Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d9788e-b79f-4cf2-a4a7-863825734ebf.roa
File: e9d9788e-b79f-4cf2-a4a7-863825734ebf.roa (raw, json)
Hash identifier: WFGdytlodOzUQnXxPeYHWeDkpgNSafCRPSZFS85hspY=
Subject key identifier: 01:DA:86:E7:20:EF:00:9E:8B:18:D4:ED:64:19:A0:6D:39:2A:C7:C6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0B6D563C3F627A13761DB3D06A335A06E18BC87E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d9788e-b79f-4cf2-a4a7-863825734ebf.roa
Signing time: Thu 17 Aug 2023 00:00:00 +0000
ROA not before: Thu 17 Aug 2023 00:00:00 +0000
ROA not after: Thu 21 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:6d:56:3c:3f:62:7a:13:76:1d:b3:d0:6a:33:5a:06:e1:8b:c8:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 17 00:00:00 2023 GMT
Not After : Sep 21 23:59:59 2023 GMT
Subject: serialNumber=b4fa94b5e1fd8586ddc6750da5f9f344061f518cdc0d2a8201fae0671db3eeb7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:7c:23:91:80:5d:74:00:de:14:d5:23:e3:64:
92:ef:7f:00:82:72:ab:49:f9:1f:3b:05:49:89:e8:
d9:16:fd:a0:a2:b1:4f:53:fa:64:ba:82:3b:b8:6b:
b4:01:3a:f2:0b:36:74:bf:44:d0:b6:84:67:1c:a9:
86:3e:73:79:f8:db:28:75:42:c8:63:64:61:e7:bf:
ca:ad:ab:19:94:bb:a5:84:38:ee:7f:74:df:fb:75:
d2:7b:1a:35:78:cc:7c:ce:a7:38:f9:b4:bc:af:a2:
ff:a7:0e:38:9b:e3:a6:f9:5f:38:68:c8:f7:0a:59:
27:35:82:a0:c1:32:66:af:ee:6f:fd:04:30:79:6a:
49:12:83:d7:90:7d:29:13:e1:bf:be:28:8d:34:aa:
cf:6c:5e:d6:1a:05:15:2f:16:2a:b8:a9:c7:aa:6d:
f9:01:84:d9:18:c6:c7:3a:d1:72:4e:04:31:f3:43:
36:46:38:d1:d1:59:5c:e7:93:8e:da:9d:8d:9c:98:
27:2d:92:fe:aa:b1:fb:b8:7f:ab:6e:43:ac:6f:e4:
a8:91:f9:b8:d8:4f:9d:ee:64:02:36:df:97:45:fc:
5d:e5:cd:cc:4e:84:e5:e4:10:ae:88:07:93:1d:31:
d5:d3:e7:8e:64:ed:7e:31:b7:d0:89:b7:2b:d7:ab:
f6:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:DA:86:E7:20:EF:00:9E:8B:18:D4:ED:64:19:A0:6D:39:2A:C7:C6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d9788e-b79f-4cf2-a4a7-863825734ebf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
62:d8:e6:a2:c4:5e:46:56:22:6a:db:b3:58:7c:b7:65:70:f1:
d1:4a:1b:3c:65:fb:ed:29:4c:6f:9e:60:c7:f4:57:47:5e:65:
c7:94:82:f5:47:71:ab:22:69:4d:82:88:ca:71:f0:82:3a:da:
dc:1e:9c:44:0d:75:b4:f1:27:2b:b6:52:6a:f8:42:ff:52:bf:
a6:de:77:b2:c0:82:e8:7b:e9:16:8d:ae:fa:1c:f9:f6:bd:fe:
f9:8c:88:e7:09:91:4e:71:70:a2:b4:3c:be:77:09:97:cc:67:
f5:42:84:b3:73:25:3c:05:aa:71:d7:e4:44:38:6c:88:c4:a2:
cd:7b:c5:ad:70:4d:65:da:91:98:04:f8:df:38:8e:e6:cb:3e:
ac:d1:d7:b4:ff:a4:d8:87:0a:d2:12:7b:86:dc:05:b0:ab:26:
98:52:cd:2c:10:5e:7c:c5:76:fb:bc:64:4b:c1:bf:ca:73:55:
2c:0a:90:51:57:e8:b3:cb:d0:93:da:f5:77:a3:06:e6:75:0c:
37:10:ba:31:2e:6f:69:cb:12:d8:c6:fb:6b:7a:ba:af:02:5b:
15:a2:10:ab:0a:57:cf:9a:f9:2f:a5:30:03:87:04:5b:08:a8:
56:f6:15:e3:4b:07:d6:01:8c:5a:92:05:b5:46:b8:66:ae:fa:
42:a6:ea:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:17 2023 by rpki-client on console.sobornost.net