Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bdf3a1aa-7ee8-46a6-8d7e-96df6d2f3b4b.roa
File: bdf3a1aa-7ee8-46a6-8d7e-96df6d2f3b4b.roa (raw, json)
Hash identifier: OfWMsmiw/11g4P2v72rEMzlXCZFJeoeMJo+X0CyD6DQ=
Subject key identifier: B0:84:1E:64:00:60:A9:01:3E:AF:6D:A8:46:54:1A:BF:82:0F:59:29
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3E0C1698ABAE78778A6E4066FF6F5246AA55CA57
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bdf3a1aa-7ee8-46a6-8d7e-96df6d2f3b4b.roa
Signing time: Fri 18 Aug 2023 00:00:00 +0000
ROA not before: Fri 18 Aug 2023 00:00:00 +0000
ROA not after: Fri 22 Sep 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:0c:16:98:ab:ae:78:77:8a:6e:40:66:ff:6f:52:46:aa:55:ca:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 18 00:00:00 2023 GMT
Not After : Sep 22 23:59:59 2023 GMT
Subject: serialNumber=dbc88c5bd7a3974ebcba801e1d41e2e4bbbfa2ff5a83f4282449c3a6e7f9d001, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d2:70:5c:24:55:5f:a6:4d:8a:f1:51:91:89:
68:d7:ce:e8:a7:5a:c2:5e:87:cf:cc:2e:8e:44:f4:
31:32:77:69:0f:b0:1d:77:be:5d:1c:de:11:e6:b8:
ac:c6:f3:94:05:37:e2:96:c7:d4:a6:f6:a4:61:60:
fd:cf:a4:3c:dd:e9:65:23:07:62:2b:3a:0a:04:97:
8b:4f:52:f1:7c:13:20:c1:08:4e:41:d9:8b:e9:66:
a2:44:c8:6c:90:d7:33:11:a3:18:db:21:d7:3b:69:
2a:65:b8:d8:0d:ba:d7:6a:9b:c4:ef:41:e5:3e:60:
18:12:a7:06:c5:a4:72:55:4b:f5:05:15:04:b0:54:
86:4e:29:ad:d0:4b:b5:ff:92:bd:4a:a7:3b:b8:f8:
40:48:b9:11:48:b6:2f:4c:59:37:c9:07:05:66:dc:
84:93:77:a5:67:09:a7:a1:ff:86:4f:70:bd:30:e2:
13:8d:b0:4f:b8:a0:fc:71:4a:e6:cd:a4:cc:2d:64:
1d:6c:f6:9d:4c:e4:81:ac:d4:c7:d8:38:7b:4d:39:
84:d6:8a:cb:f3:4b:5a:52:a5:63:05:da:84:59:47:
8a:d2:31:d5:3b:5f:97:76:18:23:2c:4b:33:fb:88:
cb:ac:11:8a:db:76:00:20:da:c8:ee:27:18:86:4d:
6c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:84:1E:64:00:60:A9:01:3E:AF:6D:A8:46:54:1A:BF:82:0F:59:29
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bdf3a1aa-7ee8-46a6-8d7e-96df6d2f3b4b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
32:0e:ef:44:d5:b2:fb:5c:c0:f9:58:56:dd:3b:34:10:2a:0e:
58:ce:1c:2e:11:31:2a:0c:2d:93:36:16:a0:5a:c2:5b:c7:b7:
29:06:a8:33:83:0d:4e:f6:fe:8a:7f:bf:4b:19:27:8e:16:11:
b3:84:34:cb:21:de:09:3e:e5:b1:4c:2a:68:ce:37:38:6b:50:
f8:6a:5d:79:7d:e0:71:f3:7e:11:ea:01:29:59:d3:e9:c4:02:
89:dd:f0:79:89:e0:0a:4a:10:a7:ad:6f:1d:6d:07:61:4c:90:
b0:be:a5:e0:8c:ad:17:6a:c6:ab:a5:a6:f6:26:65:23:37:21:
45:c3:d2:36:bd:e3:4a:05:f4:8d:1b:a5:63:48:0e:55:52:4d:
50:88:42:37:f1:54:39:c9:08:45:d6:ed:b6:f5:2c:2b:23:a5:
8c:90:c8:b7:d7:90:8b:9d:53:47:15:69:f6:39:c6:01:ab:9d:
d2:7a:43:90:88:bb:6c:1a:9c:cc:92:68:62:3c:ef:de:95:aa:
a3:30:37:c5:31:80:b3:d2:b9:d3:d2:19:f0:aa:f3:15:08:f8:
57:e3:af:86:16:63:4f:e4:b8:5e:ec:82:2b:08:51:20:31:d3:
28:07:f2:86:8b:09:45:df:58:4c:24:a1:f6:96:ec:49:fb:b7:
14:29:d2:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:12 2023 by rpki-client on console.sobornost.net