3c:fc:34:be:8f:c0:
84:8d:37:29:02:8d:d1:a7:50:70:22:0d:9c:ca:22:82:9d:43:
c9:46:da:09:85:35:da:ea:1f:9b:25:2f:d5:07:89:9f:f3:86:
0c:0a:d7:a6:cb:5c:71:8a:47:57:08:4a:ce:02:1a:d5:50:8b:
94:db:6c:40:b4:a1:fc:1c:fa:e0:ab:50:c5:ff:82:27:d3:3d:
64:8e:54:dc:df:2a:10:d9:99:3b:2e:84:af:4e:27:68:43:d4:
3b:cd:c2:41:7f:4d:91:7c:95:ab:d9:ab:16:08:c8:14:e9:0d:
7c:08:64:ed:7c:b5:44:1d:9d:d9:de:4f:0f:ac:a2:92:1b:fa:
ad:40:6e:3e:a4:1e:d2:4c:7e:78:00:41:01:d5:da:35:30:e6:
a9:71:89:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:08 2023 by rpki-client on console.sobornost.net