Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26852de8-0947-45cf-8a8d-dd2044b222d0.roa
File: 26852de8-0947-45cf-8a8d-dd2044b222d0.roa (raw, json)
Hash identifier: TtsN3pKnjuTmjsZnINU0YHNfDbTA2nPRugYWfa4UiVA=
Subject key identifier: 92:76:EE:ED:C7:FB:6E:B4:80:B6:0C:F9:3E:6A:29:C8:42:34:ED:69
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 0D36CEA889F5FEBEBE61E79AB83F645752DF8CA0
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26852de8-0947-45cf-8a8d-dd2044b222d0.roa
Signing time: Sat 14 Dec 2024 00:00:00 +0000
ROA not before: Sat 14 Dec 2024 00:00:00 +0000
ROA not after: Sat 18 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf0:b000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:36:ce:a8:89:f5:fe:be:be:61:e7:9a:b8:3f:64:57:52:df:8c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Dec 14 00:00:00 2024 GMT
Not After : Jan 18 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:18:4a:e5:53:c8:87:be:0e:73:50:62:2b:cf:
12:e7:5a:99:30:52:af:86:ba:4c:b6:6f:ca:74:40:
e7:ba:86:7b:07:a4:29:dc:c9:24:4a:94:f8:43:9c:
ea:be:02:6c:67:0c:0f:55:d2:69:b3:f2:0e:21:b3:
fc:18:00:da:ed:26:ae:e7:83:4d:2f:95:26:04:a7:
61:e4:8c:df:f0:8f:ea:51:f7:3b:d3:11:d2:66:97:
42:5c:66:87:3d:75:5f:6a:cb:a4:d0:ce:85:f7:90:
59:72:4a:79:a8:b4:32:9c:dc:2a:08:c2:77:ec:05:
07:b4:e7:f9:20:e5:2b:34:fe:d5:6c:9b:f5:96:f5:
ed:63:12:69:07:e7:04:69:b3:95:98:cd:26:c7:5f:
bd:c5:d8:09:b2:4e:f9:23:54:b3:84:76:ef:ba:f7:
14:12:1f:d3:1f:78:07:20:fe:52:58:1d:53:df:5c:
04:76:00:7e:ef:81:4f:bf:29:c3:9d:18:ee:40:1a:
aa:85:65:4a:27:a1:e4:c3:1c:c6:e2:b9:e0:0d:af:
73:54:50:a7:f2:1b:3f:ff:2e:e8:b2:d9:b7:9a:41:
90:44:6c:8d:40:de:62:cc:0f:19:34:05:35:96:bb:
b6:ed:98:68:59:08:1f:40:23:86:6a:33:13:76:9b:
87:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:76:EE:ED:C7:FB:6E:B4:80:B6:0C:F9:3E:6A:29:C8:42:34:ED:69
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/26852de8-0947-45cf-8a8d-dd2044b222d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf0:b000::/40
Signature Algorithm: sha256WithRSAEncryption
56:87:80:18:28:9a:61:46:d1:5a:f9:4e:bf:e6:7b:1f:d4:4c:
d6:46:a2:bc:d4:fc:ca:6c:bf:d7:e9:21:2c:2a:63:40:46:be:
f9:0b:32:3a:8e:73:ae:a1:86:66:f5:32:5b:40:0c:54:3b:20:
c4:25:d2:4c:9b:bd:00:13:67:07:b0:cc:03:50:e8:f7:07:67:
8f:f6:32:97:a6:62:ab:34:52:12:f5:ee:65:ae:b0:62:c1:4f:
ae:40:b7:d8:00:e2:e4:4e:b3:98:80:e2:92:92:85:c3:78:14:
d6:d8:b0:05:f4:58:bf:c4:eb:ac:b1:0d:24:09:4d:e1:5b:fe:
de:a0:ba:92:88:d8:c9:f6:d1:08:a1:67:86:45:56:0d:f3:e2:
55:2b:a7:b8:91:60:8e:7e:55:ef:9a:3b:ac:9f:ef:c7:6d:f2:
f3:04:ba:86:0f:34:41:a4:ac:19:81:80:ff:d7:2b:91:ab:63:
23:3c:02:1d:e9:34:d3:a5:fd:18:86:cb:0c:c9:53:6d:d2:52:
ba:06:2e:72:b6:7a:4f:6d:69:ad:b1:72:01:b7:9b:4d:95:9b:
c7:27:1b:b2:40:ae:93:00:d2:18:b7:b2:ae:9f:7a:02:e6:40:
66:af:23:2d:5b:fa:52:7e:d7:7c:cc:ae:40:a0:cd:81:6f:45:
f6:ed:26:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 23:44:58 2025 by rpki-client