Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/61549b10-4a88-4c41-9b0e-581631c98885.roa
File: 61549b10-4a88-4c41-9b0e-581631c98885.roa (raw, json)
Hash identifier: f2FQVJpm5yohovzOpGY+TLeYV/ZYQZLwnPZ9pdkflhc=
Subject key identifier: 7A:60:47:31:EF:DC:F0:EF:0F:36:99:C1:F5:FF:54:7C:FA:37:8F:80
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 44C0B995326BFA9DC05933296D65E978AA6529DF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/61549b10-4a88-4c41-9b0e-581631c98885.roa
Signing time: Tue 21 Nov 2023 00:00:00 +0000
ROA not before: Tue 21 Nov 2023 00:00:00 +0000
ROA not after: Tue 26 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:c0:b9:95:32:6b:fa:9d:c0:59:33:29:6d:65:e9:78:aa:65:29:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 21 00:00:00 2023 GMT
Not After : Dec 26 23:59:59 2023 GMT
Subject: serialNumber=aacf5fbb6607c434f29f8e22f655a3f9d3b3939fdf49a78bf8e8202035e3f9cf, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:d8:64:a2:3f:0a:ad:e0:79:c6:d5:87:80:3b:
fc:f4:79:dd:06:9c:29:98:b7:38:40:d0:36:50:ac:
a2:98:9f:bb:c6:a2:4a:53:ae:b3:0b:2e:a6:54:8d:
b0:b7:1d:c5:35:b6:ba:ba:fd:16:61:6b:4b:e5:2f:
5b:e1:c8:bf:e8:76:91:f0:4e:f2:9b:9a:64:3e:74:
8a:c3:07:6a:51:1b:61:8e:f5:37:db:c5:53:59:13:
e0:63:6b:cc:d0:63:28:a5:db:4d:5f:9c:76:d6:5f:
65:12:08:ac:97:f0:49:3d:6b:9b:70:20:6e:41:42:
bb:e6:3d:af:56:e6:9b:04:c7:2d:5f:56:05:db:d0:
84:c8:b3:de:8f:8f:d4:5d:f3:61:ac:90:e1:51:2f:
7d:8e:f0:88:80:58:e4:1d:a9:80:e1:da:52:36:a5:
c0:3a:27:55:cb:0c:ab:ed:db:43:b3:68:ab:44:b1:
e3:ca:4c:85:0f:5b:a7:5e:a7:e6:9c:8b:ab:0e:2e:
3c:5d:6f:1c:4d:21:3f:62:cf:b6:20:ec:e1:10:5c:
f4:2a:d1:dd:39:83:5c:0f:9c:2b:c5:a4:6b:cb:e1:
dc:29:de:a3:0c:a5:cd:12:c1:c7:db:a7:55:e7:9a:
45:b0:57:76:53:71:a4:6a:d1:85:11:48:d0:af:75:
da:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:60:47:31:EF:DC:F0:EF:0F:36:99:C1:F5:FF:54:7C:FA:37:8F:80
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/61549b10-4a88-4c41-9b0e-581631c98885.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:5b:56:c8:1c:87:2a:bf:cd:df:7c:d7:5a:79:5a:f7:f6:16:
0c:aa:2c:c4:75:79:cd:28:c8:93:ac:e1:29:f0:c3:df:31:a0:
10:01:f8:fd:ee:29:13:14:8c:22:2e:97:de:81:b3:82:69:33:
a0:d4:4c:b0:c9:fb:ac:25:39:b5:d2:ed:a0:13:fb:7b:db:71:
33:dc:ca:2e:31:5d:c4:7d:78:cf:f2:18:74:a4:a3:2b:d3:48:
42:99:db:8e:07:66:4a:b8:74:e4:5b:75:97:f4:91:b8:e6:fb:
41:fc:08:77:4a:7b:9e:4b:be:97:b9:76:c1:be:b8:72:fe:9d:
f2:7c:54:15:5e:73:ce:4e:40:8a:e1:a7:1e:c1:89:28:72:a8:
23:15:a1:f7:af:5e:67:34:dc:6a:e2:4e:cf:9b:29:8d:20:58:
d4:62:a3:2f:04:db:74:e4:d6:b3:8e:30:56:70:5c:ac:37:31:
2c:6a:51:b1:48:e2:99:25:fd:c8:fa:10:c5:f2:b1:2b:b1:1c:
8c:1c:c0:cd:7d:46:fd:28:e0:04:d9:d9:90:b8:6b:a6:ba:8c:
ae:c4:c7:a3:0c:19:d9:d9:93:0b:52:4c:5d:4e:3c:b3:6d:92:
f0:a6:0c:7a:ed:03:60:02:0b:75:d9:ed:fc:18:44:b5:9f:53:
eb:9d:c6:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:50 2023 by rpki-client on console.sobornost.net