Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa
File: b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa (raw, json)
Hash identifier: E6ZifUkhb7V6dXdSOkopw3ewk1RPxgV/v+zp6i6xOjg=
Subject key identifier: A6:F7:D9:B5:6C:77:1E:73:53:BF:B4:7E:7C:56:88:87:9A:BC:F0:09
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 4A3F578347167AA8B9C99F7C059CB8B7C56DA8B2
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da1f::/36 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:3f:57:83:47:16:7a:a8:b9:c9:9f:7c:05:9c:b8:b7:c5:6d:a8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:66:24:d8:9b:9e:57:89:50:d0:5b:91:77:f8:
ce:0c:99:08:2c:a2:44:10:97:a7:5c:70:ba:b3:ea:
c6:1b:17:1c:30:8f:72:24:60:ce:b3:a3:87:26:01:
b1:ef:30:b3:e0:f4:aa:3d:ba:ff:5d:dc:97:7f:d6:
dc:2b:0a:ee:1f:ec:37:3e:a0:6a:cc:a8:ce:6e:ab:
ac:f6:1b:3b:85:e9:8a:a1:d0:c2:72:eb:54:c9:94:
26:d3:29:88:c7:a0:d6:7e:fc:07:b2:83:1c:ab:80:
cf:32:57:d8:26:7b:88:b3:26:6c:5a:b4:ce:11:84:
d7:77:d3:ce:3a:09:7d:0b:70:1b:e3:f1:96:ff:3d:
66:41:01:82:c5:b7:00:cf:3d:0f:7b:17:6d:21:05:
a3:29:24:0b:72:44:e0:fc:6c:f1:36:bd:78:36:cf:
6a:6a:5c:fa:13:30:23:b0:15:32:ee:f7:a8:7d:2d:
19:83:5f:e2:5b:cd:4e:66:e6:2f:8f:30:9a:2e:a4:
c1:d8:0b:36:41:a3:0a:d4:e5:cb:3e:04:1f:4e:7d:
60:a8:ff:28:ed:e4:a1:87:df:16:9c:74:5d:b6:54:
f6:54:33:81:d4:37:62:cc:e9:95:c2:f5:49:e7:97:
d0:81:02:8e:47:d7:43:91:70:d2:ae:5d:9c:44:6e:
70:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F7:D9:B5:6C:77:1E:73:53:BF:B4:7E:7C:56:88:87:9A:BC:F0:09
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b62cc556-cef5-487f-bfb5-dff3bf516a3a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da1f::/36
Signature Algorithm: sha256WithRSAEncryption
1d:79:55:d7:79:f2:e8:a6:36:56:5c:cd:2c:4b:02:64:12:40:
30:d2:9b:ab:e6:0d:5c:85:8d:df:33:5d:2c:6d:d8:7b:20:aa:
f0:4c:57:52:74:2e:b0:f2:fa:b4:83:77:bc:53:1d:34:e7:c0:
01:42:2b:03:ef:11:05:da:80:9f:9f:1e:d7:b6:55:e4:ff:2d:
a0:7c:0d:48:ef:86:33:cb:af:5b:f9:2c:d5:41:8a:04:ed:8a:
19:5e:d9:45:fe:f6:a1:13:92:41:5e:63:88:0c:8b:57:cf:39:
3f:41:0d:57:e7:3d:21:86:ae:c6:d4:68:2c:cb:c1:b1:45:c0:
50:a0:91:6e:bc:c0:c6:dc:87:da:23:25:00:85:eb:56:82:34:
bc:41:bd:48:59:eb:cf:20:2f:5a:f6:31:87:30:8d:1c:1f:8c:
09:5d:2e:70:65:f4:a3:4c:4a:45:2f:87:76:f6:28:21:d3:83:
ea:d9:f7:e2:e4:9b:23:a1:3c:f9:a4:06:fe:a4:84:23:a0:6b:
12:ed:d2:dd:36:09:8c:b9:85:cc:5b:ae:3c:e2:26:51:96:8a:
ee:fe:23:ca:bb:ff:9b:3e:88:ec:e4:12:37:9d:7f:ba:6e:2f:
60:ab:1c:c1:ad:91:4e:33:ca:2d:6c:ef:be:f1:e7:8f:4a:00:
07:8e:bf:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:51:10 2025 by rpki-client