Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4aa3d476-d56a-4480-96b0-88b9ad873574.roa
File: 4aa3d476-d56a-4480-96b0-88b9ad873574.roa (raw, json)
Hash identifier: yFhlTHcpcs1BHWola7wcv2pP92NQrz3u4Nmh6/Q9pIE=
Subject key identifier: A9:5D:25:E1:09:ED:A7:64:03:3C:21:A9:49:AC:CD:FE:B9:02:7D:5B
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 7D2B73776F65DFC35362D4C680A3049CA451C2EB
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4aa3d476-d56a-4480-96b0-88b9ad873574.roa
Signing time: Mon 25 Nov 2024 00:00:00 +0000
ROA not before: Mon 25 Nov 2024 00:00:00 +0000
ROA not after: Mon 30 Dec 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2600:9000:5206::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:2b:73:77:6f:65:df:c3:53:62:d4:c6:80:a3:04:9c:a4:51:c2:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: Nov 25 00:00:00 2024 GMT
Not After : Dec 30 23:59:59 2024 GMT
Subject: CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9e:bd:ab:f4:fd:5b:c8:81:8e:cb:40:8a:97:
53:d6:47:9f:aa:8e:88:0e:f3:0f:d5:0e:32:66:58:
1d:83:a9:2f:cb:bb:f0:3e:cb:50:8a:b9:13:cb:1d:
ef:35:3c:12:e5:2a:e0:74:d7:0a:93:59:74:e0:33:
c0:9a:01:f5:59:50:15:67:66:e1:a3:22:15:93:ec:
79:44:51:ee:83:f1:fb:f9:60:53:a4:47:22:7a:4d:
22:05:c7:63:09:fe:c1:4b:5e:ad:bc:e8:4c:d6:a4:
b6:e8:8f:00:c7:4e:5a:15:fe:b3:a6:93:ad:54:fc:
90:62:b1:b1:12:2c:22:13:02:46:62:a4:52:b3:55:
b5:0f:fa:1d:9a:d7:4c:8b:52:9c:a5:18:a8:8f:5a:
8b:fe:b6:81:68:9c:fa:4a:d7:57:b3:1a:72:6b:53:
5d:d8:d1:ec:a5:fb:e8:f5:84:bb:17:eb:bb:dc:1d:
07:23:66:dd:d8:ac:84:c4:7a:90:38:a7:48:77:95:
24:1e:98:e6:47:ec:60:2f:ef:2a:d0:10:96:97:27:
ab:00:c2:cd:18:a1:83:88:16:55:4c:dd:99:41:3a:
72:2e:3f:ce:bb:12:d3:19:3e:b0:e0:38:f8:79:68:
b7:da:0c:2a:09:fb:5f:1f:80:96:5d:da:fc:6c:e3:
09:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:5D:25:E1:09:ED:A7:64:03:3C:21:A9:49:AC:CD:FE:B9:02:7D:5B
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/4aa3d476-d56a-4480-96b0-88b9ad873574.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:5206::/48
Signature Algorithm: sha256WithRSAEncryption
4e:b3:16:9b:56:1a:53:bc:01:e9:b4:ec:d4:a0:c6:d5:cc:c6:
12:32:58:0e:43:b1:0a:26:72:a1:e4:56:13:61:d3:53:30:71:
1a:29:1b:f3:af:9a:9e:a6:ce:d6:e4:57:86:aa:33:cc:1c:1c:
88:db:5f:ed:ad:c6:9d:16:1f:95:34:d2:c2:14:15:2e:8a:cd:
7e:d3:a0:ee:7d:51:59:bf:7c:0d:65:e7:ba:95:30:75:f9:fa:
13:46:7d:f3:ed:1c:d3:87:50:e3:04:98:a7:ae:ed:83:7d:1d:
61:6a:0d:e5:f6:01:3d:04:9b:38:a7:ad:21:9a:e2:01:25:32:
86:15:0b:44:32:7d:28:64:92:48:d6:34:6a:f5:05:d0:d1:9b:
bd:1d:53:52:63:8e:62:b0:07:49:09:e6:8c:36:ad:fd:de:54:
60:60:88:a4:08:ab:05:76:dd:b3:20:df:39:1e:66:95:d0:a2:
ed:47:c5:f4:a4:3e:9c:47:8a:27:55:74:05:57:09:6c:d3:48:
d6:6e:47:d6:81:c1:bd:99:b3:b1:0b:7f:76:62:ff:7f:7e:af:
84:bb:35:a6:e2:7c:91:46:ea:be:92:ea:bd:27:f5:4f:c8:b6:
64:52:31:f1:0b:ef:9b:63:86:66:d5:53:7d:ba:9c:d3:b0:87:
4c:cb:da:1c
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:28:42 2025 by rpki-client