Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/128bdd50-4e4a-4b4a-813b-ecd12d65677c.roa
File: 128bdd50-4e4a-4b4a-813b-ecd12d65677c.roa (raw, json)
Hash identifier: qACwcWocoFU47JxYQn0GuCVC2w657I4m5KyeAtdhlCI=
Subject key identifier: 06:D9:25:60:0D:9E:82:4E:70:A8:88:4F:17:8A:B8:B0:54:22:5F:6C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 274349621B58D3DA5C0FBC420A61D5D30A667FBE
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/128bdd50-4e4a-4b4a-813b-ecd12d65677c.roa
Signing time: Mon 04 Sep 2023 00:00:00 +0000
ROA not before: Mon 04 Sep 2023 00:00:00 +0000
ROA not after: Mon 09 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:43:49:62:1b:58:d3:da:5c:0f:bc:42:0a:61:d5:d3:0a:66:7f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2023 GMT
Not After : Oct 9 23:59:59 2023 GMT
Subject: serialNumber=1c1f3a0e7630a72bb1941b416a6100ab663c86862e69495064c13bb86535ac90, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e7:32:51:ad:a6:46:72:9d:39:dc:1f:b4:73:
5d:67:fe:6c:d7:ae:5a:f9:7c:d9:db:d6:8a:49:f3:
15:bd:c5:a3:0e:ef:3c:e1:ee:01:1e:83:6c:57:ed:
a8:5a:b6:33:1b:7c:f5:fd:de:86:9c:2c:93:b1:e4:
e9:62:70:ba:05:cf:56:8e:2b:f1:40:4c:a5:b6:20:
da:6b:a0:18:63:46:d0:d4:db:4b:37:6a:27:08:ff:
8f:15:88:4b:59:b1:72:c8:06:fb:2f:a8:73:dd:5b:
00:1c:62:fb:e3:9f:e8:fc:5a:1b:7f:b9:0f:69:6f:
d6:3c:66:ff:da:9b:48:c3:31:6b:84:4a:64:8d:9f:
b3:fd:67:89:6f:99:bf:ed:1d:cb:30:99:5f:76:b1:
f3:4e:da:42:48:bf:61:cf:53:f0:26:94:92:e5:cb:
a3:45:bb:06:18:28:40:59:af:18:06:e1:72:61:75:
1e:93:46:b8:4f:29:ac:a6:66:00:f5:06:45:01:68:
64:96:55:b4:95:53:2d:b8:26:b6:65:d5:bd:3c:27:
7a:0d:c5:ca:bc:27:11:54:26:7e:ce:7c:41:6d:8a:
74:da:5c:f3:84:a6:00:29:b9:a1:73:5f:36:0b:ab:
e2:67:07:06:78:98:12:a5:d7:2b:5a:08:f9:3d:26:
b4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:D9:25:60:0D:9E:82:4E:70:A8:88:4F:17:8A:B8:B0:54:22:5F:6C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/128bdd50-4e4a-4b4a-813b-ecd12d65677c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:2a:4f:0f:32:54:47:10:b4:6d:f5:36:4b:74:bf:7d:28:ab:
db:d4:db:94:7e:4a:43:cb:7d:8a:7d:4e:46:46:7a:30:47:da:
a0:d4:3b:72:f3:56:1f:11:4b:ef:34:70:b4:19:ef:d5:df:0b:
6e:45:f9:aa:80:5a:00:2a:b4:94:6c:ec:eb:fd:03:5e:7e:f6:
7e:f9:6c:93:1c:fe:e3:ee:be:e4:77:cf:b3:cb:41:fb:b9:dd:
9d:09:96:16:7c:db:4a:91:2e:12:70:1e:7c:2f:be:9f:45:35:
65:7c:e6:37:0b:e7:4d:33:ff:f9:c4:75:2f:74:5c:2a:39:9a:
37:6c:6f:8c:4c:2e:8f:96:61:74:86:94:72:b7:55:8e:90:da:
c7:d3:bd:14:6c:b3:0c:37:86:16:c0:87:cc:e3:34:9d:61:e7:
c5:8b:23:25:9b:dd:bc:09:86:61:40:4a:4a:96:af:e7:a9:62:
f8:a6:f1:8f:8a:93:b0:12:95:19:08:66:88:46:90:54:dc:38:
4a:95:40:5d:0d:5f:16:00:80:56:87:1d:c6:37:12:58:cc:91:
6b:88:58:91:bc:b4:01:e1:81:cf:21:12:e8:78:e9:0d:14:45:
6a:1e:6b:3b:07:cc:a8:d2:be:a5:65:84:91:6c:31:ad:b8:45:
08:7e:41:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:09 2023 by rpki-client on console.sobornost.net