Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/168bfe5a-e302-42b7-b9b1-78e5a5647040.roa
File: 168bfe5a-e302-42b7-b9b1-78e5a5647040.roa (raw, json)
Hash identifier: zSpTWEzSaIbGKO1JuGaFqaai14ip/pllaz2AIg7/Cxo=
Subject key identifier: 59:6F:20:EF:13:74:53:8B:01:1B:96:B6:13:7A:53:F4:07:94:99:56
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 30AFF607C74287872983E35A883A1241B451844E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/168bfe5a-e302-42b7-b9b1-78e5a5647040.roa
Signing time: Sun 19 Nov 2023 00:00:00 +0000
ROA not before: Sun 19 Nov 2023 00:00:00 +0000
ROA not after: Sun 24 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:af:f6:07:c7:42:87:87:29:83:e3:5a:88:3a:12:41:b4:51:84:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 19 00:00:00 2023 GMT
Not After : Dec 24 23:59:59 2023 GMT
Subject: serialNumber=272a49348f8cd7372828a8d5471e62a1bbab483123b3a4abc25e5971eac62c39, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:96:bf:01:62:cf:b7:e0:61:b3:e1:db:3a:43:
bd:13:01:0e:cc:64:41:e1:b0:37:ed:2e:36:f4:f6:
53:86:d4:91:98:68:84:aa:5e:ac:28:55:43:11:57:
30:dc:82:7c:0c:a9:d9:7d:fc:d1:91:8c:e2:66:e2:
5d:93:8f:18:34:62:01:95:dd:f6:0b:c6:79:b4:03:
3c:a8:ae:05:38:e0:6a:1e:cf:0c:92:4f:ff:74:17:
36:db:cc:03:72:93:a2:48:ab:12:ff:80:43:09:56:
a7:3e:48:ac:18:02:6f:d6:ac:5e:04:3f:49:b0:cf:
6c:f5:bf:e1:1a:0d:ce:c3:c8:67:ff:e7:38:2a:e3:
31:56:71:22:59:10:bc:c5:06:ef:a0:ad:ef:5a:05:
00:e5:d1:04:81:e4:d0:61:c7:fd:9b:2e:8d:ea:17:
06:c2:87:ad:1c:a7:c2:74:b4:15:8b:10:fb:b7:e0:
d6:59:2d:10:a5:3b:b2:65:0f:ea:c0:9f:34:5b:91:
13:89:3d:ae:39:98:79:09:e7:8b:5c:b3:78:b4:07:
51:b4:b9:81:c0:a7:aa:1b:a8:0f:55:10:4f:6a:e6:
e2:34:36:27:5c:31:5b:d5:5f:5a:31:cb:3a:f7:b0:
59:73:ed:a0:dc:ae:d8:fc:27:a3:58:79:9e:e6:0f:
89:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6F:20:EF:13:74:53:8B:01:1B:96:B6:13:7A:53:F4:07:94:99:56
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/168bfe5a-e302-42b7-b9b1-78e5a5647040.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:21:ca:3a:70:cd:48:83:63:f0:a7:b5:b1:e1:30:40:63:74:
cb:29:83:9b:5b:38:dd:b0:17:6f:22:13:0a:6d:6a:3d:d1:a1:
09:50:7b:2a:22:f1:38:ab:e3:3a:78:5a:af:40:25:9d:76:d0:
3e:77:31:e8:e7:0c:49:91:e9:da:10:d3:22:73:28:3a:c6:f8:
18:00:b9:79:a7:94:b1:f6:f2:2b:bb:4a:5e:08:84:16:a1:29:
52:06:1a:63:db:5c:cf:7a:d3:22:4f:32:1a:a9:fa:2f:a2:a7:
14:51:e6:82:64:f5:94:92:f3:8c:a5:ac:d1:5b:ed:3b:cf:d3:
c4:49:60:79:16:db:9c:6f:0e:ec:02:38:b4:21:17:30:ba:4b:
7d:82:f8:ce:b7:d4:f0:de:06:f5:da:14:ac:9c:72:85:3f:6e:
49:17:ea:cc:21:84:97:a5:22:0c:22:8d:4a:a4:b9:ef:22:91:
d1:f3:d2:8c:d3:55:8a:74:79:f4:34:3e:ad:54:37:95:3f:b9:
5a:e9:09:2b:db:79:6f:be:23:10:a1:6b:e5:9e:fb:94:51:1c:
88:ff:b1:32:67:96:fa:af:73:3d:18:89:93:c6:2a:b8:ac:05:
f1:d7:51:26:03:93:e6:9b:7e:b2:d4:8b:d1:e4:ee:bf:ed:70:
9a:b5:30:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:09 2023 by rpki-client on console.sobornost.net