Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa
File: fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa (raw, json)
Hash identifier: 27ez0oVm2HqYJTaC58+3XHJ9MhKzU7HxbpHOkyHokQQ=
Subject key identifier: 8D:21:93:93:AE:61:3A:52:34:57:EB:14:3A:EB:5C:27:88:41:E7:CA
Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Certificate serial: 367F11B6BBCCE4D1FA8D83372D3EF1877E135753
Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa
Signing time: Tue 17 Dec 2024 00:00:00 +0000
ROA not before: Tue 17 Dec 2024 00:00:00 +0000
ROA not after: Tue 21 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 240f:8000::/24 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:7f:11:b6:bb:cc:e4:d1:fa:8d:83:37:2d:3e:f1:87:7e:13:57:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD28A0000
Validity
Not Before: Dec 17 00:00:00 2024 GMT
Not After : Jan 21 23:59:59 2025 GMT
Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:19:dc:d4:6e:20:09:63:d7:7b:f9:88:df:d1:
5f:97:7f:76:26:46:d9:ea:a0:4f:67:ad:44:9b:58:
c6:af:6e:e8:45:da:48:1d:65:67:b1:04:31:95:d0:
c7:16:a7:2d:7d:25:5c:e7:12:b8:a8:6a:b0:8a:42:
8b:86:97:ff:b1:f1:f8:66:02:21:83:f9:6e:5f:13:
da:e5:50:f6:b7:fe:0c:ff:3f:07:f9:c7:97:2f:8a:
57:32:e4:8d:de:b0:c6:56:8e:ba:24:6f:04:9c:80:
ac:10:99:5a:09:fd:28:a7:23:36:ca:c6:8e:ed:c5:
c1:cf:20:32:b7:f3:ee:e4:d9:28:b8:33:c3:be:23:
85:af:74:08:76:01:9c:d1:4c:c6:15:30:e1:92:44:
dd:8d:1a:22:1e:08:c9:9a:4d:a8:56:24:e2:75:e0:
af:48:50:8b:e8:79:d4:34:20:8f:8c:75:fe:27:30:
63:25:c6:62:5d:77:92:11:35:dd:9b:d0:4f:66:c5:
d0:4f:87:0e:d0:c7:06:e6:8d:fc:f8:50:1f:4e:29:
08:8c:16:4b:ac:c9:06:19:39:d3:05:24:ec:80:64:
13:fc:83:ac:ed:a0:23:86:99:a1:51:26:2f:fb:cb:
74:9d:c1:42:dd:c3:38:70:8f:28:ce:2a:cd:36:c2:
3c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:21:93:93:AE:61:3A:52:34:57:EB:14:3A:EB:5C:27:88:41:E7:CA
X509v3 Authority Key Identifier:
keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/fc41a047-335b-4f07-bd4d-51cf61bfc33f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
240f:8000::/24
Signature Algorithm: sha256WithRSAEncryption
98:c8:b5:92:08:41:f8:be:f8:1c:73:0f:f3:01:08:a6:5d:d1:
90:62:76:c4:56:48:05:30:48:50:0b:e4:0a:67:88:99:14:72:
f7:8c:c6:f8:12:09:74:34:a3:84:56:96:2e:9f:5a:84:99:6f:
1f:47:06:45:63:d2:8e:a5:f6:67:8a:4f:07:03:ca:9a:2a:d0:
1e:8d:8e:08:cc:1a:b1:d2:f9:4a:6f:8a:17:5b:89:db:64:32:
