Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f2ea85d6-ba73-421e-987e-5e3f03d5ee38.roa
File: f2ea85d6-ba73-421e-987e-5e3f03d5ee38.roa (raw, json)
Hash identifier: d5HiNiJb85EMB0XaszvbypDMNpM/c4TNflhnwyjkLFw=
Subject key identifier: 2A:BD:54:99:10:DE:8A:6D:6D:0C:BA:2C:C2:38:BA:26:83:8E:7C:7B
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 248531540B67483BD22F44741BBB34E4D7A819A9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f2ea85d6-ba73-421e-987e-5e3f03d5ee38.roa
Signing time: Sat 16 Sep 2023 00:00:00 +0000
ROA not before: Sat 16 Sep 2023 00:00:00 +0000
ROA not after: Sat 21 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:85:31:54:0b:67:48:3b:d2:2f:44:74:1b:bb:34:e4:d7:a8:19:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 16 00:00:00 2023 GMT
Not After : Oct 21 23:59:59 2023 GMT
Subject: serialNumber=4667fdbc1d3f85daabc49b92eb0fe62afb717218429469d311e353260642c200, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:81:69:5b:6f:fe:86:e2:15:87:5b:73:fc:04:
2b:8b:99:20:26:7b:6f:7b:7b:b7:c7:2b:01:3c:ce:
47:45:af:0b:b9:b2:e3:dd:58:19:57:61:ad:b4:2c:
6b:3a:8b:95:f0:f2:d8:59:1a:10:d9:7f:32:35:fe:
44:73:6c:f3:bc:54:83:25:b5:2e:10:cf:dd:9e:7f:
d6:6d:b6:8f:3d:6f:3e:78:d6:a2:7d:55:1f:3b:7e:
34:02:cd:9d:35:83:45:ad:f4:eb:7b:df:d1:b0:f3:
8e:67:ed:ec:2b:01:49:11:5f:0c:7d:57:01:6d:a3:
24:13:01:40:1d:80:82:58:da:9e:21:2c:80:f4:80:
bd:00:37:24:2e:9d:46:dc:6e:66:08:95:c0:c2:27:
f6:25:75:9b:a4:04:c7:4b:22:e6:f9:42:81:b1:0d:
34:a5:0f:d6:37:19:dd:68:e2:a1:25:7e:bd:22:40:
76:0b:b3:6a:53:0d:ce:cc:0f:73:6b:71:a8:52:0b:
7c:d2:3a:3d:c8:e9:38:4b:ab:4a:bc:a2:aa:fd:00:
73:27:4a:ce:77:b7:0c:e3:3c:2a:0c:a0:60:7e:c1:
5b:36:4e:ff:b3:39:25:ca:a6:ce:98:f6:98:ce:19:
5a:ba:2e:59:b5:bc:3f:4e:63:24:5a:a1:4b:c5:a4:
0d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:BD:54:99:10:DE:8A:6D:6D:0C:BA:2C:C2:38:BA:26:83:8E:7C:7B
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f2ea85d6-ba73-421e-987e-5e3f03d5ee38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
94:3c:0d:f0:36:6c:f5:58:5b:d2:c1:aa:e8:c8:e7:07:ad:8b:
39:f4:20:93:cc:c9:04:84:8f:c9:8e:5a:92:dc:82:6a:d4:e9:
db:63:6e:53:49:d7:d6:43:80:4c:21:d6:1a:39:aa:9e:fe:14:
5b:78:9a:0e:98:9a:6f:ec:e3:45:8a:3d:2e:74:aa:ea:ff:60:
3a:fc:e8:ae:d8:79:89:65:71:e1:bc:20:a6:21:ef:a3:bd:7d:
2d:23:b3:56:5d:75:bf:50:a8:4b:26:df:31:9e:c1:3f:0a:4e:
bf:5e:70:fd:86:fe:ee:d5:1f:c6:10:6a:90:29:d5:92:e0:4a:
95:76:b9:40:c1:a4:13:9c:15:ac:65:18:c1:26:55:04:a3:ef:
13:3c:33:76:28:3f:02:13:7a:c0:27:49:e8:92:25:67:8a:a0:
85:96:04:2c:02:77:10:f4:69:14:4f:50:47:2e:82:bf:17:98:
d0:4f:36:6b:5e:bd:46:2a:46:02:9a:53:f2:d7:22:e0:87:6b:
a0:3c:93:b7:bf:f8:06:da:da:39:27:68:ee:8c:68:c8:46:ea:
31:00:24:2c:d1:b0:94:85:ec:08:7e:3f:f7:15:54:9f:03:eb:
9a:d7:49:ba:1c:c9:ec:37:df:e1:fe:28:26:22:17:3d:c8:10:
9a:98:3f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:17 2023 by rpki-client on console.sobornost.net