Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/76fb9986-1fdd-41bd-9581-19c2dc0fad8c.roa
File: 76fb9986-1fdd-41bd-9581-19c2dc0fad8c.roa (raw, json)
Hash identifier: 6+egNxypwYRJWi8kSLMDz+RIIBsfV+Pb/bmu5wp+P3k=
Subject key identifier: 65:B1:67:9C:59:A6:82:17:55:E1:31:5C:BC:F1:93:7B:39:23:CE:25
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 507675FD6B6931B79264A5054D9B60534390AFB0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/76fb9986-1fdd-41bd-9581-19c2dc0fad8c.roa
Signing time: Wed 27 Sep 2023 00:00:00 +0000
ROA not before: Wed 27 Sep 2023 00:00:00 +0000
ROA not after: Wed 01 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:76:75:fd:6b:69:31:b7:92:64:a5:05:4d:9b:60:53:43:90:af:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 27 00:00:00 2023 GMT
Not After : Nov 1 23:59:59 2023 GMT
Subject: serialNumber=6f4fadc3574f03089a3602696bb9b85ac5c8e663f1dec11b82ff9c8bab809872, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f0:2c:4d:b3:ad:1b:e3:10:d1:3d:7d:4a:f7:
e4:1e:11:c9:7b:4f:6b:9d:53:7e:5a:40:68:11:bb:
38:96:0f:b2:7a:32:fc:32:2d:aa:af:7f:ae:9d:d3:
9c:64:d7:58:64:a1:df:21:30:df:de:24:58:eb:f0:
f8:1d:58:da:d5:50:4f:18:0a:71:03:4c:0e:c8:95:
62:a5:d6:d8:75:e1:41:2b:61:c5:b4:a4:59:92:87:
79:7f:2a:06:3c:e8:74:33:01:0e:66:04:3e:6a:4c:
c6:3b:ac:be:a0:61:90:3f:8b:79:6b:85:81:81:db:
fd:0d:13:03:3e:59:64:2f:32:5b:aa:fa:97:aa:47:
1a:bd:b0:84:cb:b4:fb:9f:30:8a:48:db:65:51:9c:
e4:bc:1a:f9:c7:77:98:7f:7d:c4:22:dc:1a:73:da:
65:50:89:79:1d:2f:df:67:f1:97:f9:da:ba:f6:1b:
1b:a8:44:33:f7:8f:39:c3:18:48:74:8b:b6:7a:e7:
95:5e:66:e9:e1:c2:e1:09:2f:4f:60:cf:70:b8:fa:
aa:46:26:3c:03:48:a8:a5:30:e7:2e:0a:67:a8:8f:
f5:a8:57:af:a0:7f:3f:27:be:0a:d3:0e:3a:49:be:
a0:a7:af:f1:24:c1:74:7f:4a:59:a8:ce:b7:39:20:
79:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B1:67:9C:59:A6:82:17:55:E1:31:5C:BC:F1:93:7B:39:23:CE:25
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/76fb9986-1fdd-41bd-9581-19c2dc0fad8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
02:4e:42:a2:0b:69:5f:02:ab:70:44:bd:28:7c:ed:6e:ae:24:
7b:c5:90:3c:87:1e:60:0d:fb:7f:52:c9:f7:b1:99:2e:34:3e:
40:63:0c:65:9b:4e:c6:36:1d:9c:fe:c7:2b:ff:41:7d:c7:fa:
75:2b:1a:78:f7:57:36:af:99:53:05:b5:d4:ae:fd:52:ba:0f:
2c:f4:1a:70:72:e6:30:2c:cb:f2:32:16:35:34:e0:64:90:e2:
fd:58:fb:5d:4f:ef:2f:93:00:42:d8:83:76:72:4a:58:08:e1:
c8:72:18:ff:a3:98:f6:71:5f:67:8f:87:8b:f8:af:84:91:e9:
56:05:27:df:e0:ce:69:00:cd:07:39:dd:fa:88:c8:62:40:f8:
78:96:64:39:be:4e:5c:6e:f8:12:63:1d:05:f9:d0:83:a1:69:
5c:af:84:9d:db:5c:f9:70:95:41:2c:9c:da:46:f4:71:ed:5c:
a1:bc:33:a8:1d:50:ab:93:1c:3c:9c:2b:00:8b:6a:50:98:8c:
6e:d9:a9:57:cf:86:35:e5:92:04:57:82:3f:61:60:e9:fe:bb:
dc:70:6a:b2:b1:3b:99:4c:c4:bc:9b:79:41:c1:ed:66:51:81:
03:09:25:22:e1:22:e2:9a:fd:7f:c4:e9:8c:fc:89:1d:be:b2:
70:86:d0:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:55 2023 by rpki-client on console.sobornost.net