Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa
File: 6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa (raw, json)
Hash identifier: OxdOvb2t5BV23czA3IHtep4uhol6jAOJEffwQFuXBRI=
Subject key identifier: 95:11:BA:1E:7A:1E:39:A4:DF:99:7D:B8:9C:89:89:FC:DF:4D:EB:52
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 1BD7AA96DBF2CD6A83309C3426D67C6AAE6FF285
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa
Signing time: Sat 14 Dec 2024 00:00:00 +0000
ROA not before: Sat 14 Dec 2024 00:00:00 +0000
ROA not after: Sat 18 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da00:1000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:d7:aa:96:db:f2:cd:6a:83:30:9c:34:26:d6:7c:6a:ae:6f:f2:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Dec 14 00:00:00 2024 GMT
Not After : Jan 18 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d4:92:03:3b:6c:0e:a9:de:6d:ad:13:22:74:
48:08:2b:00:aa:48:c8:ee:f8:bc:d0:4e:94:3f:6e:
81:98:60:b1:a8:98:5a:ad:ad:a3:d6:49:5a:23:f0:
1e:ef:55:73:26:66:cb:24:db:20:e1:ec:d9:1e:a3:
45:00:d7:72:9a:63:8d:ad:d4:6a:de:dd:3f:37:35:
c9:2e:5e:e3:d0:70:92:fd:57:45:82:2a:27:ea:1c:
e2:2a:00:c1:d8:17:e2:0c:65:d6:9e:a4:56:9e:17:
91:62:a5:99:cb:3f:c1:5d:f6:42:4a:49:7c:89:15:
44:0a:03:93:6a:34:e2:0b:27:21:50:42:1e:b3:72:
8f:08:78:a0:10:bc:0c:c8:e1:91:8e:c0:52:43:2b:
11:59:57:f8:4a:66:ab:ad:05:80:fa:9d:6c:a4:b7:
1a:e0:7e:60:20:4c:58:f1:8b:f3:38:53:0d:3e:c2:
da:5d:6a:06:73:6e:71:d1:d9:1b:90:30:c9:5c:06:
b6:90:78:43:06:cc:08:40:1d:38:a3:54:7f:b6:84:
f4:e6:e0:fa:4f:97:cd:43:24:fd:00:71:68:7b:16:
60:79:6f:9f:e1:10:ad:31:4a:22:ad:4a:c2:de:04:
3d:67:34:43:b4:41:42:c9:1b:ff:2b:9f:00:05:e0:
77:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:11:BA:1E:7A:1E:39:A4:DF:99:7D:B8:9C:89:89:FC:DF:4D:EB:52
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/6055c99a-8ca5-4e31-bf2f-3b75ddd3d70d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da00:1000::/40
Signature Algorithm: sha256WithRSAEncryption
91:94:72:b7:bb:c7:b3:db:4c:e8:92:00:49:75:ab:8d:22:e4:
25:1d:34:62:d9:c9:d1:44:5b:23:3f:58:2c:c1:92:7f:1b:2d:
86:67:6b:87:2c:74:ab:4a:75:8d:66:60:36:10:e5:fa:71:7b:
00:3c:b1:5a:55:f4:76:d8:6c:00:35:e5:f9:c9:9c:9c:74:fc:
cd:ee:3b:05:71:42:f4:8b:c4:5f:3c:e0:de:09:86:e2:33:0a:
79:2f:d3:03:05:9b:87:94:1b:22:17:8c:38:dd:07:56:f3:77:
0d:3c:04:c0:5e:5f:7c:1e:e6:71:00:42:d1:7f:a7:b1:47:97:
32:a5:9f:3f:7b:75:bc:27:79:7f:ae:bb:91:71:4f:83:fd:16:
bd:32:14:68:6b:03:9b:c7:69:71:64:f7:b3:8f:ef:c7:b0:17:
74:de:48:c3:81:46:24:17:af:c0:3d:af:54:68:cd:3a:ae:82:
04:c8:d1:b4:8c:52:3b:09:3e:98:4c:40:70:d7:ab:a8:df:c9:
e3:8b:68:4e:b9:a5:0f:3f:ab:1c:56:2d:df:44:9e:6c:d4:b7:
1d:88:31:fe:bf:55:0f:9d:aa:f2:d9:ea:11:ec:47:6c:94:7a:
d1:b0:9c:63:fe:3b:69:4b:68:3c:6b:45:48:06:56:a9:61:a1:
2b:fa:bc:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 23:54:24 2025 by rpki-client