Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4f5a2bd3-0cb0-4a3e-8259-8182cb17fb4e.roa
File: 4f5a2bd3-0cb0-4a3e-8259-8182cb17fb4e.roa (raw, json)
Hash identifier: PHDMHK6HVqB8Q7mNj/XKRfIDrmnzduylgkh7vgmYf9o=
Subject key identifier: 5A:02:70:F3:07:41:85:A7:3E:D2:35:98:68:30:86:BE:F7:DF:E1:19
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 310FA66B014981B9410753BB7526EE29537FFE80
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4f5a2bd3-0cb0-4a3e-8259-8182cb17fb4e.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d030:8040::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:0f:a6:6b:01:49:81:b9:41:07:53:bb:75:26:ee:29:53:7f:fe:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=02b828862861ba12f111efe61c868e99e6b45da74263a3acc154f01ab04e39e9, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2d:df:21:8c:e3:64:6b:2e:65:bd:18:d2:c4:
b3:68:4b:be:3b:6a:7b:50:00:c4:5b:c2:86:31:53:
16:d1:b7:a1:ca:13:a3:33:5e:42:7b:3e:d7:54:ee:
40:1e:b7:2d:26:4e:c8:61:19:4d:43:4d:b2:8f:7c:
1c:44:fc:ed:62:9a:5c:16:47:52:57:62:4d:e9:cd:
8d:14:a8:82:06:d6:d4:ef:e6:ca:be:ef:84:ed:29:
4f:bc:17:26:90:5c:fe:c2:ec:9a:7a:4b:1d:dd:c9:
7a:b5:b1:a6:88:de:97:40:63:82:cd:6f:e1:fb:fc:
2b:9b:9a:3e:5f:f9:52:38:08:bf:fa:bd:c6:88:29:
21:b3:40:0d:43:a9:77:69:5b:71:ed:07:e9:db:10:
24:58:e9:20:31:08:60:b0:76:27:26:e2:8c:84:d4:
9b:a4:2a:c2:53:14:8b:ed:92:60:2c:a5:48:6a:14:
c1:3e:64:91:64:e8:47:76:be:a0:8a:cc:ba:19:f6:
a8:da:7d:67:0d:2a:12:01:77:92:7c:e1:1d:de:9d:
b1:86:88:c6:9c:2e:ce:d6:c6:ee:a9:90:02:c6:57:
4a:42:c5:a5:07:28:50:2a:b0:24:4d:cf:44:37:5f:
36:a8:8a:ff:38:05:37:83:3f:c3:28:21:12:00:ad:
56:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:02:70:F3:07:41:85:A7:3E:D2:35:98:68:30:86:BE:F7:DF:E1:19
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4f5a2bd3-0cb0-4a3e-8259-8182cb17fb4e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d030:8040::/46
Signature Algorithm: sha256WithRSAEncryption
bf:65:ab:a6:06:6b:bc:a9:11:d9:cc:d7:ae:c1:a2:52:96:8f:
45:62:6b:03:4c:3f:95:ca:74:b0:7c:91:7a:9a:ad:d1:e1:43:
05:db:22:77:a4:19:f6:0a:11:5c:cf:1d:15:e6:00:75:2b:14:
78:20:4b:82:08:4e:15:35:ab:b6:a3:c0:08:aa:a6:8c:e8:9a:
8c:a1:7a:3b:f0:d1:a0:cd:c1:78:b7:aa:7c:8b:60:60:62:c4:
e0:f3:b0:b1:8a:5d:18:cd:2b:ca:e9:1e:b2:77:b7:ae:4f:0d:
2d:c7:72:0b:36:f2:ed:aa:f0:8b:2f:c6:69:8d:33:c6:af:13:
1a:c0:c0:52:23:68:f4:a5:1a:7f:15:c7:59:22:dd:d5:3a:af:
0e:c6:03:f4:fe:a1:6f:6a:93:9e:96:62:86:cd:2f:c3:08:f3:
df:9f:8e:f9:c5:03:d4:5d:78:23:a0:2d:58:10:4f:98:a9:f9:
87:21:ba:b7:44:35:5b:b0:e0:fd:0b:e9:b9:8f:d5:02:e2:d1:
3a:15:47:7f:e6:c8:f9:5a:1e:4d:91:7d:1f:18:2c:21:dd:f0:
ab:6c:d0:81:cd:b2:d3:d2:a6:5e:d1:e2:b5:ba:54:6a:64:91:
e4:91:62:19:a1:2b:ef:15:c5:77:67:73:16:e1:79:57:89:77:
70:56:5c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:07:18 2025 by rpki-client