Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/810892e3-91c7-4a26-9437-29bf2e442d8f.roa
File: 810892e3-91c7-4a26-9437-29bf2e442d8f.roa (raw, json)
Hash identifier: UIUUGJt9SmOACFmX1FG1b8MYo2SdBqrB4j9n1VLnrOg=
Subject key identifier: 5C:C0:08:12:A0:42:F4:B0:92:A4:D0:07:68:BB:E0:A6:EA:8C:0F:71
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0CEEBE62582670B071E12A2B21BD2ED9B6C74965
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/810892e3-91c7-4a26-9437-29bf2e442d8f.roa
Signing time: Mon 11 Sep 2023 00:00:00 +0000
ROA not before: Mon 11 Sep 2023 00:00:00 +0000
ROA not after: Mon 16 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:ee:be:62:58:26:70:b0:71:e1:2a:2b:21:bd:2e:d9:b6:c7:49:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 11 00:00:00 2023 GMT
Not After : Oct 16 23:59:59 2023 GMT
Subject: serialNumber=70b07f7ca20b63b2127afcc8490ed7c217fc4df83b95fd11c53c6e30265f88af, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:08:4d:56:64:ba:73:b9:dc:78:c4:74:e1:da:
a0:a0:3b:90:e2:09:de:0a:7e:d9:f1:e3:b8:f0:ac:
60:d7:60:87:37:e2:42:23:81:22:5a:3b:9d:f4:8c:
9a:bf:60:57:dc:40:7a:d4:8c:a7:9e:a2:21:54:8c:
b3:66:8b:35:70:44:b3:5f:9c:52:c5:2b:78:51:7b:
96:a4:4b:a8:da:9d:42:00:3e:ff:1c:02:de:a4:b9:
98:10:4c:62:96:24:1a:be:f2:3e:af:ff:95:4b:e9:
6f:d1:11:42:bd:fc:06:5a:8e:24:28:02:64:9b:05:
c7:7f:72:73:f7:5e:9f:02:e3:32:3a:7e:60:e9:e1:
3a:e8:a3:c0:4b:4b:ac:d1:15:41:d8:d9:59:45:be:
0d:4a:4b:33:88:63:8e:2e:e2:6b:1f:c5:fe:69:62:
98:b7:c8:7d:c9:3d:7c:39:17:6e:e1:ed:51:b9:48:
86:0c:6e:ab:95:69:d4:a4:d8:7c:ad:1f:c9:bc:31:
df:b7:a8:c7:0c:61:e6:04:65:eb:5b:9f:a0:1c:2f:
08:92:d9:d8:ca:16:8d:81:2b:46:39:25:cf:76:49:
5c:1b:c9:cd:ec:c8:77:8f:85:a3:5c:70:58:5d:43:
7b:6e:da:70:ed:1d:dd:ad:bb:e8:6e:d5:49:b1:0c:
68:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C0:08:12:A0:42:F4:B0:92:A4:D0:07:68:BB:E0:A6:EA:8C:0F:71
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/810892e3-91c7-4a26-9437-29bf2e442d8f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:0a:f6:bb:53:b3:ce:b5:d4:df:39:e0:21:b7:4f:30:b1:7c:
57:77:ca:0d:d1:4b:2b:50:9d:0b:bc:11:df:1e:87:4e:51:c9:
45:a1:6f:ca:28:4c:aa:75:a9:8d:e8:a3:4a:cc:18:77:2e:e9:
ee:1a:4d:b2:f2:4d:c1:49:bc:12:c1:d1:03:5a:51:07:08:28:
e7:27:80:9a:fb:e6:29:0e:e2:e6:92:25:7d:d9:91:61:e1:69:
ed:4d:04:c9:77:43:27:2f:e9:02:7a:7e:23:41:1d:69:ec:00:
6a:df:33:82:35:f2:5f:a0:b9:89:63:a2:da:40:75:42:3d:c6:
59:7a:90:0e:bb:56:fb:dc:4a:9a:78:be:97:29:38:d6:6e:37:
6c:23:0f:07:c8:a1:5c:2d:fc:31:eb:74:7a:8e:aa:10:18:72:
15:b9:84:3d:69:85:e3:22:a9:6b:6c:1b:05:e6:d9:96:b2:61:
a8:70:e6:35:df:3c:0c:8b:5d:e0:5e:81:c5:2f:fc:7f:16:c6:
dd:a9:30:45:aa:8a:e2:89:95:a4:6d:24:87:7e:d0:f5:09:02:
86:f0:f8:d4:54:8e:ff:ec:34:51:c1:c4:13:3f:bb:e7:81:61:
a2:0b:2a:29:85:ce:ae:00:f0:72:56:68:49:b0:d7:f9:f4:01:
c2:74:d6:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:59 2023 by rpki-client on console.sobornost.net