Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7a9e250f-378d-4616-93b0-bb7b0edbe9c1.roa
File: 7a9e250f-378d-4616-93b0-bb7b0edbe9c1.roa (raw, json)
Hash identifier: BFl67/rYTe/qRrGkrOBAS7jTfrxnUoGNE4XUpxHPYHc=
Subject key identifier: 0C:10:D8:C6:B4:E0:18:07:43:39:FE:F1:52:CE:66:4E:D5:D1:99:23
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 50FCD4F824021A294E40D05249B33E9DCE1491B0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7a9e250f-378d-4616-93b0-bb7b0edbe9c1.roa
Signing time: Wed 13 Sep 2023 00:00:00 +0000
ROA not before: Wed 13 Sep 2023 00:00:00 +0000
ROA not after: Wed 18 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:fc:d4:f8:24:02:1a:29:4e:40:d0:52:49:b3:3e:9d:ce:14:91:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 13 00:00:00 2023 GMT
Not After : Oct 18 23:59:59 2023 GMT
Subject: serialNumber=80536e1ccd9cfd911370ddab2fbfa0d1fc249c3aef7027d779bb21d8496fcf90, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b0:39:d6:e1:34:86:5e:05:7b:e3:50:cc:14:
4e:82:4a:39:91:01:4a:f4:cd:01:d1:a4:22:fe:65:
75:c0:b7:f7:1f:ad:d4:0e:fb:5d:f9:1a:50:83:c9:
a4:e4:0b:64:b7:e1:eb:d4:8a:e8:13:a4:35:be:6f:
a3:f9:d7:dc:52:84:50:3c:0f:d8:2f:20:1e:58:38:
6a:6b:2b:4d:df:b2:92:09:eb:53:6f:91:40:16:95:
44:70:02:cf:50:4d:c7:ef:00:99:e2:97:32:10:36:
56:e7:5d:f7:97:76:e1:ba:73:ac:a5:e5:ef:1d:d3:
73:39:37:e1:1e:b6:c1:b4:f9:ae:55:90:79:c6:92:
46:55:79:92:92:5b:03:41:d6:ff:5b:4b:30:ef:b7:
08:e2:88:2d:34:f4:18:c2:3b:e6:ba:93:40:7b:51:
95:8d:fe:34:e6:24:1e:1a:27:bc:c2:b4:2b:42:71:
42:f2:a9:28:c9:60:fc:83:64:01:b8:51:59:71:6c:
4f:bd:eb:b3:79:c9:94:57:a7:73:2c:28:70:ba:f5:
8b:fe:bc:a1:a6:cd:c6:2f:f9:45:77:ee:98:75:ce:
6f:8d:50:a6:8f:01:86:f5:6e:0b:d1:cd:7a:d1:30:
e3:93:2c:60:f7:08:d6:76:39:dc:f9:70:2e:7a:84:
c7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:10:D8:C6:B4:E0:18:07:43:39:FE:F1:52:CE:66:4E:D5:D1:99:23
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7a9e250f-378d-4616-93b0-bb7b0edbe9c1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
87:e7:27:1a:c1:b3:28:61:60:65:18:ce:c0:df:84:82:f3:1f:
3b:bd:12:22:22:a6:64:9a:dd:62:14:7a:87:9d:d3:2d:a0:3a:
2d:83:52:d2:37:a5:d3:d7:9f:c9:33:42:78:6b:24:41:d4:db:
c6:fa:a1:ca:47:e6:3c:3a:41:03:3c:42:ef:13:03:0f:1c:48:
42:3c:b9:76:f6:bc:ef:53:68:92:68:1b:76:e6:5d:4a:2e:73:
ef:73:94:dd:3c:07:eb:ee:63:f2:82:9e:22:a9:6d:0a:fd:3b:
99:65:73:f2:14:bd:05:c5:86:87:5a:e7:92:14:a0:cc:ad:a2:
fa:8d:ca:d2:5d:d5:db:d7:c7:15:c5:88:79:ea:09:21:c5:5b:
e0:c2:f2:e0:20:15:49:86:af:cf:ae:e1:11:ec:a5:cb:ea:dd:
b5:bf:fb:31:23:40:73:03:22:06:71:62:42:e7:53:62:bb:9a:
48:aa:02:1b:5e:35:6d:0b:95:51:88:fe:c8:f2:89:32:bd:6d:
de:97:b0:31:1a:7c:52:4b:ea:5b:1f:e1:1b:71:2f:44:ac:25:
5c:ee:0a:fa:fd:37:1b:bc:ca:bd:91:92:8c:2d:d0:38:2a:a4:
d7:70:bf:98:44:0d:57:ef:c0:14:26:67:0a:c0:af:17:b4:da:
88:13:64:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:57 2023 by rpki-client on console.sobornost.net