Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e528c117-7cfe-44f2-b85a-6e5143ea14d6.roa
File: e528c117-7cfe-44f2-b85a-6e5143ea14d6.roa (raw, json)
Hash identifier: UanOj9YebfWiqS7mBH9xUMIVcmJzPtFcRqby+i6opSs=
Subject key identifier: 0D:BE:7D:75:06:CA:91:7D:32:E6:52:59:E4:7A:D0:45:7F:F9:04:0E
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 756E77D8775A7F50D937D5362EFC9C766EB566C8
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e528c117-7cfe-44f2-b85a-6e5143ea14d6.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d030:b080::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:6e:77:d8:77:5a:7f:50:d9:37:d5:36:2e:fc:9c:76:6e:b5:66:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=71f69a8380a1de611e893ee1c1f526d454c4e1f3c2df88176887de19f172c28e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d6:d9:1f:0e:ae:21:ef:2f:f7:cc:de:ae:e3:
22:23:82:98:a0:de:d5:44:83:eb:ed:74:45:66:aa:
10:d5:ee:4c:dc:e4:74:b2:ac:72:70:2a:a2:4a:46:
25:63:32:ce:e4:7a:dd:87:51:1e:02:22:ad:72:10:
27:d6:47:f3:95:14:5d:59:2c:a5:4e:0c:3c:5a:83:
09:b5:91:f6:d0:f5:fb:fe:31:7d:0b:15:c9:f3:0e:
45:f4:83:8f:74:83:cc:fd:63:a9:b9:38:f9:e5:07:
bf:1e:76:18:ff:99:0a:9d:12:87:3d:50:7a:a4:98:
d9:d7:a4:b4:5e:e4:6a:07:ef:fb:f8:51:f0:4b:08:
54:64:e0:26:6f:d2:13:e1:7f:98:73:63:fd:fa:65:
e2:48:0b:6d:0c:c9:3e:65:c8:1b:4f:49:0f:40:ac:
fe:b6:a6:3a:71:c8:5a:11:46:25:99:33:d6:63:87:
37:b0:19:aa:20:0b:52:40:69:a1:51:d2:2f:0a:bb:
34:2d:35:aa:46:5c:4a:10:1f:70:80:7d:42:4e:ea:
54:eb:6e:67:8a:5d:f1:b7:ef:d2:8c:f6:e1:b3:f0:
94:69:11:26:58:80:ed:dc:20:29:fd:73:1d:68:63:
15:c4:a7:6a:28:13:cb:1f:bf:49:70:a3:89:22:97:
ba:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:BE:7D:75:06:CA:91:7D:32:E6:52:59:E4:7A:D0:45:7F:F9:04:0E
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e528c117-7cfe-44f2-b85a-6e5143ea14d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d030:b080::/46
Signature Algorithm: sha256WithRSAEncryption
02:df:d7:82:29:6d:97:bf:1f:42:f6:29:68:8e:20:4b:46:63:
eb:51:75:02:38:32:4b:b6:cb:57:cd:d2:fc:f3:65:2d:04:b0:
c9:0a:d8:7f:51:e5:d6:89:06:f2:d5:92:e0:e2:b0:ef:d8:f0:
96:10:46:73:ad:a2:0d:bb:66:5d:2b:14:7c:29:51:d1:b0:1f:
27:80:6f:66:88:9d:ec:4a:49:b6:b1:db:d8:1f:17:61:67:aa:
b8:68:ce:94:70:3e:9e:ac:aa:a4:81:f8:15:77:00:de:7a:fd:
66:b6:ea:9f:57:b7:1a:b4:c8:76:97:ab:73:3d:ae:75:8c:5c:
8b:6d:48:37:24:23:10:0c:c5:7b:c1:e2:3f:bb:0a:9b:48:db:
6a:b1:55:f4:9a:87:b9:1b:1c:a5:c2:af:82:cc:f0:0c:04:d1:
7f:9e:de:f3:23:7e:6e:d6:b1:ad:ce:68:2a:08:33:3e:b0:6a:
82:3a:a4:31:03:9a:41:3d:f6:a9:45:a0:2d:4f:ee:57:26:94:
c0:e6:63:cf:99:62:18:49:b9:6d:96:9c:9e:c0:8a:b7:50:a2:
a7:3a:32:b5:6b:eb:da:f3:b9:9b:6e:2f:f6:53:35:0c:68:2b:
69:9b:fc:01:1e:d1:d4:47:b5:62:f4:e6:51:fc:b0:65:4b:72:
97:03:29:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:07:21 2025 by rpki-client