Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ef6ab83-cb4a-4c45-a58b-8383ab2bf4f7.roa
File: 9ef6ab83-cb4a-4c45-a58b-8383ab2bf4f7.roa (raw, json)
Hash identifier: EWdYwYNZhaznEwqzwan6bsse+PXI8YNOUDK0oOb+P0s=
Subject key identifier: 6D:DF:20:03:86:3A:7C:AC:BE:5F:6F:49:08:C0:36:34:89:6A:DC:5F
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 4CA5DE009464934418CBF2E26849A05955252D5F
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ef6ab83-cb4a-4c45-a58b-8383ab2bf4f7.roa
Signing time: Fri 21 Mar 2025 00:01:42 +0000
ROA not before: Fri 21 Mar 2025 00:01:42 +0000
ROA not after: Fri 25 Apr 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2406:da60:b000::/40 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:a5:de:00:94:64:93:44:18:cb:f2:e2:68:49:a0:59:55:25:2d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Mar 21 00:01:42 2025 GMT
Not After : Apr 25 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2b:7d:3e:d4:e0:6d:53:a6:1d:d4:28:f8:bc:
cb:65:70:bc:9a:e0:2b:cc:21:5e:fe:93:e8:30:c2:
8a:e2:f7:f1:75:a8:28:2a:11:37:53:cd:d3:04:30:
e9:96:72:1e:d2:60:16:11:eb:93:d0:16:ce:e4:3a:
86:1c:c7:4e:e5:76:ad:65:af:be:8b:6f:74:58:aa:
51:23:65:3f:18:9b:ce:7a:c1:ff:a4:ed:13:3a:35:
cb:c4:88:a0:53:46:5a:db:29:87:5d:6f:a2:0d:64:
2c:cc:53:08:bf:5e:2b:ce:bb:33:91:1b:44:a3:94:
95:1d:04:23:71:fa:73:d2:96:57:59:ed:1a:e4:0f:
49:e5:69:8c:1b:ef:cb:3c:67:c2:e0:ed:ce:85:f3:
a6:c2:a9:25:a3:df:00:cc:a1:91:a3:13:05:fc:21:
c5:aa:4b:5f:88:c6:c1:fa:d0:e4:6d:e6:21:d9:81:
c3:cc:e3:07:34:4a:b5:4b:73:4f:df:a4:46:78:bf:
2c:a0:54:1a:7e:49:d2:67:e2:09:98:fd:17:62:5f:
89:b4:70:c9:99:42:74:f0:7c:bf:31:e2:9d:80:f6:
dc:24:0a:93:9a:e4:5f:25:ef:10:c5:b3:96:cf:02:
53:95:d3:32:68:ba:cd:7a:38:1e:01:06:39:be:04:
89:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DF:20:03:86:3A:7C:AC:BE:5F:6F:49:08:C0:36:34:89:6A:DC:5F
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9ef6ab83-cb4a-4c45-a58b-8383ab2bf4f7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da60:b000::/40
Signature Algorithm: sha256WithRSAEncryption
8a:d5:2d:bf:7e:f0:df:8f:af:ce:84:3d:93:66:81:ee:bb:91:
37:e3:24:4e:03:b1:b8:e9:33:c1:24:29:1f:6f:7a:21:a9:eb:
69:82:4c:cd:6f:af:4c:b2:02:66:0d:e1:c3:d0:dd:15:db:c4:
e3:c0:23:73:92:7f:26:71:75:25:75:18:97:48:6a:98:62:64:
e1:21:5e:d4:b8:81:0f:81:9a:b8:18:6d:4c:bf:af:e2:fa:ef:
10:01:3b:c1:ac:73:58:5f:5c:f5:75:ba:55:d2:03:44:91:d5:
8a:7e:cd:a7:0f:37:f8:1c:27:b3:a0:12:ed:bd:aa:e8:16:ed:
18:57:ee:5d:8e:02:c1:c9:34:d1:5f:2e:80:ef:b9:51:5f:f7:
e3:71:d1:84:6a:25:af:8e:85:c9:6a:06:2b:8d:29:27:39:24:
bf:42:9a:79:92:c9:ca:31:ab:04:9d:7c:a9:e4:95:fc:0c:3c:
00:77:6b:e9:73:82:92:6e:dc:5e:f4:ba:43:33:bc:88:db:76:
b2:f5:3c:87:04:b1:8e:0b:74:18:d5:86:53:d0:66:c4:86:f2:
93:36:c5:9e:a0:26:10:d4:0a:c9:ba:28:6f:e3:d4:d4:5c:04:
f0:e6:2b:77:10:7b:9f:da:a0:c9:89:f9:d2:0a:38:21:6e:44:
e2:e6:60:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:31:16 2025 by rpki-client