Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5255337-325b-4fce-9b8d-220eda329838.roa
File: a5255337-325b-4fce-9b8d-220eda329838.roa (raw, json)
Hash identifier: G2xZbKH9+CDTl4Mfwj8MDBR3e3IoXqhbBJydqF2Y0hI=
Subject key identifier: 1D:25:0A:A3:E0:7B:26:E1:F7:C2:7D:3C:8B:FD:D0:00:E9:EF:5F:D7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 02C2A2C798835AA55F04F79DB91C3287AA867E82
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5255337-325b-4fce-9b8d-220eda329838.roa
Signing time: Fri 23 Feb 2024 00:00:00 +0000
ROA not before: Fri 23 Feb 2024 00:00:00 +0000
ROA not after: Fri 29 Mar 2024 23:59:59 +0000
asID: 14618
IP address blocks: 2600:1f12:4000::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:c2:a2:c7:98:83:5a:a5:5f:04:f7:9d:b9:1c:32:87:aa:86:7e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Feb 23 00:00:00 2024 GMT
Not After : Mar 29 23:59:59 2024 GMT
Subject: serialNumber=829fe7f234e0e522ab58a154784621dbfd87db2e9bf9ab030f9f11bdb9a7a4b8, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4d:4b:94:72:e3:b5:58:71:e4:cc:a1:0b:52:
39:91:38:e7:08:bb:30:e0:b9:ca:dc:bd:2d:40:4b:
04:26:c7:87:3c:6a:9c:27:ce:24:fc:18:22:5d:80:
58:be:a3:30:93:4e:a1:3d:e0:b3:8b:21:e4:fe:20:
96:37:86:22:67:cd:c5:cb:66:0f:77:ff:d5:a1:4e:
ec:08:ee:d9:01:2a:db:54:51:6a:2d:59:26:db:ce:
c2:bd:06:f9:5d:c2:c0:e2:35:a1:f4:f5:d5:19:40:
63:7c:de:4a:a0:d4:6b:2f:7d:da:0a:de:94:82:cb:
1a:b1:9e:03:3b:97:08:24:77:6c:f9:d4:b2:73:39:
33:a8:a8:a9:bc:00:43:5d:0c:e7:89:5a:ef:5f:ab:
23:9b:f8:49:bf:f2:4f:24:2e:c7:39:5b:f3:48:c1:
d8:88:75:f2:66:f0:10:7e:60:74:8a:a8:f3:f5:da:
e2:6b:34:29:7d:33:5e:94:8a:74:06:ab:77:b4:14:
f9:8e:82:9f:89:25:6e:1c:93:de:92:26:41:25:96:
cc:ff:28:ea:5f:dc:aa:a4:20:c4:a6:48:a3:ad:31:
68:19:7b:94:6c:18:f9:f8:f5:b4:0f:ec:a7:ab:b3:
26:0c:cd:fd:52:b3:e4:2c:37:07:60:1e:ba:90:b6:
7d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:25:0A:A3:E0:7B:26:E1:F7:C2:7D:3C:8B:FD:D0:00:E9:EF:5F:D7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5255337-325b-4fce-9b8d-220eda329838.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f12:4000::/36
Signature Algorithm: sha256WithRSAEncryption
a0:61:e8:b0:41:11:03:5c:0d:9b:24:f9:a4:a0:7d:fc:94:08:
b0:ec:00:21:82:3a:2f:c2:5d:57:97:76:fd:86:6c:ba:52:8f:
d2:7f:6a:7a:aa:9c:22:1d:8d:fa:47:65:55:e3:ae:03:f2:87:
b4:95:3a:15:c2:7f:33:a7:d0:8c:cc:5a:b3:46:c0:5f:bc:35:
a7:57:02:8d:16:89:b7:75:7d:1c:ae:4d:cf:1d:dc:d8:9f:94:
ca:fa:85:f7:df:10:7f:82:60:1e:c1:d7:1c:5e:b2:51:7d:24:
37:18:ef:6c:77:ba:91:90:4b:c7:9f:d8:53:3f:09:ec:8d:2d:
8f:74:94:32:08:87:78:06:04:25:ed:76:3b:1c:0c:b8:30:90:
09:1e:b0:c2:dc:4d:68:30:1f:ea:9b:a6:3c:6c:66:87:07:48:
7b:84:73:f4:de:d1:d6:df:1f:99:63:58:da:79:b5:89:54:b4:
0a:31:e6:fe:be:bc:bd:4c:c4:22:f7:f6:ec:6f:1d:32:97:50:
6f:77:b0:75:93:f6:27:7a:43:90:08:8a:83:d0:53:c6:4a:1f:
5e:75:ab:14:cb:f0:1f:32:80:76:f3:b4:ed:f7:23:46:0e:63:
57:b0:5a:ed:78:64:32:bb:f2:00:a0:43:8c:e0:be:48:d3:76:
4c:21:f0:cc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:44 2024 by rpki-client on console-ams.rpki-client.org