Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a8554b1-0f1e-4486-8d94-274256ca2527.roa
File: 8a8554b1-0f1e-4486-8d94-274256ca2527.roa (raw, json)
Hash identifier: Ax4HoF5c7cvm9KoIHGEHf+qaiB+DPjcndzb3ezTwmNk=
Subject key identifier: 95:34:69:D8:02:EA:30:99:E9:57:BA:79:5D:37:F5:B9:E1:6A:25:FC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 48EF49116F2D11FCE267DA56286F023410187EF3
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a8554b1-0f1e-4486-8d94-274256ca2527.roa
Signing time: Sat 14 Oct 2023 00:00:00 +0000
ROA not before: Sat 14 Oct 2023 00:00:00 +0000
ROA not after: Sat 18 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:ef:49:11:6f:2d:11:fc:e2:67:da:56:28:6f:02:34:10:18:7e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 14 00:00:00 2023 GMT
Not After : Nov 18 23:59:59 2023 GMT
Subject: serialNumber=a7c33965278aef555b5030c2711723ad3d379fcebb246bd835b791512ec72194, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c5:c0:33:18:41:ba:77:02:b8:d6:26:48:fa:
dd:4c:6b:30:29:87:a4:5f:3c:d1:a3:ac:53:07:d3:
eb:6c:46:af:57:82:68:4c:21:b3:37:cd:45:ab:53:
71:22:5c:4e:2c:34:fc:5f:68:8e:91:ce:de:9b:dd:
1d:8d:5a:0b:a8:9b:3d:2a:01:e8:a3:0e:f2:e3:85:
f9:13:19:b3:8d:f6:1f:66:a0:a9:e8:0c:0a:96:37:
bb:d8:2a:66:8d:e4:95:b3:45:5e:c0:86:8c:2d:d3:
f9:37:e5:df:3e:47:fd:0b:4c:7c:fd:7d:d8:e5:f2:
a4:e2:39:68:37:ea:98:2d:ed:d4:d7:fa:b7:44:a0:
0a:5a:b1:0b:e2:94:97:99:c5:26:15:d6:0b:1d:76:
f4:32:08:64:c6:8b:3f:7a:28:34:3a:8d:d0:89:ac:
c4:79:36:13:09:a3:dc:bb:e3:22:6b:dd:03:43:06:
d3:94:d6:b3:4d:5b:2e:a2:e4:ef:83:13:e9:5f:81:
fb:b2:f3:ce:cc:0e:e1:41:a4:e8:1a:11:0a:9f:73:
24:1c:7f:90:db:fc:0c:70:18:72:50:df:f4:c9:72:
9e:f9:35:24:aa:52:c0:97:71:91:7a:6a:06:a5:1a:
50:d2:5a:ed:bb:4c:8b:61:79:72:9d:ee:33:20:a5:
65:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:34:69:D8:02:EA:30:99:E9:57:BA:79:5D:37:F5:B9:E1:6A:25:FC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8a8554b1-0f1e-4486-8d94-274256ca2527.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
74:7a:da:67:69:a0:a0:dc:69:5e:46:c3:6d:ae:54:2a:3f:19:
2c:f4:4b:f8:23:65:65:ca:0f:50:81:bc:f6:86:9b:2f:7d:6f:
2a:60:3f:da:44:b1:9f:fe:4d:cf:22:4d:74:02:10:17:bc:b1:
cb:3a:49:f8:46:73:51:69:f4:0b:c5:ed:00:a2:8f:cf:a9:f2:
d1:a5:0f:e0:ee:78:c8:15:f1:f4:31:5c:3d:c0:fe:5c:0b:87:
10:4f:2f:96:a9:aa:33:93:2f:68:b1:ed:55:a5:1a:88:8b:f0:
59:79:95:8c:c7:e6:56:47:8f:b8:e4:12:72:eb:8f:a3:b2:98:
d8:c1:bd:55:6c:e4:2f:33:da:c1:78:a1:49:97:55:74:3f:b0:
f5:bd:eb:3a:3a:8e:ce:1c:23:e3:17:f5:fe:f1:b1:71:54:cc:
dc:cc:60:6d:3c:b7:85:ed:62:d2:7c:52:16:6c:e7:21:2d:0e:
76:27:07:ca:0c:77:cd:0a:68:76:1e:27:cf:f9:7c:c9:6d:23:
92:0f:93:04:d6:c8:b0:a3:04:ec:f9:a5:a1:be:cc:49:28:84:
36:4b:dd:b6:fb:73:57:88:03:5b:4f:2f:c0:e2:f2:73:ca:0e:
9e:a6:5e:8b:20:6d:25:66:c7:1d:58:b3:4b:58:9f:4c:e5:54:
c2:ca:7a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:01 2023 by rpki-client on console.sobornost.net