Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e58ab6e2-41bc-4f36-84fe-a9d3796a8671.roa
File: e58ab6e2-41bc-4f36-84fe-a9d3796a8671.roa (raw, json)
Hash identifier: lquJKhPdZqq4imo4L6R+zWioj1MwgwkINOIwgEW2WSc=
Subject key identifier: B0:36:F3:94:DF:A0:CD:EF:62:DC:C8:91:BC:BC:8C:07:F7:C5:55:E9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0D87A1A3BD33C4B8551BDD5E63D068B727D0B21B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e58ab6e2-41bc-4f36-84fe-a9d3796a8671.roa
Signing time: Fri 13 Oct 2023 00:00:00 +0000
ROA not before: Fri 13 Oct 2023 00:00:00 +0000
ROA not after: Fri 17 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:87:a1:a3:bd:33:c4:b8:55:1b:dd:5e:63:d0:68:b7:27:d0:b2:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 13 00:00:00 2023 GMT
Not After : Nov 17 23:59:59 2023 GMT
Subject: serialNumber=448835aabfd25c8daf5e26d76337af0e62b589d5bd18ead1c64353f9db59e969, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ab:e0:12:f1:4b:c6:46:3b:f4:5f:e5:b2:7b:
ef:70:17:80:b6:e0:1a:8c:c1:a6:4a:22:85:64:5f:
38:a0:ce:33:6d:37:04:f0:0d:51:84:10:8c:9b:20:
16:58:27:96:3d:65:13:f0:88:92:9b:b3:27:5b:ea:
47:12:74:3f:34:fc:aa:7c:81:d8:70:f6:d0:a1:68:
30:4a:7a:25:62:e0:70:07:53:24:ba:cb:22:42:37:
fb:2d:bf:94:1a:03:dd:74:f0:6f:b2:8d:bc:a6:c2:
a8:c5:ab:5d:96:db:10:6a:50:bb:d3:d5:1a:f8:4d:
c2:e0:ee:18:51:f9:d5:8e:dc:b0:97:fd:eb:ef:36:
3e:57:4f:a1:64:da:b7:c8:27:e2:ed:6d:86:e3:83:
a8:8c:80:7f:60:73:2f:ef:86:0d:14:1c:7d:95:ec:
21:6c:c3:9e:12:53:ca:ea:92:66:04:c7:40:be:5c:
c1:4a:7a:ab:d8:85:2c:cd:55:36:b4:b2:7d:9a:d8:
36:19:ea:69:f7:49:cc:18:72:19:ae:fa:57:c2:3a:
3e:da:13:a7:ff:c4:e5:c5:d1:0d:a8:e5:f3:b5:c6:
fa:7a:d1:34:bb:d7:0f:77:7b:b0:d0:ec:da:1a:b5:
90:15:23:7c:95:19:4e:5d:e6:93:20:a5:0d:78:a7:
c5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:36:F3:94:DF:A0:CD:EF:62:DC:C8:91:BC:BC:8C:07:F7:C5:55:E9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e58ab6e2-41bc-4f36-84fe-a9d3796a8671.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
28:84:5d:3a:0b:67:60:42:e8:1a:dd:fa:7f:6d:f2:93:51:30:
55:3d:0f:0f:28:07:aa:bc:0c:18:ba:97:4a:b0:2e:89:ef:09:
a0:90:ba:c9:30:3b:6c:08:46:2c:3f:69:64:b7:0c:c5:ad:34:
f1:d1:af:72:79:3d:e4:2e:c5:5a:e1:cd:93:1f:e5:78:56:c7:
ec:4c:d4:9d:a6:17:c3:49:27:da:c0:28:21:6e:98:76:88:a6:
d9:23:68:ec:71:16:20:33:53:f2:bf:ed:a2:5f:ed:c5:97:df:
bd:12:d5:c5:2a:6f:d4:01:6c:ef:95:c3:ff:48:a5:f8:41:eb:
e2:bd:f7:92:0c:4f:4e:90:b8:c5:7a:79:9d:6a:2b:b0:bf:ff:
80:15:e6:a9:94:1a:05:6c:5a:4f:da:f8:25:fb:99:6b:55:eb:
84:86:d7:b6:4c:8c:9b:96:f8:9c:89:8a:51:98:97:5c:b4:71:
6d:b9:89:02:05:72:92:f8:7e:67:30:31:f3:6e:f8:cc:40:37:
3e:7d:c6:b5:5b:ec:83:f3:5a:12:93:bf:64:f2:3a:ed:d5:a3:
81:66:4a:95:a8:78:7c:45:63:8b:65:6c:a5:08:2f:6b:a6:c8:
b6:33:ea:95:79:c9:3d:56:03:6e:96:36:86:3c:d6:49:8f:09:
d6:6d:92:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:16 2023 by rpki-client on console.sobornost.net