8e:9d:13:3e:c2:07:a5:56:23:14:c8:d2:7f:f0:2d:49:01:c2:
a2:61:d6:81:41:21:55:06:34:1f:5b:b8:3a:85:54:2b:69:de:
00:38:79:3e:5a:57:18:2e:0d:74:67:ad:84:d0:6d:39:21:d1:
c6:a5:99:08:1f:63:20:b5:a7:a5:4d:74:c8:d5:be:2a:68:6e:
29:8b:b8:4d:da:c7:b7:60:b3:8d:cb:a7:56:22:80:bf:e2:a4:
a7:75:bc:29:c1:51:31:69:40:52:22:c2:2e:6f:01:24:df:03:
9c:2f:5f:1a:74:70:2d:61:43:2d:c4:6a:af:65:c2:a5:62:66:
cc:e3:70:97:40:58:bb:bd:c8:ca:aa:0e:19:d0:c4:c0:7f:74:
37:4a:1a:3c:d8:a9:b2:d5:ab:b6:77:67:90:47:c1:89:7e:fa:
71:d1:c7:92
-----BEGIN CERTIFICATE-----
MIIFnDCCBISgAwIBAgIUNn8RtrvM5NH6jYM3LT7xh34TV1MwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQ0QyOEEwMDAwMTEwLwYDVQQFEyg5N0VCRjM0OEYz
NzZCODY3RkM3NkIyQjJCOTEwNzhDM0RENDk0ODgzMB4XDTI0MTIxNzAwMDAwMFoX
DTI1MDEyMTIzNTk1OVowejFJMEcGA1UEBRNANjRlMWIzNWY2ZWYzY2YyZGQwZGYz
M2Q3YzY3YTZmMGVkOGZkNTMzYmIyNjQ0YTY3ODcyZWZkZjk2MWE4MTRjYzEtMCsG
A1UEAxMkNDI1N2U5MjUtNzE1Zi00N2EyLTg5M2UtMGUzZjk3ZWM3ZTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8hnc1G4gCWPXe/mI39Ffl392JkbZ
6qBPZ61Em1jGr27oRdpIHWVnsQQxldDHFqctfSVc5xK4qGqwikKLhpf/sfH4ZgIh
g/luXxPa5VD2t/4M/z8H+ceXL4pXMuSN3rDGVo66JG8EnICsEJlaCf0opyM2ysaO
7cXBzyAyt/Pu5NkouDPDviOFr3QIdgGc0UzGFTDhkkTdjRoiHgjJmk2oViTideCv
SFCL6HnUNCCPjHX+JzBjJcZiXXeSETXdm9BPZsXQT4cO0McG5o38+FAfTikIjBZL
rMkGGTnTBSTsgGQT/IOs7aAjhpmhUSYv+8t0ncFC3cM4cI8ozirNNsI8XwIDAQAB
o4ICSDCCAkQwHQYDVR0OBBYEFI0hk5OuYTpSNFfrFDrrXCeIQefKMB8GA1UdIwQY
MBaAFJfr80jzdrhn/HaysrkQeMPdSUiDMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sLXZ6U1BO
MnVHZjhkckt5dVJCNHc5MUpTSU0uY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvYzNjZDdjMjQtMTJjYi00YWJjLThmZDItNWUyYmNiYjg1YWU2
L2ZjNDFhMDQ3LTMzNWItNGYwNy1iZDRkLTUxY2Y2MWJmYzMzZi5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS9jM2NkN2MyNC0xMmNiLTRhYmMtOGZkMi01ZTJi
Y2JiODVhZTYvOTBjYTkwYTktYTEwYS00NGU3LTgyYjktMTM2NTc0NmJhNTVlLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAM
BAIAAjAGAwQAJA+AMA0GCSqGSIb3DQEBCwUAA4IBAQCYyLWSCEH4vvgccw/zAQim
XdGQYnbEVkgFMEhQC+QKZ4iZFHL3jMb4Egl0NKOEVpYun1qEmW8fRwZFY9KOpfZn
ik8HA8qaKtAejY4IzBqx0vlKb4oXW4nbZDKOnRM+wgelViMUyNJ/8C1JAcKiYdaB
QSFVBjQfW7g6hVQrad4AOHk+WlcYLg10Z62E0G05IdHGpZkIH2MgtaelTXTI1b4q
aG4pi7hN2se3YLONy6dWIoC/4qSndbwpwVExaUBSIsIubwEk3wOcL18adHAtYUMt
xGqvZcKlYmbM43CXQFi7vcjKqg4Z0MTAf3Q3Sho82Kmy1au2d2eQR8GJfvpx0ceS
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:24:36 2025 by rpki-client