Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e3e02cd9-a7e2-4334-a3be-14a7698ea700.roa
File: e3e02cd9-a7e2-4334-a3be-14a7698ea700.roa (raw, json)
Hash identifier: lALv/KYDhaiEwrGN/tdmpuSEjy2gVQHd7F7CpV/MTng=
Subject key identifier: CA:CD:12:D1:1A:33:7A:52:28:5F:F3:50:0C:FE:64:65:73:49:CB:1C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5CCF4145EF7C76734E1F8CD73B1DA73068B0B5E5
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e3e02cd9-a7e2-4334-a3be-14a7698ea700.roa
Signing time: Sat 08 Jul 2023 00:00:00 +0000
ROA not before: Sat 08 Jul 2023 00:00:00 +0000
ROA not after: Sat 12 Aug 2023 23:59:59 +0000
asID: 14618
IP address blocks: 192.43.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:cf:41:45:ef:7c:76:73:4e:1f:8c:d7:3b:1d:a7:30:68:b0:b5:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jul 8 00:00:00 2023 GMT
Not After : Aug 12 23:59:59 2023 GMT
Subject: serialNumber=c070abc6c46bd865cf2fd2c276f86a88adeba31b0a007537f38477c76f8bc5df, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:fe:e6:76:91:55:e2:46:34:25:85:e4:28:2e:
77:98:a0:6f:f9:64:86:31:f8:ca:15:3d:14:c6:59:
22:78:c6:f3:47:d2:fa:8c:4d:eb:4d:58:86:18:d7:
56:6f:b3:c6:ee:77:29:7a:4f:39:22:13:97:bf:ab:
02:b1:ca:5b:92:28:98:dc:41:cb:41:4c:1a:64:4f:
b7:b0:6b:6b:99:28:bb:dd:96:67:c6:52:3f:c6:77:
a8:0e:76:86:dc:b8:17:7e:a6:01:73:f3:f3:b1:da:
85:b1:4f:51:6c:b2:8b:69:7c:5a:55:05:0e:15:2f:
3f:bc:d3:4f:15:f5:02:aa:22:3f:a7:1c:4d:38:12:
0b:cb:da:82:f7:0c:4b:f8:6f:a5:71:fe:0d:d8:55:
0a:5e:2f:6d:d2:4a:9c:ad:97:94:87:ec:47:d3:bb:
34:a1:d6:1a:47:0d:8b:ac:b3:93:6b:c5:fd:9a:cf:
94:93:f1:0e:f3:1c:a7:ce:6e:dd:dd:2f:c9:de:45:
2a:88:8b:7d:49:f7:23:7e:37:4c:69:ea:bd:45:3e:
ca:77:16:d8:07:c5:0f:85:b8:00:cf:af:43:56:2d:
74:5a:f8:b7:80:bb:95:40:86:ed:fc:27:40:d0:4c:
4e:da:f8:4f:4b:16:ff:39:61:4a:e2:a2:ef:34:d0:
ca:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:CD:12:D1:1A:33:7A:52:28:5F:F3:50:0C:FE:64:65:73:49:CB:1C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e3e02cd9-a7e2-4334-a3be-14a7698ea700.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.43.184.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:ae:2b:48:1c:c0:49:eb:df:0b:da:e3:78:13:b8:8e:eb:67:
58:d0:77:de:6f:a9:a1:c6:18:4b:50:af:b3:b6:95:90:7e:4d:
fa:ac:63:5e:61:18:20:05:b0:a4:53:a7:5f:eb:62:71:01:4e:
89:6d:c0:1b:08:80:c9:be:00:f2:7e:4e:71:ae:af:3f:ff:b1:
12:dd:cf:c7:49:a2:e4:f4:76:02:4a:c1:ac:3b:91:26:f7:a2:
ce:4e:21:68:e2:81:0d:cc:db:6a:f2:ae:b9:fb:b4:c5:5f:1a:
cc:b9:53:ac:83:cf:18:0b:f4:fc:6d:8f:cc:4d:85:38:c1:64:
ee:7f:eb:21:46:5d:8b:f6:3e:fc:ca:2d:58:09:a9:18:44:63:
38:62:a3:9f:4d:33:c7:4a:b0:ee:43:a4:dd:6b:26:63:9e:04:
0e:9f:f3:55:60:e7:4c:69:4c:41:b0:e9:0a:f2:e5:76:c6:89:
9b:8a:6d:dd:28:0f:a4:5c:80:ce:17:56:39:97:b3:a1:15:81:
d7:2a:bd:3b:21:00:f3:44:fe:7d:94:d4:2d:0a:da:f0:8c:b6:
e7:d8:b8:a4:e4:37:43:b0:14:d8:61:04:e9:b9:4c:88:5f:1e:
5a:ed:d5:9a:49:8d:4c:bb:c6:88:3e:a1:20:d0:6c:59:20:7f:
70:33:5e:8d
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUXM9BRe98dnNOH4zXOx2nMGiwteUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjMwNzA4MDAwMDAwWhcNMjMwODEyMjM1OTU5
WjB6MUkwRwYDVQQFE0BjMDcwYWJjNmM0NmJkODY1Y2YyZmQyYzI3NmY4NmE4OGFk
ZWJhMzFiMGEwMDc1MzdmMzg0NzdjNzZmOGJjNWRmMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC5/uZ2kVXiRjQlheQoLneYoG/5ZIYx+MoVPRTGWSJ4xvNH
0vqMTetNWIYY11Zvs8budyl6TzkiE5e/qwKxyluSKJjcQctBTBpkT7ewa2uZKLvd
lmfGUj/Gd6gOdobcuBd+pgFz8/Ox2oWxT1FssotpfFpVBQ4VLz+8008V9QKqIj+n
HE04EgvL2oL3DEv4b6Vx/g3YVQpeL23SSpytl5SH7EfTuzSh1hpHDYuss5Nrxf2a
z5ST8Q7zHKfObt3dL8neRSqIi31J9yN+N0xp6r1FPsp3FtgHxQ+FuADPr0NWLXRa
+LeAu5VAhu38J0DQTE7a+E9LFv85YUriou800MrRAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUys0S0RozelIoX/NQDP5kZXNJyxwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2UzZTAyY2Q5LWE3ZTItNDMzNC1hM2JlLTE0YTc2OThlYTcwMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADAK7gwDQYJKoZIhvcNAQELBQADggEBAGuuK0gcwEnr3wva43gTuI7rZ1jQ
d95vqaHGGEtQr7O2lZB+TfqsY15hGCAFsKRTp1/rYnEBToltwBsIgMm+APJ+TnGu
rz//sRLdz8dJouT0dgJKwaw7kSb3os5OIWjigQ3M22ryrrn7tMVfGsy5U6yDzxgL
9Pxtj8xNhTjBZO5/6yFGXYv2PvzKLVgJqRhEYzhio59NM8dKsO5DpN1rJmOeBA6f
81Vg50xpTEGw6Qry5XbGiZuKbd0oD6RcgM4XVjmXs6EVgdcqvTshAPNE/n2U1C0K
2vCMtufYuKTkN0OwFNhhBOm5TIhfHlrt1ZpJjUy7xog+oSDQbFkgf3AzXo0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:44 2024 by rpki-client on console-ams.rpki-client.org