Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c402749c-5ec0-4c20-97ef-97a60d811e49.roa
File: c402749c-5ec0-4c20-97ef-97a60d811e49.roa (raw, json)
Hash identifier: g+SaaB/qj0I0CNbnYnGo3woErLBQpR79UYXxnIt6gZ4=
Subject key identifier: 15:03:CB:DD:7D:69:7D:11:2E:9A:03:D0:A8:CB:D1:12:AA:55:EE:4E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 200F125393C4D020C25994689BFFD28080F4B687
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c402749c-5ec0-4c20-97ef-97a60d811e49.roa
Signing time: Sun 09 Jul 2023 00:00:00 +0000
ROA not before: Sun 09 Jul 2023 00:00:00 +0000
ROA not after: Sun 13 Aug 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:0f:12:53:93:c4:d0:20:c2:59:94:68:9b:ff:d2:80:80:f4:b6:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 9 00:00:00 2023 GMT
Not After : Aug 13 23:59:59 2023 GMT
Subject: serialNumber=0a4c9e1bfd4d083c4fd16aa9379190f2a6115bebd16ed5e1d850aeeadfe20614, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:06:10:10:88:fe:0b:11:35:dc:cc:0d:99:8e:
42:5d:9d:32:99:ea:af:c6:41:b4:ef:91:b0:bf:76:
2f:10:8a:84:6a:0e:9e:09:02:94:7f:74:c7:6c:de:
44:f4:c3:59:02:1a:b0:bf:f0:69:fc:e7:7a:d1:ee:
cc:b2:b3:1c:ec:74:32:14:65:ad:0c:21:03:35:9b:
c4:bc:fb:13:32:21:a3:bf:9f:a8:e1:3f:0e:36:a2:
64:4a:5e:f1:ea:26:40:0e:8e:b9:06:fa:8e:17:0e:
87:d9:7e:dc:e2:91:e9:7e:87:f5:a7:ae:82:52:45:
18:c1:a6:aa:46:08:7b:89:aa:64:15:87:cf:8d:30:
41:23:2b:18:14:24:bf:04:49:ed:46:a9:27:1c:d5:
4f:11:87:39:9a:df:60:d9:13:bc:2a:e6:08:62:ac:
10:0c:60:9f:64:59:44:cf:2a:d3:53:2c:12:74:c9:
8a:dc:f3:5f:0c:ee:a1:10:df:ff:66:d8:f3:ee:14:
ed:e0:28:22:a6:92:2f:42:62:bc:1b:ce:a2:8e:62:
09:5c:ea:64:2f:23:02:1d:fd:e9:f7:e9:32:c7:53:
91:da:ac:68:8e:8e:e4:4b:a1:bd:99:a8:80:b5:a1:
ab:1f:1b:83:0a:d6:d0:df:d6:f6:a4:80:ba:59:d8:
ae:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:03:CB:DD:7D:69:7D:11:2E:9A:03:D0:A8:CB:D1:12:AA:55:EE:4E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c402749c-5ec0-4c20-97ef-97a60d811e49.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
08:bc:0a:22:20:e9:51:cc:ea:3d:e6:d2:2e:47:07:c5:fb:c8:
69:0b:bd:32:e4:4f:45:4d:dc:04:15:e8:88:77:f3:37:90:f9:
ee:99:51:d4:08:96:e4:23:8a:93:c5:b7:66:fe:f7:34:40:39:
05:c3:8b:7b:ed:37:09:e6:f9:63:cd:c0:cc:81:8d:a7:fb:48:
a6:d0:2d:1a:c7:87:29:68:31:98:65:59:bb:8e:32:f4:15:09:
78:bc:51:de:31:02:2f:43:99:a8:47:dc:bb:32:f7:b4:54:a2:
17:ab:fe:7d:c2:3a:dc:7e:be:88:25:60:f5:9e:c4:a1:24:77:
5c:95:85:bf:f1:72:a5:00:bb:95:34:cb:e8:62:f8:32:42:5c:
52:33:2c:fb:ea:8b:c9:f1:dd:db:da:34:99:26:b7:d0:52:28:
7c:7e:ba:f4:ec:43:fc:bf:ed:48:d7:2e:65:61:0e:5e:dd:5b:
1e:f2:f0:eb:1a:be:5a:8c:68:ce:fd:66:54:9c:54:9b:6b:78:
4e:a7:93:31:1c:96:6b:7b:a7:24:0e:f0:9b:e6:5e:8e:bd:6f:
bf:08:f2:33:e4:60:cf:89:e1:28:ad:26:7b:ac:7f:e3:8f:ec:
1f:1f:b9:cb:06:59:6d:4f:4b:69:db:31:3c:1f:db:f9:7a:bb:
45:c2:da:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:13 2023 by rpki-client on console.sobornost.net