Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb1a28f1-1bca-49d9-ab7e-3cad6d755d97.roa
File: eb1a28f1-1bca-49d9-ab7e-3cad6d755d97.roa (raw, json)
Hash identifier: uIW2Hn1n+BzqDikj74i40QfzHsQv3d8cQ9xTEIjnRcg=
Subject key identifier: D2:AD:B3:7D:4E:D2:6E:C5:57:22:98:88:41:01:E3:23:D0:47:74:15
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 41FFDF8856D74AFBD7AD30B0A9B8A4829A541B98
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb1a28f1-1bca-49d9-ab7e-3cad6d755d97.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d030:9000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:ff:df:88:56:d7:4a:fb:d7:ad:30:b0:a9:b8:a4:82:9a:54:1b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=098afef34bb9e5271d0bebc9858574910885e817e30ad0e99a31d4bf5a22bff1, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d0:48:09:bc:0d:a9:cb:33:1a:05:a5:3e:35:
64:27:af:d7:19:45:2b:2b:a4:ae:c6:4e:81:91:ab:
5d:d7:6b:ac:61:00:7b:2e:bb:0c:f1:ed:07:80:ec:
94:d9:df:44:f6:2a:ba:29:7b:65:1e:1e:34:3c:bd:
35:fb:a2:7b:c6:2f:cb:c5:2d:03:5c:69:fe:9a:d4:
67:a6:d3:02:a6:8e:d6:53:e3:b2:1b:9d:7a:65:6e:
9d:b9:c5:8f:8f:f6:82:05:5d:0f:5a:10:02:11:aa:
48:ad:f9:56:7f:53:bb:06:fc:83:66:53:c5:52:d9:
07:67:67:0f:f4:89:9e:c7:a9:5a:72:c4:44:64:20:
07:ae:d6:f7:ac:99:5e:73:87:54:51:58:fd:ac:b7:
00:e3:7e:fd:94:b8:3e:d3:36:08:55:cb:b1:0d:97:
43:f3:83:36:0d:63:4d:59:b7:65:67:e6:ce:e4:8c:
04:fe:da:1f:59:c2:63:d6:74:77:bb:e0:61:fb:fc:
8e:6b:e5:63:99:72:da:c9:68:b4:4c:cf:d7:9e:f6:
3c:89:16:8b:24:98:d2:ee:8f:48:5e:09:13:b7:5c:
0b:6c:1f:8f:e1:48:93:41:c7:e8:ec:95:30:5e:f8:
31:0f:ea:47:3a:1c:a2:e6:89:88:3d:1d:95:61:e8:
a8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:AD:B3:7D:4E:D2:6E:C5:57:22:98:88:41:01:E3:23:D0:47:74:15
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eb1a28f1-1bca-49d9-ab7e-3cad6d755d97.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d030:9000::/40
Signature Algorithm: sha256WithRSAEncryption
6e:3d:34:a6:28:67:38:76:09:df:65:93:d1:a1:8d:db:36:cd:
bd:85:e0:a5:e7:d3:3b:f3:e5:8b:76:05:91:53:2a:bb:4c:27:
9d:c1:8e:ad:5b:96:02:29:76:a2:94:30:05:be:a2:c9:c4:06:
63:26:3a:23:cc:fa:b7:20:bf:b7:45:b6:f2:4c:af:aa:2f:f3:
c3:b2:21:91:e0:42:8f:c1:c7:14:39:2d:66:59:d9:4a:ff:e9:
57:f7:ed:a4:ad:34:46:d1:b8:5f:a7:4d:ea:cb:cc:24:52:82:
be:1d:00:24:f6:ec:c5:69:30:a9:40:d2:a9:7a:dd:1b:32:41:
2e:e9:8d:e5:b9:70:2f:d8:3b:93:22:3a:3d:c5:65:9e:98:57:
4d:34:15:fe:6b:d7:09:0f:a3:29:99:ba:44:45:fa:39:04:3e:
b4:8c:88:56:5c:0e:d7:ff:7c:dd:13:15:7b:7f:db:07:ce:67:
e5:f0:72:02:ab:cb:10:ef:15:cc:ac:2b:f7:24:45:cc:8d:df:
e9:4e:27:6f:44:39:94:0f:61:e3:d2:78:f1:e7:e0:2a:41:02:
6c:b1:8a:33:1b:f5:93:83:2e:85:9f:16:c4:8d:11:99:8d:82:
45:f2:24:1a:c8:3d:fd:5e:29:f1:ae:4a:58:4f:fc:77:5b:89:
ac:6a:d2:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:07:21 2025 by rpki-client