Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a6c54168-b96d-415a-996e-d74a396bd478.roa
File: a6c54168-b96d-415a-996e-d74a396bd478.roa (raw, json)
Hash identifier: T3T1Hb0y4IyEy+rZAiJpuMvsrk6+IH8pkyxML0gD+5o=
Subject key identifier: A6:12:3E:7E:1A:3E:B5:78:81:A4:12:FB:AB:36:5A:E1:45:47:66:53
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 268D0421E8528B024F49F237D054D9290B304E55
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a6c54168-b96d-415a-996e-d74a396bd478.roa
Signing time: Sat 23 Sep 2023 00:00:00 +0000
ROA not before: Sat 23 Sep 2023 00:00:00 +0000
ROA not after: Sat 28 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:8d:04:21:e8:52:8b:02:4f:49:f2:37:d0:54:d9:29:0b:30:4e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 23 00:00:00 2023 GMT
Not After : Oct 28 23:59:59 2023 GMT
Subject: serialNumber=1d06f160ad27bc53bd32ed7dbb708a12eb64331dacb9d0e3199b90c8732f921b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0c:9a:10:6a:8f:01:3f:e9:5d:ae:a3:ee:dc:
a3:29:81:85:e5:37:fa:69:1f:f7:13:96:d2:48:b0:
88:0f:41:08:2e:f3:4a:a8:fb:a6:4b:56:02:44:b9:
e8:48:f9:a6:59:81:ad:3f:cd:e6:98:32:2a:bd:57:
74:1a:4f:7c:fe:86:24:73:6b:a0:23:e0:6f:4c:75:
fc:12:43:81:f6:8a:a6:4b:be:a3:20:ae:5d:d2:65:
7c:a1:78:62:ba:98:e3:08:63:df:76:60:72:d2:fc:
12:8f:4d:2f:fd:7c:63:43:b7:34:bc:be:d3:f4:6e:
30:c2:cc:3c:0b:b7:3f:55:03:26:17:03:16:3f:59:
86:30:2f:8a:7c:6b:db:9e:bf:da:d7:41:94:6f:37:
2c:33:26:78:e3:f3:4a:e1:ea:b4:61:05:9c:eb:45:
39:db:bb:44:37:29:50:bf:bc:6e:9d:5a:ea:7b:0e:
bd:19:78:d6:ae:aa:71:24:90:42:bd:33:db:48:23:
71:11:7b:08:46:9c:67:ec:9a:f9:e7:5a:ab:1b:f1:
00:6a:75:c4:dd:71:c0:d9:df:73:ff:73:82:03:4f:
bb:e1:73:bb:f5:7f:af:2b:52:a8:45:c2:c9:b6:61:
31:10:e6:80:18:95:23:ba:ff:5f:a1:bf:59:04:d5:
cf:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:12:3E:7E:1A:3E:B5:78:81:A4:12:FB:AB:36:5A:E1:45:47:66:53
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a6c54168-b96d-415a-996e-d74a396bd478.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
69:d4:fc:0a:1b:0d:90:d1:19:13:00:18:55:40:1e:07:6a:c6:
79:26:72:2a:cc:bd:18:ca:b4:0b:14:07:2e:70:8b:3b:1f:ae:
08:ae:eb:a5:76:cb:a5:5c:b0:8d:73:bc:b4:48:fb:b5:e5:92:
14:e5:42:86:fb:6c:0a:20:b0:96:06:43:92:ff:4f:97:f2:c8:
de:81:40:a3:44:b6:73:7d:38:0a:8c:3e:0b:3e:a7:b0:24:1b:
f1:dc:64:90:f2:38:b3:5e:4c:d2:fc:ab:17:6d:9f:06:b9:52:
1e:ae:d6:90:ea:3f:a3:b8:40:2a:84:33:29:ab:44:dc:40:5e:
7d:b2:b5:e5:79:0b:93:39:78:d2:05:14:5f:e5:8e:cf:bb:10:
34:1a:f1:94:e7:1a:75:1e:20:39:46:e1:1b:c1:67:b9:84:36:
db:d2:59:67:de:07:20:57:f6:5b:5c:53:3e:99:19:c5:f2:8f:
11:31:9c:9a:e5:3b:02:49:6a:0c:44:69:fc:f3:86:fd:38:f4:
95:59:93:36:c4:44:13:ab:e4:8d:66:da:de:9b:3f:6b:4a:c7:
7a:df:b3:27:2f:75:61:cd:91:3b:6d:a8:88:90:23:63:de:84:
7a:5b:31:4e:20:bd:fb:69:44:94:c6:03:72:db:f2:c6:3a:cd:
34:28:4b:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:07 2023 by rpki-client on console.sobornost.net