Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7ae69e18-7332-49cc-aaf2-8b17befcc82f.roa
File: 7ae69e18-7332-49cc-aaf2-8b17befcc82f.roa (raw, json)
Hash identifier: XYIklu0IKYYNo1yKpsc72yAB3FUoHpJXsQ+kHSlWkM0=
Subject key identifier: 57:DE:16:57:0F:90:6B:04:30:D9:4B:8C:42:3D:74:E2:89:12:1C:C2
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 79BB3E098BE489116DF189992AA66E4841729D7A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7ae69e18-7332-49cc-aaf2-8b17befcc82f.roa
Signing time: Wed 27 Sep 2023 00:00:00 +0000
ROA not before: Wed 27 Sep 2023 00:00:00 +0000
ROA not after: Wed 01 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:bb:3e:09:8b:e4:89:11:6d:f1:89:99:2a:a6:6e:48:41:72:9d:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 27 00:00:00 2023 GMT
Not After : Nov 1 23:59:59 2023 GMT
Subject: serialNumber=30f718330f30a2a0c34e97a10ec8ccbc63de57673c51f50cba0aaf22d33a515a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9e:8e:b1:01:9e:b9:1d:71:09:34:1b:d1:be:
5c:94:6f:10:75:37:a0:1f:50:62:21:fc:28:4e:eb:
0d:1f:d4:3b:26:87:ee:d7:2e:4a:30:a4:92:36:c6:
35:ce:6d:7b:32:68:75:65:f5:67:ce:d9:29:34:26:
01:15:2d:0b:fe:68:a4:38:8e:72:12:ff:20:e6:27:
f5:d4:ee:5b:33:05:c2:da:21:9e:f1:13:e5:c6:5d:
3b:ec:6f:15:0e:19:c5:1a:a6:c8:d7:49:c2:a3:fa:
ee:c4:1d:ba:41:bc:33:7a:05:d4:1f:83:fd:43:72:
0b:84:30:0d:0f:c1:70:f5:be:2b:b2:78:dc:34:85:
5f:1d:4d:63:77:34:73:40:bc:be:5c:12:84:82:74:
9e:f5:d4:fe:4f:ce:c0:e2:8d:c9:8d:f4:48:5f:cc:
59:de:f5:3b:ba:dc:81:d4:50:5a:20:d8:5a:61:89:
b0:5b:c4:23:7b:15:1b:dc:63:85:ef:d4:be:b7:4d:
12:b6:7b:be:08:96:46:5a:48:f1:aa:0b:07:c9:a5:
14:e3:2f:93:d7:61:e3:3f:2d:d3:a9:79:12:e9:27:
76:d2:4f:5a:87:0b:d8:97:97:86:47:e2:d3:2f:a4:
95:aa:55:32:78:5f:c1:75:93:e3:af:e4:4d:04:c0:
8b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:DE:16:57:0F:90:6B:04:30:D9:4B:8C:42:3D:74:E2:89:12:1C:C2
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7ae69e18-7332-49cc-aaf2-8b17befcc82f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
61:75:9e:6b:6d:78:35:9f:4e:5a:b3:63:18:20:aa:a4:2f:c6:
df:cb:73:fc:2c:d6:a4:a2:b9:4a:6d:19:bf:dc:6f:75:21:88:
49:de:5d:5f:42:e5:28:6e:0e:fd:2e:31:09:68:a3:17:86:b9:
ab:f3:2f:7b:67:ca:13:cb:05:ce:3c:59:ba:25:90:e6:eb:1b:
14:88:8b:7e:51:ce:b3:ce:5b:35:7b:36:1e:bc:16:b9:66:bd:
60:a9:9c:fd:d7:78:12:73:e4:c1:1b:5e:30:a6:75:5c:8f:48:
81:45:cf:12:b2:f8:a0:fa:68:64:08:3f:68:64:9d:45:a4:36:
02:57:c9:bd:f3:5d:e4:a8:9d:7d:20:95:19:e8:4a:5e:fa:6d:
bd:23:2b:c9:df:f0:ba:2c:a9:27:78:f3:76:9b:11:f0:fe:52:
80:01:69:a9:26:ec:4f:3a:2b:3d:71:76:be:e3:15:56:2b:1b:
1c:56:de:57:c4:81:51:b0:76:97:a2:69:87:65:2a:fa:07:e7:
06:e2:77:26:86:ba:b1:eb:26:9a:c6:f0:84:b0:8d:c9:0e:0d:
d0:8d:6c:36:2c:3e:5d:d8:b6:74:67:59:99:00:36:9d:26:f7:
48:91:6a:51:de:0f:d8:00:9d:08:90:79:90:3f:b0:05:3a:18:
33:dd:4c:9b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUebs+CYvkiRFt8YmZKqZuSEFynXowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMwOTI3MDAwMDAwWhcNMjMxMTAxMjM1OTU5
WjB6MUkwRwYDVQQFE0AzMGY3MTgzMzBmMzBhMmEwYzM0ZTk3YTEwZWM4Y2NiYzYz
ZGU1NzY3M2M1MWY1MGNiYTBhYWYyMmQzM2E1MTVhMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC6no6xAZ65HXEJNBvRvlyUbxB1N6AfUGIh/ChO6w0f1Dsm
h+7XLkowpJI2xjXObXsyaHVl9WfO2Sk0JgEVLQv+aKQ4jnIS/yDmJ/XU7lszBcLa
IZ7xE+XGXTvsbxUOGcUapsjXScKj+u7EHbpBvDN6BdQfg/1DcguEMA0PwXD1viuy
eNw0hV8dTWN3NHNAvL5cEoSCdJ711P5PzsDijcmN9EhfzFne9Tu63IHUUFog2Fph
ibBbxCN7FRvcY4Xv1L63TRK2e74IlkZaSPGqCwfJpRTjL5PXYeM/LdOpeRLpJ3bS
T1qHC9iXl4ZH4tMvpJWqVTJ4X8F1k+Ov5E0EwIs/AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUV94WVw+QawQw2UuMQj104okSHMIwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzdhZTY5ZTE4LTczMzItNDljYy1hYWYyLThiMTdiZWZjYzgyZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGF1nmtteDWfTlqzYxggqqQvxt/L
c/ws1qSiuUptGb/cb3UhiEneXV9C5ShuDv0uMQlooxeGuavzL3tnyhPLBc48Wbol
kObrGxSIi35RzrPOWzV7Nh68FrlmvWCpnP3XeBJz5MEbXjCmdVyPSIFFzxKy+KD6
aGQIP2hknUWkNgJXyb3zXeSonX0glRnoSl76bb0jK8nf8LosqSd483abEfD+UoAB
aakm7E86Kz1xdr7jFVYrGxxW3lfEgVGwdpeiaYdlKvoH5wbidyaGurHrJprG8ISw
jckODdCNbDYsPl3YtnRnWZkANp0m90iRalHeD9gAnQiQeZA/sAU6GDPdTJs=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:34:57 2023 by rpki-client on console.sobornost.net