Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa
File: bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa (raw, json)
Hash identifier: M9FGX7UCh2Tp/aZnraBIK/UQALLc7zwE4J4Dx2jD+mQ=
Subject key identifier: 73:D6:F5:3B:D5:79:AA:AF:D0:47:3B:32:A6:F6:0D:B0:5A:14:59:CE
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 752188FBB934586FE19BB280177C40534A67FBFA
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa
Signing time: Sat 14 Dec 2024 00:00:00 +0000
ROA not before: Sat 14 Dec 2024 00:00:00 +0000
ROA not after: Sat 18 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf2:7000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:21:88:fb:b9:34:58:6f:e1:9b:b2:80:17:7c:40:53:4a:67:fb:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Dec 14 00:00:00 2024 GMT
Not After : Jan 18 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:84:ad:5d:e2:b8:28:82:2b:a2:6e:3a:7c:e2:
ae:0a:63:87:48:15:68:e2:9a:b2:46:9f:e0:6e:1a:
60:82:f9:55:e7:17:0b:6c:94:c8:f6:cc:04:36:5d:
54:b3:18:ae:e8:bf:be:79:5d:e9:9e:1f:0e:ed:ef:
52:84:e8:65:bb:1a:e9:42:48:67:c7:55:61:da:53:
32:a9:ca:4f:a9:2b:db:bf:dd:20:c2:fe:ff:d3:d3:
70:5c:03:56:b7:b6:9c:d0:91:1d:f9:1d:fd:dc:b7:
c9:6f:da:26:4a:10:b4:35:71:e9:04:2c:22:80:b0:
15:72:d2:2e:fc:53:76:be:1f:c1:d6:a5:27:04:79:
e4:6b:59:9a:1d:55:09:a2:7f:ff:8f:b1:56:b2:43:
ae:65:27:e0:06:f9:33:04:a3:8a:11:ab:c0:53:27:
0b:42:25:ef:d4:e6:1e:e6:3f:d0:29:ea:83:f4:e2:
95:76:b7:4b:c4:4e:d9:b3:3f:aa:b7:26:43:23:d1:
0e:ac:4a:6e:64:c7:be:a8:79:2a:38:6c:c1:cb:14:
ad:0b:34:e4:e2:e3:78:bd:ba:9b:08:3e:e2:73:a4:
25:8e:58:af:69:84:c5:01:ed:a2:c9:cc:ff:99:09:
43:d9:6c:91:55:24:f6:1e:eb:b8:cc:8a:75:90:3a:
e6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D6:F5:3B:D5:79:AA:AF:D0:47:3B:32:A6:F6:0D:B0:5A:14:59:CE
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/bcb12c2c-c0ef-4571-926a-88ef42d9a233.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf2:7000::/40
Signature Algorithm: sha256WithRSAEncryption
95:17:92:94:23:3d:e9:ef:f2:48:8b:51:71:cb:7e:e3:99:01:
99:91:d2:90:a9:ca:73:52:ce:a7:3b:63:39:da:b4:3a:60:6a:
0a:1b:ae:35:b0:44:1f:7f:4b:c8:1a:9b:7e:df:79:c3:5a:bc:
cb:0a:66:3a:98:b5:50:43:e2:0c:63:42:eb:fe:9e:aa:32:ff:
28:bf:0b:a4:42:08:9c:8b:76:2f:9b:66:4c:e9:15:c5:88:93:
c9:89:df:86:80:e1:18:d1:67:a8:92:af:37:0a:ed:06:3c:a7:
a7:c9:f7:09:17:34:e7:bc:f6:28:08:92:aa:9d:77:c1:82:fc:
2f:88:2d:01:c0:fc:17:79:99:19:69:ee:7f:b8:23:a9:ce:4a:
90:37:8c:b9:d3:4f:27:4b:2d:50:ff:2e:03:4e:24:af:24:d8:
85:f3:ee:a2:30:cc:22:4c:06:94:e0:b8:8d:72:18:d4:b6:73:
a7:33:64:a1:dd:02:5d:e3:5e:b2:ca:e4:bd:af:b2:b9:13:d9:
51:f7:52:49:2a:89:7d:a0:14:1c:3c:b8:65:66:3f:09:6d:41:
84:49:19:ba:05:30:05:82:3f:29:6e:85:d8:a4:36:7b:b9:65:
6a:3a:2e:f7:33:42:aa:07:9f:53:44:4f:34:82:46:e8:ef:db:
28:16:96:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:42:29 2025 by rpki-client