Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edae78d4-e069-4b37-aa0f-836c9c72cbf6.roa
File: edae78d4-e069-4b37-aa0f-836c9c72cbf6.roa (raw, json)
Hash identifier: npLfe2gO2BXcTj0e6zzGZdRUdzNJz6dcB2+FUD2VJJc=
Subject key identifier: 1C:6E:D8:6B:21:D9:F0:C5:1A:26:0D:CE:11:DA:EB:B0:29:6C:6F:A1
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 6F030AC64F360B843A66C0BC1FA648F9032E3887
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edae78d4-e069-4b37-aa0f-836c9c72cbf6.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d030:80c0::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:03:0a:c6:4f:36:0b:84:3a:66:c0:bc:1f:a6:48:f9:03:2e:38:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=9677c71ec4dfea97cd9617e5ed73394485dce95e5b3d3f24e359991a56e22d9e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:55:9c:3e:be:17:5e:0d:8c:48:34:3e:8f:12:
39:2f:bb:f6:2c:c2:46:ad:f2:e8:ed:ff:64:40:b6:
65:8b:e9:74:d2:32:c0:dc:a7:c1:e5:b4:b5:79:32:
f7:a0:9c:6e:b8:c3:37:ff:c8:1a:b4:5d:32:a7:26:
9e:ec:f5:12:db:fa:3e:53:40:8b:ba:7d:dd:9b:cf:
fa:a9:c3:55:cb:cd:77:92:ec:ce:25:18:ee:1f:af:
55:41:a9:45:d6:0d:4d:bc:c1:8f:3c:49:95:00:b4:
ea:9f:24:eb:3a:85:67:1d:2b:23:1d:3f:7c:3b:16:
a2:c8:ad:2e:27:98:37:71:01:fb:c4:d0:cf:b4:d7:
2f:a9:1c:29:b0:17:dd:89:61:0a:74:0d:05:33:92:
b1:7c:4f:7d:c7:18:33:fe:19:0e:3a:9c:35:1b:27:
83:6c:fc:0b:03:08:10:58:ed:3c:3c:7c:92:61:60:
c7:8b:4d:e9:dd:19:c8:f2:01:9a:0a:8b:53:a7:16:
8d:65:6c:18:bb:42:d7:df:82:6d:1d:52:bc:0f:18:
a5:f4:41:f8:f1:f6:54:1c:cc:34:c6:ff:bd:82:8d:
58:c0:eb:e0:dc:56:36:46:d1:45:26:c7:cf:42:0b:
2f:af:c6:22:ac:57:97:6a:13:13:6e:2c:66:c3:de:
42:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:6E:D8:6B:21:D9:F0:C5:1A:26:0D:CE:11:DA:EB:B0:29:6C:6F:A1
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/edae78d4-e069-4b37-aa0f-836c9c72cbf6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d030:80c0::/46
Signature Algorithm: sha256WithRSAEncryption
98:24:0f:3f:61:69:f6:41:6f:77:58:69:2f:07:5f:9f:79:25:
52:77:6c:c8:fb:f6:ac:66:a0:c3:52:63:58:a6:7a:50:a3:a7:
9d:2e:a0:f7:e9:bf:4d:90:55:d2:92:dd:2b:72:a3:64:3e:46:
3b:e5:bb:33:d9:73:5b:94:fa:0d:a1:b9:87:49:bd:b2:05:e6:
0c:b6:8f:27:c8:ca:06:9f:33:e9:48:b0:2e:9d:47:5b:dd:0a:
df:62:97:bb:ad:71:4a:cf:3b:5f:2c:77:74:0e:69:41:4b:8c:
93:db:db:30:1b:bd:b4:40:97:0e:12:da:c2:8e:a5:ea:f3:9b:
b1:9f:74:84:1c:67:db:77:59:e1:35:8f:24:ff:30:c6:be:a8:
a1:ca:9a:43:2b:78:89:6d:29:43:c8:a2:f1:a1:2e:0b:f2:d1:
90:af:0b:32:0f:77:69:39:b0:b2:2b:cb:64:1d:7c:ac:84:18:
56:1d:42:3d:5d:33:79:3c:1a:83:f0:30:ea:14:86:4c:fd:8d:
a9:77:23:32:9d:cf:0c:26:a4:1f:9e:61:a3:38:07:1b:e1:14:
ca:65:e7:78:39:c1:f4:b5:d1:cd:35:6f:52:9a:4e:4d:33:3c:
08:70:34:08:83:3a:4b:1b:34:5a:c9:6d:84:c9:fe:d7:ab:42:
ed:b4:32:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:06:20 2025 by rpki-client