Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4d683fde-2068-402b-8f0c-83d0fceb171e.roa
File: 4d683fde-2068-402b-8f0c-83d0fceb171e.roa (raw, json)
Hash identifier: GVuaTE0X7XCm5d3fDfwgIxWF++Thl0LUZT+K7+ZNXAI=
Subject key identifier: 75:9B:01:26:47:09:C4:B3:A5:F1:83:15:9C:DD:C9:5E:69:6F:73:67
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 14C732956F6C05080829B3DBE5A904F2E55DC96D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4d683fde-2068-402b-8f0c-83d0fceb171e.roa
Signing time: Wed 05 Jul 2023 00:00:00 +0000
ROA not before: Wed 05 Jul 2023 00:00:00 +0000
ROA not after: Wed 09 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:c7:32:95:6f:6c:05:08:08:29:b3:db:e5:a9:04:f2:e5:5d:c9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 5 00:00:00 2023 GMT
Not After : Aug 9 23:59:59 2023 GMT
Subject: serialNumber=8d6e7c908a5b7a08b5d682d7fe1bd0b88e203faba2a3bfdda9f1d17c8b659d20, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:23:36:68:df:2c:44:c2:0e:03:ab:3c:d9:06:
fb:0d:99:1c:5e:29:64:3e:fd:6c:76:69:95:80:6d:
84:c9:11:d9:a4:e0:78:75:e3:08:79:ae:67:d7:69:
e8:43:0a:12:16:e6:f1:4a:79:1e:4d:d5:e6:cb:c9:
17:86:be:ff:59:ae:52:8c:1c:a2:a0:a4:7a:ff:1b:
d3:37:18:1d:12:23:b6:bc:b0:bd:03:7f:ef:97:c2:
5d:14:50:f0:a5:c9:1c:58:b9:bc:38:bb:30:0e:9e:
c2:7f:c8:a1:12:88:0d:c4:1a:f2:42:96:23:3c:ea:
a7:32:dc:0e:21:f1:73:c1:c1:b9:ae:52:fb:57:9c:
ca:8c:6b:9f:53:d3:7e:87:a3:00:f3:63:d4:3d:11:
97:82:12:86:5e:aa:74:33:89:74:d5:3e:fb:72:c3:
e7:fa:1a:ac:b0:9f:9e:4d:7b:45:ac:d7:71:98:46:
7c:35:c1:c3:3d:92:a2:c8:12:4e:d7:5e:26:f3:74:
23:da:cc:fe:26:fd:31:e2:e4:6e:1a:86:6a:9a:b5:
3b:13:28:69:7b:2a:0e:1a:5a:fc:2a:23:62:8c:2c:
6e:89:64:5b:4d:9c:24:ef:73:20:ed:85:83:95:a9:
18:b5:10:a4:aa:82:40:7f:a7:f0:67:01:3e:4d:05:
cf:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9B:01:26:47:09:C4:B3:A5:F1:83:15:9C:DD:C9:5E:69:6F:73:67
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4d683fde-2068-402b-8f0c-83d0fceb171e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:32:b3:86:af:87:05:88:d1:8b:88:a6:fa:08:1b:be:33:dd:
57:7e:20:33:06:65:f1:1e:1c:a6:7e:ec:22:93:70:04:6a:04:
89:a1:b2:0f:dd:89:0f:ae:61:f5:99:b0:0b:50:2c:f8:6f:40:
b5:72:34:66:02:de:f6:b2:d8:bd:e0:14:e3:0a:ef:3f:6a:a9:
ea:98:ec:b7:ca:7c:00:1a:91:73:e7:8a:dd:23:15:fe:8a:a0:
45:96:bd:3b:0f:7b:16:d4:83:24:99:93:cb:a4:53:84:ae:06:
81:a5:91:8e:5c:b2:04:bc:54:7c:5d:d8:d5:1c:bb:df:dd:02:
2d:2b:06:36:f8:40:61:96:45:4f:03:b6:42:b8:36:8f:b5:b1:
07:98:d4:26:63:35:85:13:38:7a:ef:dd:98:0c:c8:f5:5a:f7:
3f:a7:b3:3f:7f:47:9c:ce:96:2b:06:31:65:76:33:c0:f2:69:
03:ad:ce:fd:0a:03:29:20:e3:ee:e9:e5:c3:07:fe:cb:07:1a:
bf:54:15:16:8d:f9:cf:a8:63:ac:42:97:fe:02:40:ca:ec:bb:
4d:1a:01:27:79:54:44:f5:74:78:be:4e:4c:54:8a:d6:6b:f4:
b1:59:f3:61:12:f3:4c:9c:13:4b:20:52:fa:29:4d:a1:d3:7e:
d0:af:a8:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:15 2023 by rpki-client on console.sobornost.net