Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b6c226ff-fd1d-4822-a646-01c8f5b4eb23.roa
File: b6c226ff-fd1d-4822-a646-01c8f5b4eb23.roa (raw, json)
Hash identifier: fNMePNdVGtuL3PN47HYn8bifk1Qsr6M3wwivzszwzXQ=
Subject key identifier: 8A:E5:01:3B:32:E2:05:24:F5:91:41:12:E6:EA:E8:BD:B7:9D:DB:1B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3D502D50572F8F235D17DA01783FCBA41AC955DB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b6c226ff-fd1d-4822-a646-01c8f5b4eb23.roa
Signing time: Wed 08 Nov 2023 00:00:00 +0000
ROA not before: Wed 08 Nov 2023 00:00:00 +0000
ROA not after: Wed 13 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:50:2d:50:57:2f:8f:23:5d:17:da:01:78:3f:cb:a4:1a:c9:55:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 8 00:00:00 2023 GMT
Not After : Dec 13 23:59:59 2023 GMT
Subject: serialNumber=65e12e02952b960a8cd118a7f8198b52539a70b8144c882432b7130ad6e8610c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ed:2f:54:b3:fc:55:a7:10:52:48:2c:5d:0e:
ba:86:f0:8a:48:17:e4:04:f9:6b:74:c8:56:7a:94:
e6:56:fe:8e:f9:0e:34:18:43:57:02:18:29:f6:8f:
8b:73:72:db:f5:d8:21:2c:e2:6f:2a:6f:07:c5:83:
fe:36:8c:65:ec:7f:15:d5:7d:2d:99:e4:1e:f5:19:
68:85:83:d1:b2:5c:a8:08:68:ea:2c:ac:4a:71:76:
7c:5f:e2:e7:fd:33:07:c1:49:15:41:cc:44:4e:95:
cb:f4:44:da:04:73:31:be:6a:68:8c:79:62:94:6e:
33:40:0e:ea:39:bc:99:5c:1f:79:1b:80:5c:4b:a8:
e5:cf:9a:61:bf:63:18:55:7f:c8:c2:d3:75:c2:10:
c9:b5:ad:fe:b2:75:05:58:e3:c4:9a:54:89:f0:15:
d0:65:3a:b2:69:c6:9e:e6:f8:d9:9e:88:32:98:55:
8a:78:af:e9:ef:0c:fc:8b:8a:24:67:b4:9b:9e:a0:
5c:34:e9:28:27:1e:1c:87:33:76:0a:00:d4:6f:f2:
78:68:bf:47:7c:74:7b:2a:43:4d:39:45:c0:5f:44:
82:f9:84:dd:21:6c:f8:3c:0b:b2:69:58:42:77:71:
45:da:27:20:26:c1:a3:64:23:57:20:45:e2:81:84:
7f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E5:01:3B:32:E2:05:24:F5:91:41:12:E6:EA:E8:BD:B7:9D:DB:1B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b6c226ff-fd1d-4822-a646-01c8f5b4eb23.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
04:92:7d:56:b8:7d:7c:bb:46:10:00:4c:eb:71:04:17:05:fe:
c1:74:d1:bf:ea:6b:1b:a6:f5:a2:db:07:03:a0:91:a2:45:05:
db:90:37:39:78:07:ba:5d:69:ec:5c:f7:20:4e:87:64:fe:4b:
07:7f:91:07:28:c3:19:61:04:04:30:b7:c4:14:ce:10:27:48:
b7:74:6b:7b:8b:8e:8e:15:3a:49:5f:8b:e2:c6:1f:40:e8:da:
24:b9:c3:83:d9:af:b5:9d:e8:28:99:f4:31:18:e7:2e:2e:cc:
2d:66:13:7b:f1:d0:48:cc:02:63:15:55:99:da:58:f4:20:fd:
25:0c:eb:f5:ad:23:ae:bb:a3:82:ae:ba:db:d3:ea:1e:eb:f9:
12:98:b8:f8:e2:a4:4f:80:03:be:88:1c:ec:19:00:91:25:1c:
9e:0c:e0:fb:d0:03:83:72:5d:1e:67:56:b2:00:82:d7:32:21:
9b:d2:c6:2a:a8:8d:c5:f9:67:29:52:fa:ab:d3:99:59:be:ba:
37:74:98:d7:0e:e0:81:1b:4a:ed:4e:02:fb:6d:cf:e6:de:e1:
f4:fd:6d:b3:99:d3:ef:3e:d0:8f:ce:0a:a0:64:6c:7d:72:54:
2c:a9:59:a1:50:0a:78:75:a1:64:75:86:f3:29:b9:aa:ce:c6:
45:05:15:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:10 2023 by rpki-client on console.sobornost.net