Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/168088ed-555e-4d13-9a8c-5dacdd77b796.roa
File: 168088ed-555e-4d13-9a8c-5dacdd77b796.roa (raw, json)
Hash identifier: tW5TjYHJfatSWvhijj8mnj/XrbnpAGviJlSOPEb/HgM=
Subject key identifier: 5F:84:09:5A:ED:86:C6:53:A3:6F:A0:76:18:D5:56:17:18:F2:DB:7F
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 31E729618797A5CB0562A86D6D02DF5A1DE5E782
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/168088ed-555e-4d13-9a8c-5dacdd77b796.roa
Signing time: Sat 14 Dec 2024 00:00:00 +0000
ROA not before: Sat 14 Dec 2024 00:00:00 +0000
ROA not after: Sat 18 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafc:6000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:e7:29:61:87:97:a5:cb:05:62:a8:6d:6d:02:df:5a:1d:e5:e7:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Dec 14 00:00:00 2024 GMT
Not After : Jan 18 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:38:46:9b:84:d0:cf:5e:70:bd:d0:da:36:95:
e1:aa:39:00:1c:ac:d0:b3:99:d8:90:6e:e6:4b:21:
6a:07:84:8a:99:00:24:97:72:d3:89:ac:58:e8:07:
a0:a7:11:05:13:cd:ec:18:8c:8b:d0:93:9b:22:b9:
10:c8:43:f1:9a:a4:c1:11:56:7a:f4:47:32:20:c4:
66:4a:1b:69:37:d8:79:b2:b1:f2:73:29:63:39:1a:
37:eb:b6:2e:49:46:79:6b:f8:d1:61:3b:f6:2e:16:
13:36:f9:c4:f3:97:8f:2e:e8:9c:ec:42:8d:d3:22:
83:0c:4e:78:6b:09:c0:48:0e:9c:9c:08:f5:20:70:
2e:3d:da:22:ae:15:a0:b7:99:62:5f:0f:e9:2a:37:
17:11:42:25:09:4b:46:e9:8b:5a:4f:bf:3a:5a:76:
f1:1d:f9:de:b1:d7:fd:fa:f3:26:07:8b:ed:60:87:
b7:42:e0:45:e1:5e:19:a5:06:b1:04:1d:79:35:ad:
40:21:86:28:75:6f:9a:17:96:cc:be:09:88:48:b3:
11:eb:8a:28:71:f9:1b:d5:c7:32:a1:02:d7:9f:0a:
7d:01:d2:63:65:55:fd:8e:99:71:5d:ed:d5:32:36:
22:49:1b:f6:40:84:36:9e:ce:c2:92:1c:b8:91:3a:
e9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:84:09:5A:ED:86:C6:53:A3:6F:A0:76:18:D5:56:17:18:F2:DB:7F
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/168088ed-555e-4d13-9a8c-5dacdd77b796.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafc:6000::/40
Signature Algorithm: sha256WithRSAEncryption
a7:60:ad:ce:80:4e:1b:87:45:72:f3:36:98:ce:b8:9e:dc:01:
bd:e3:20:f1:86:e2:a1:8c:0d:28:88:7d:57:70:85:1d:08:d9:
f7:5c:b4:6d:51:18:4f:d5:ef:4c:8c:c6:ac:af:ca:cd:d9:3d:
34:3b:28:16:c7:2e:a0:e9:4c:63:3c:68:0d:cd:44:93:06:73:
f5:1e:bc:98:7c:04:7a:89:5f:96:ca:3b:b8:23:23:e7:da:3b:
bb:a0:ae:5f:ca:3a:e2:e2:5f:b3:62:2d:20:a9:0b:e5:6d:41:
99:a4:93:3e:22:e8:a2:bb:20:ba:58:fd:55:55:ba:06:c8:7f:
13:84:83:de:9f:eb:c9:f0:c4:53:92:98:52:59:05:b9:79:c6:
4a:d8:05:9c:49:02:27:db:be:5e:3d:3f:3e:19:d3:a1:97:96:
73:97:f1:cd:af:11:f5:c4:a0:8e:21:61:a1:e3:78:82:5c:f6:
05:9d:53:b0:3f:40:d7:78:3c:5e:2e:bd:33:44:4b:73:79:6e:
78:a2:a3:b6:af:db:43:2d:be:55:4b:f3:ec:4b:c5:c9:5f:a2:
19:e3:0f:c3:63:da:e7:96:ea:39:3b:fd:c2:fd:70:0b:28:a5:
60:01:10:5c:25:98:3a:e6:21:6b:ef:b3:37:51:1e:77:3c:f5:
ce:33:24:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 23:27:11 2025 by rpki-client