Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/28899a88-90ed-4600-a2a3-fa93058f4ac5.roa
File: 28899a88-90ed-4600-a2a3-fa93058f4ac5.roa (raw, json)
Hash identifier: nMzmIkqxWqWF7mAF1D6mZ9WRvgm+CBSy8Xk3qHxB0Tg=
Subject key identifier: 4F:DF:DA:C7:8D:64:B5:77:B8:3B:F4:17:69:08:40:A0:3B:47:AF:39
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3A6E38ECCA8100D375CB121523E5860BCC8D74DC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/28899a88-90ed-4600-a2a3-fa93058f4ac5.roa
Signing time: Sat 19 Aug 2023 00:00:00 +0000
ROA not before: Sat 19 Aug 2023 00:00:00 +0000
ROA not after: Sat 23 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:6e:38:ec:ca:81:00:d3:75:cb:12:15:23:e5:86:0b:cc:8d:74:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 19 00:00:00 2023 GMT
Not After : Sep 23 23:59:59 2023 GMT
Subject: serialNumber=621ddf49bd774713b604207559aeeeb1b1177a29f37e4b70814d5ff9e17a803b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ed:96:86:0e:88:34:f8:5d:ab:93:c2:44:7d:
e4:8d:b7:fe:74:19:7e:62:cb:d7:27:dd:20:71:c7:
6f:0f:7f:88:27:73:56:b2:52:8f:a7:a8:2a:13:ac:
1d:39:26:4b:2d:48:f8:12:46:22:ad:16:2a:2b:77:
4d:51:fe:bd:e0:2d:c7:da:01:96:43:21:1e:e3:8d:
74:46:1e:97:a8:47:68:15:21:38:32:6c:f1:fe:6b:
b5:34:56:73:b8:89:2d:87:c0:33:62:b4:14:16:03:
58:d9:76:a4:97:d3:76:70:f3:24:b2:4e:13:a6:75:
76:28:5d:b1:af:ab:98:c6:c3:a3:60:56:c4:30:df:
65:84:2e:d8:62:7a:a3:2c:a8:4d:78:bc:99:c8:42:
0c:e5:90:6d:e6:67:58:12:2b:0d:64:42:c2:27:d3:
1d:88:59:c3:1d:31:fb:3b:13:d8:f8:33:cf:2f:7d:
1f:76:86:e3:7c:a3:b6:49:b4:df:de:0e:a1:26:5f:
b7:f1:46:78:da:f9:05:6e:22:e1:60:b5:0e:80:a1:
d4:55:b2:d9:af:cd:19:39:92:2b:a2:be:70:e5:fa:
8d:0f:9b:96:e6:61:be:65:cc:8e:7d:c9:04:44:a3:
4d:02:da:d3:d9:b3:6c:94:e8:0a:c7:70:b0:3f:f0:
dc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DF:DA:C7:8D:64:B5:77:B8:3B:F4:17:69:08:40:A0:3B:47:AF:39
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/28899a88-90ed-4600-a2a3-fa93058f4ac5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:49:c7:9c:19:52:25:81:23:68:21:4f:28:40:29:f8:5c:71:
51:d3:ad:60:89:62:69:17:59:ec:a3:d1:9b:e9:b2:50:38:a8:
72:55:a7:5e:ba:00:b2:5a:b2:9a:21:30:20:4c:f1:5b:f0:d3:
64:4b:4d:c0:b1:f5:17:ee:20:28:9b:9f:c8:61:13:5c:65:73:
f5:65:cb:87:dc:57:d1:19:ff:ca:3a:59:29:0e:82:43:60:17:
ed:0e:a3:e7:05:e2:b4:5e:aa:eb:83:ed:15:f3:6f:51:bb:37:
dd:86:ef:df:11:7b:7c:3f:43:ce:9b:c6:fa:f9:a1:f1:4d:ff:
26:79:55:ee:e7:7e:e6:42:69:8a:6f:a9:de:68:91:c9:f2:95:
8d:36:15:b0:a7:72:b4:c1:fa:25:16:b6:2b:e3:59:cf:3b:16:
5c:0b:0b:c8:79:b2:8f:10:37:ec:dc:13:ff:c6:fa:2b:f8:96:
1c:4c:24:f0:bc:89:d6:06:5e:aa:db:52:b6:6f:0d:21:3a:9f:
f8:fc:5e:1f:42:ef:25:d7:52:69:66:6c:0e:db:fe:42:8d:63:
0c:28:d0:1f:61:a1:7e:97:7f:d8:16:ca:0e:e9:f7:18:fc:c9:
5c:d9:e9:17:8b:b7:51:06:dd:02:62:4f:c4:4c:c3:76:31:e0:
4b:4c:8f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:12 2023 by rpki-client on console.sobornost.net