Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa
File: 018dea0d-42eb-4d58-8914-636d25ca3b3c.roa (raw, json)
Hash identifier: T7M6TbUtY4NP4tbQO8GHRmAdmjHx6C3BPEmAxzkGNt4=
Subject key identifier: A3:8A:E4:74:C9:23:1D:8F:DE:FE:53:60:94:17:59:22:17:0A:F3:1D
Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Certificate serial: 5D3E4ED712866CBC55A1FFDCBB1A4231ABA24796
Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa
Signing time: Wed 05 Mar 2025 00:10:50 +0000
ROA not before: Wed 05 Mar 2025 00:10:50 +0000
ROA not after: Wed 09 Apr 2025 23:59:59 +0000
asID: 16509
IP address blocks: 240f:8018:800::/38 maxlen: 38
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:3e:4e:d7:12:86:6c:bc:55:a1:ff:dc:bb:1a:42:31:ab:a2:47:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD28A0000
Validity
Not Before: Mar 5 00:10:50 2025 GMT
Not After : Apr 9 23:59:59 2025 GMT
Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b4:a8:1a:21:a4:87:eb:b9:05:2f:20:f5:a4:
41:8b:b3:33:42:ab:ac:53:f7:5b:cd:32:8e:e1:b3:
8e:d9:4b:06:1e:bb:96:21:ee:a2:40:f8:8e:ea:32:
79:3b:b7:41:e7:8e:df:1b:0b:d4:17:78:08:08:20:
a3:bf:da:95:b4:5f:16:f6:6d:09:60:c3:34:da:77:
1a:69:31:0a:fd:0f:e4:71:70:0b:4b:be:80:97:c1:
02:79:ed:d7:95:74:88:72:ec:97:bf:22:6a:9f:d1:
38:2b:f3:43:64:30:67:40:bb:39:8c:00:d7:a6:41:
3b:39:f9:d1:26:96:98:1b:1f:21:bb:fe:cf:44:f7:
4a:11:d7:76:7c:b9:ef:c9:6e:e8:17:b8:f3:de:ba:
1f:69:b1:54:7d:02:d1:76:01:ce:f6:de:83:88:97:
fd:5b:df:25:21:bd:7a:98:64:ec:37:21:c7:77:0c:
13:7a:cd:91:c6:e8:1a:37:47:46:e8:b0:4d:f0:82:
31:5d:e9:42:00:51:d2:0d:d0:6b:82:cc:26:66:e9:
e0:dc:df:4e:0a:f5:75:30:42:96:42:f3:1e:de:43:
bf:1e:36:ae:85:e7:b7:fd:2a:70:07:93:c0:7e:4a:
52:bb:13:9a:5a:0c:76:6d:27:c1:5a:2f:68:9e:e5:
d1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8A:E4:74:C9:23:1D:8F:DE:FE:53:60:94:17:59:22:17:0A:F3:1D
X509v3 Authority Key Identifier:
keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/018dea0d-42eb-4d58-8914-636d25ca3b3c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240f:8018:800::/38
Signature Algorithm: sha256WithRSAEncryption
24:66:63:2f:4f:bb:3c:46:01:fd:b1:a2:99:59:01:89:0b:1e:
f9:74:39:c8:d2:34:87:f9:b2:6d:c6:ab:4e:da:60:99:ee:18:
c2:30:f2:84:6c:40:6c:57:45:60:61:07:0f:0f:e2:1b:40:63:
87:32:11:e7:fa:be:b4:64:dc:93:88:6b:85:91:0d:0d:29:e3:
a3:66:6d:01:24:d9:70:3f:86:77:36:4d:59:f8:14:28:5b:81:
0c:62:80:25:3c:f5:4b:1b:6c:dc:80:35:6b:00:f7:74:80:00:
e8:0d:e9:6b:bc:a1:57:84:e5:92:6b:8d:1b:68:66:26:ac:12:
63:26:b3:81:35:6d:cd:eb:86:2c:87:b1:96:98:16:bd:d5:19:
bc:fb:11:b8:2d:8b:81:10:77:f2:17:88:70:2b:e8:3d:fe:30:
a4:a3:b2:67:02:ec:5e:9f:d8:9d:62:78:a3:24:75:e2:b9:1d:
46:f8:e0:8c:d4:59:93:0d:52:89:4e:a1:52:7d:8d:24:b2:45:
4e:1f:85:49:5e:7f:99:ab:c8:a0:61:cb:0b:33:4a:79:22:eb:
9c:f9:2a:2e:17:2a:01:91:22:d9:90:9e:48:aa:4a:da:55:fb:
46:81:33:1e:ed:ce:07:04:1c:a3:cc:34:ff:d7:8b:17:92:2a:
58:ac:4a:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:25:47 2025 by rpki-client