Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1489486d-2844-4201-a953-25e29fcbea93.roa
File: 1489486d-2844-4201-a953-25e29fcbea93.roa (raw, json)
Hash identifier: jmqXTJZUaMxcNkI1Pyz9dKhHCQvCPWu7HPDREP7J19A=
Subject key identifier: 25:BB:C1:5C:F6:96:04:1A:AD:22:A0:1B:9A:45:A0:C8:53:36:A0:3E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 55501C08887167F451393AE77781F9D46D57561F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1489486d-2844-4201-a953-25e29fcbea93.roa
Signing time: Fri 01 Sep 2023 00:00:00 +0000
ROA not before: Fri 01 Sep 2023 00:00:00 +0000
ROA not after: Fri 06 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:50:1c:08:88:71:67:f4:51:39:3a:e7:77:81:f9:d4:6d:57:56:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 1 00:00:00 2023 GMT
Not After : Oct 6 23:59:59 2023 GMT
Subject: serialNumber=8a7fe4950823a86784bb99fc8b5294b59ca71f750a7320d80f8bc92380905f0c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:69:40:02:23:9c:c7:fa:3f:6c:02:b8:b2:b8:
7b:30:0e:01:a0:58:95:0d:6a:5d:ad:b4:1b:c5:f0:
81:46:02:71:b8:90:25:3b:6d:b8:63:76:47:d6:d8:
a9:68:4e:d0:43:87:f6:1c:c1:d2:ab:63:92:b7:6c:
c6:2e:8c:9e:b3:43:31:03:fe:30:fa:09:31:08:df:
3d:e4:c9:3b:66:4c:d9:8a:ef:2a:27:1e:8f:e5:fd:
7e:c5:de:7e:cf:5c:c6:69:13:6e:e0:ff:85:e8:98:
e0:fd:8b:b1:ac:43:97:5e:75:11:bc:7e:8b:cc:96:
cb:d8:20:db:38:89:f8:9b:fa:fd:80:2d:71:59:65:
e3:dc:0b:26:fe:89:05:3e:5b:80:84:28:1c:f4:f5:
9b:18:32:eb:21:e8:9d:76:24:da:14:61:c1:b8:f4:
27:a5:a8:2b:62:be:36:84:58:16:68:86:44:2d:a1:
3e:93:eb:3d:1f:17:20:e3:57:da:2d:1d:e4:87:c0:
7a:6a:97:0f:8b:b9:5f:39:e5:af:a7:9b:7b:bb:6e:
98:93:94:3b:19:21:d7:7a:b7:b3:4d:ea:3f:68:fc:
fd:1a:b9:67:d3:b8:f7:db:77:ba:7c:d5:ad:f6:f6:
e2:79:cf:0d:64:02:2a:06:56:72:fe:19:29:94:f4:
a6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BB:C1:5C:F6:96:04:1A:AD:22:A0:1B:9A:45:A0:C8:53:36:A0:3E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1489486d-2844-4201-a953-25e29fcbea93.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:c5:9c:8f:63:22:f9:98:19:a3:af:f9:1b:1f:45:0b:d1:8b:
dd:f6:73:f2:f3:8c:a9:cd:0e:d4:80:7b:03:5f:2e:af:ee:4a:
7e:ce:d2:ea:02:30:60:71:01:d5:e8:40:89:67:31:75:83:8f:
df:5f:20:db:4b:e7:e2:b7:bf:28:0b:b6:05:1d:31:24:58:ad:
0a:61:74:e8:ff:20:be:42:1f:d1:6b:8a:da:a7:63:55:b7:17:
3e:fe:43:97:e9:b8:2d:ef:04:0f:68:b8:ed:2c:d7:f9:26:76:
ed:b6:05:74:36:8f:32:a9:b8:a7:af:6a:7b:ac:e3:c9:91:5d:
54:ff:16:e2:af:52:76:3e:45:10:ca:29:cd:5b:93:ac:ba:d3:
f8:dd:71:95:68:d3:51:ab:9e:00:ab:42:eb:32:9b:c8:91:46:
bf:c6:b6:88:cf:56:dc:14:ff:86:5f:f1:fa:80:e0:b5:23:f2:
f2:86:15:30:ad:4e:57:54:f5:9a:1f:1d:cd:1b:20:57:48:3d:
5c:df:bd:3f:55:f2:b7:02:40:6c:c8:08:a3:76:4c:35:8f:5b:
d4:9e:4b:90:e3:96:d6:ab:2c:05:18:56:e6:69:97:81:2b:a5:
41:c9:34:26:c3:95:d7:7d:f8:c5:d5:ae:18:2e:c3:c5:95:44:
37:5e:af:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:09 2023 by rpki-client on console.sobornost.net