Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf265482-239c-4afc-8d80-4f165e151d3c.roa
File: bf265482-239c-4afc-8d80-4f165e151d3c.roa (raw, json)
Hash identifier: Q11yfN+2bbu2ia37nF3guXB2fU4ALSgFe1aCiRAJFwA=
Subject key identifier: 50:F6:A7:46:11:14:B4:43:73:0F:0D:DC:DC:41:3C:04:56:F9:EE:00
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 03EFDBC726A317B8EF0BA8F59A64B5609DE28246
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf265482-239c-4afc-8d80-4f165e151d3c.roa
Signing time: Wed 25 Oct 2023 00:00:00 +0000
ROA not before: Wed 25 Oct 2023 00:00:00 +0000
ROA not after: Wed 29 Nov 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ef:db:c7:26:a3:17:b8:ef:0b:a8:f5:9a:64:b5:60:9d:e2:82:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 25 00:00:00 2023 GMT
Not After : Nov 29 23:59:59 2023 GMT
Subject: serialNumber=871e6d23c69fe7d9c7e4b9df34df36615044b3cd5ef8c5a064a595856da94e57, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7d:f9:7b:11:31:97:a8:25:ca:89:09:f0:95:
8a:0f:bc:29:5a:a6:ab:4f:56:78:b2:52:6a:32:2a:
d6:a4:f8:fe:88:05:58:b1:76:38:5d:a9:ea:98:69:
30:9b:97:07:a8:82:3f:6d:19:8f:d9:78:51:ed:9b:
7f:9d:4a:d2:d4:64:6d:9a:88:93:55:19:19:bd:3b:
9f:24:66:d0:eb:a6:d9:ba:17:9a:32:4c:78:0e:8f:
32:5d:be:d2:67:56:46:95:35:52:95:bd:7e:7e:42:
eb:34:2d:22:1b:76:b2:c0:1a:ca:e1:f7:00:15:9e:
bf:16:36:9b:87:44:5a:f4:51:6d:f4:21:8c:4c:ef:
db:bb:54:63:d2:ff:17:f9:11:a5:d0:26:18:ab:7b:
6f:7a:48:d4:be:9b:fd:47:ff:ec:84:cc:aa:4e:47:
ce:3c:f3:0f:0c:3f:7e:77:ac:37:a6:1c:de:fa:4f:
b8:99:71:2a:c3:07:2e:4b:28:23:22:1d:8d:3f:17:
2a:e8:ae:9a:74:73:25:f9:e3:51:31:9e:99:e8:2d:
59:71:16:73:01:b2:20:71:1c:3c:15:db:07:18:87:
5d:6b:0c:f2:1a:19:e4:c9:5f:58:a2:e0:5f:0c:11:
8b:a1:e4:4c:dd:1b:bb:87:02:7c:09:90:9a:74:bc:
78:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F6:A7:46:11:14:B4:43:73:0F:0D:DC:DC:41:3C:04:56:F9:EE:00
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf265482-239c-4afc-8d80-4f165e151d3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ad:c5:3d:03:74:65:ee:04:af:6c:b1:6b:e0:ee:ce:cf:46:
32:1b:00:5f:a1:16:8b:ac:a5:70:89:e1:4e:7f:54:2a:65:b7:
ec:ad:8b:a7:a9:8b:52:a0:5a:9c:d3:72:47:3e:79:2f:0b:61:
87:bc:bc:3a:86:fc:2b:f4:cb:97:73:a8:55:8b:f2:cb:7f:16:
55:1f:63:98:6c:72:5f:fd:2d:83:c5:8f:4b:1f:ec:09:23:51:
e3:b3:9d:bc:b4:71:cc:2f:6e:bb:e8:95:c3:c4:b0:03:c4:b6:
8c:08:f9:35:63:cb:09:ef:9f:42:3f:f9:97:05:e1:b7:0b:93:
51:ca:7c:8a:e6:2b:94:fe:11:2d:3f:c1:ff:40:40:eb:3b:dd:
c6:48:9f:c8:3e:d9:5b:bb:6b:0a:f5:eb:25:02:be:80:62:e9:
70:7b:16:1b:63:5c:a0:5b:a0:08:52:70:1c:f4:1b:bb:98:08:
62:65:cb:e6:53:e8:6c:50:be:f2:95:7d:92:89:fe:f5:b1:c3:
79:bb:73:9c:01:01:c9:d4:0c:ed:af:ed:e9:ec:a6:19:ad:08:
93:48:a4:fe:52:e1:48:97:2e:07:79:1e:cb:36:68:d0:c1:8e:
a9:5a:8a:85:82:f4:3a:cb:82:7c:b0:3d:f6:4e:34:ab:ab:5a:
54:66:c3:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:12 2023 by rpki-client on console.sobornost.net