Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c31b78e4-cc18-4088-ba24-402ac961b359.roa
File: c31b78e4-cc18-4088-ba24-402ac961b359.roa (raw, json)
Hash identifier: bGgzLDPZxPTJWZi9WWbuLd21l615UNYxHYQA1fn6KC4=
Subject key identifier: 44:96:03:9A:D9:5F:6A:86:DF:A7:83:26:16:04:58:E7:FD:9A:FA:A8
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 0692CD4C70F6AA921F94C27B4E2C661B01DC2B90
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c31b78e4-cc18-4088-ba24-402ac961b359.roa
Signing time: Wed 11 Dec 2024 00:00:00 +0000
ROA not before: Wed 11 Dec 2024 00:00:00 +0000
ROA not after: Wed 15 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:9000::/28 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:92:cd:4c:70:f6:aa:92:1f:94:c2:7b:4e:2c:66:1b:01:dc:2b:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: Dec 11 00:00:00 2024 GMT
Not After : Jan 15 23:59:59 2025 GMT
Subject: CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1d:e3:34:bb:d6:bc:4a:23:92:47:03:c7:f6:
7d:80:5d:f2:6a:5e:ec:12:98:aa:ed:3d:40:1e:e6:
d3:4e:9c:41:58:95:dc:5c:16:89:42:93:53:f0:b5:
43:9f:3b:56:1a:1f:60:ad:c7:0e:75:d3:b1:10:ce:
f7:bd:c9:5e:18:99:ac:57:18:70:a3:eb:6b:f1:c6:
f1:c6:6a:74:a6:ef:99:5c:5d:1f:90:f4:43:c4:ab:
e3:9c:e2:e1:ad:53:22:a4:4a:ae:94:83:7a:dc:f1:
96:27:b0:49:87:bd:eb:70:58:54:84:ad:e7:c8:09:
b4:cf:e4:3c:63:7c:bb:49:6d:9b:37:46:c8:48:07:
48:34:ad:4e:f5:d9:88:45:16:a6:92:c3:cf:de:b8:
4c:e9:4b:5c:6f:6c:99:a5:ac:25:7e:2b:7a:ee:ec:
dd:2c:f0:f7:2b:c8:95:dd:00:6c:74:9e:a0:8d:2e:
f0:f8:03:b6:a8:71:8a:10:69:5c:d4:97:87:d3:50:
d8:75:a0:31:68:65:86:f3:82:e0:e7:b9:78:6f:a7:
a5:ec:d3:b2:c8:b6:b2:c0:a5:94:a2:eb:95:61:b4:
ad:b5:8c:54:ff:b6:33:39:6b:bf:aa:20:a0:76:06:
90:e9:c8:cb:31:cf:b3:60:50:e7:41:20:d5:e4:cb:
a3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:96:03:9A:D9:5F:6A:86:DF:A7:83:26:16:04:58:E7:FD:9A:FA:A8
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/c31b78e4-cc18-4088-ba24-402ac961b359.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000::/28
Signature Algorithm: sha256WithRSAEncryption
2a:19:95:39:e5:20:76:43:2b:81:ee:5c:77:55:f6:3d:b6:a9:
a9:d8:a1:77:67:d4:f2:e8:cf:5a:2b:a7:ec:3a:a5:a0:b4:8e:
7d:d8:59:1d:45:d9:dd:55:2e:10:64:9e:e1:a9:fb:8b:20:1f:
ff:df:dc:08:81:83:aa:83:4c:b8:9b:18:8e:7b:db:01:83:f2:
e7:c7:11:58:e8:47:1b:54:d6:29:fe:80:92:15:26:84:9c:4c:
76:e8:c5:64:57:a2:4c:7a:5c:b4:d7:c1:18:ac:ab:84:70:49:
b2:49:7e:6e:6d:82:51:e4:77:ff:42:b0:54:ce:32:95:ab:a4:
da:74:29:82:03:22:cd:8a:3b:e9:ea:a8:da:ed:2d:10:67:56:
6d:09:ed:c2:16:26:44:87:c7:23:0b:94:68:50:6a:18:40:27:
9c:df:df:be:a1:1e:2b:70:0f:48:91:cd:70:91:24:84:2c:77:
e9:89:ea:10:9b:37:55:14:ab:d5:b9:e1:54:e4:56:46:66:28:
95:5b:fe:9b:85:7d:70:26:21:56:5a:6e:cc:89:36:12:16:55:
b6:1e:4f:c4:36:81:d4:42:f0:40:8a:2c:04:3e:9c:a5:82:a0:
7c:0d:5d:33:76:f8:49:14:5a:04:af:e6:59:ec:e9:6b:7a:bd:
bf:da:81:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:17:52 2025 by rpki-client