Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa
File: c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa (raw, json)
Hash identifier: FpW8BwXC/2Xd0Zmi533SB8J/mE/fh8fI2bXs9SUpeWE=
Subject key identifier: EC:5C:BF:D8:3A:58:42:F8:B8:E9:08:A1:56:50:5A:F8:A4:AD:CA:5E
Certificate issuer: /CN=A91F635F0000/serialNumber=53DC22125FA34F3986CBF12422E34F9B9C661BE7
Certificate serial: 60D4431E7A90A3F5AC8F78F58D76EC7909BCC069
Authority key identifier: 53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa
Signing time: Wed 18 Dec 2024 00:00:00 +0000
ROA not before: Wed 18 Dec 2024 00:00:00 +0000
ROA not after: Wed 22 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 159.248.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:d4:43:1e:7a:90:a3:f5:ac:8f:78:f5:8d:76:ec:79:09:bc:c0:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Dec 18 00:00:00 2024 GMT
Not After : Jan 22 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:07:5f:87:99:8d:27:25:47:29:7d:e6:b6:f0:
80:d8:4c:39:60:27:b3:21:2d:e1:db:14:06:75:8b:
74:0e:49:6d:ce:ed:86:3d:2e:e4:e3:d2:4e:c8:08:
6c:d6:52:6a:83:e8:cb:db:cb:aa:bc:ea:cb:60:0f:
75:7b:43:a2:91:ab:76:36:ca:4e:e6:16:4b:e1:9a:
a0:92:6f:03:b6:fe:06:70:5a:b7:1c:f6:54:5b:9f:
f7:1f:dd:c9:39:79:57:86:da:48:66:a6:09:f9:78:
a4:22:07:95:81:e7:b9:59:f8:0d:a2:f7:e9:51:48:
5d:f1:c6:fa:e0:47:6b:82:e3:73:06:da:d5:0d:40:
fe:41:8c:fa:df:78:a3:db:30:a8:7f:88:b5:06:1f:
e6:33:39:94:98:a1:c0:f6:1c:fc:65:a4:d8:2f:ce:
71:2c:d6:65:ab:f3:cc:99:3f:2a:b9:e5:a4:ad:03:
b5:82:aa:c7:20:ac:46:1d:b3:32:bc:6f:63:46:68:
da:2b:10:23:94:25:33:61:c7:21:65:b4:00:42:0d:
d7:e5:88:54:08:6e:46:07:9b:75:b8:1e:62:8b:44:
c5:3c:36:9b:3a:84:6a:6f:22:c2:be:33:aa:6e:c8:
41:0a:e0:21:47:59:28:f0:51:89:b9:44:c5:16:c9:
a3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5C:BF:D8:3A:58:42:F8:B8:E9:08:A1:56:50:5A:F8:A4:AD:CA:5E
X509v3 Authority Key Identifier:
keyid:53:DC:22:12:5F:A3:4F:39:86:CB:F1:24:22:E3:4F:9B:9C:66:1B:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U9wiEl-jTzmGy_EkIuNPm5xmG-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/c46353d6-f66a-4ac6-aeca-c8f320ebee9a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a5b01bdd-cdeb-4cfc-8c93-7e70c5e09306.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.248.0.0/16
Signature Algorithm: sha256WithRSAEncryption
58:56:d9:2d:62:ee:b2:88:18:24:8b:44:89:5d:64:5c:d7:57:
77:fb:6c:a1:1c:08:9b:0e:04:11:ea:47:b1:2a:bd:3b:7c:8c:
76:69:3b:1d:09:1f:f3:be:cd:99:4f:35:08:2a:12:b1:e3:08:
a9:57:d1:c7:7b:60:80:d9:a9:c5:29:ec:79:ef:eb:03:44:cd:
ac:cb:2e:15:4a:a7:b3:19:f3:a0:78:98:f7:c7:65:a1:b1:fc:
90:48:02:90:45:39:67:af:48:84:4b:fd:80:6f:31:a7:45:3f:
c3:f8:78:b2:97:07:66:b5:2f:5c:c0:d3:8e:52:88:2e:06:f6:
22:6c:de:ae:62:2d:5c:c6:fc:d9:6c:0a:de:a4:6e:af:51:b9:
52:34:88:80:89:67:2f:3f:af:aa:7b:ed:23:4b:fa:bd:a7:7b:
ca:0d:04:15:fe:8c:08:8e:89:c9:27:eb:65:5f:16:2e:77:07:
10:7c:ba:b6:5e:8c:20:c0:14:15:20:74:fe:64:e7:3d:e4:7f:
27:85:e8:31:2d:3e:14:1a:2b:c6:5d:31:92:5c:df:ac:01:c8:
a1:87:41:41:3a:c1:c0:0b:c9:31:1c:d1:6a:c9:c2:bf:05:39:
0d:16:55:c0:53:96:6b:7e:17:6c:6b:8b:8a:32:dd:b6:b1:24:
79:5c:93:d1
-----BEGIN CERTIFICATE-----
MIIFmzCCBIOgAwIBAgIUYNRDHnqQo/Wsj3j1jXbseQm8wGkwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg1M0RDMjIxMjVG
QTM0RjM5ODZDQkYxMjQyMkUzNEY5QjlDNjYxQkU3MB4XDTI0MTIxODAwMDAwMFoX
DTI1MDEyMjIzNTk1OVowejFJMEcGA1UEBRNAOTcyOTk4YTY1YWM5OGVlYmViYzRi
NWJlYzI1NjI5ZjRkODhmYWI3ZDg2YjMxMzEyMzU4ODNjODU1NzM0NjM5MjEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgdfh5mNJyVHKX3mtvCA2Ew5YCez
IS3h2xQGdYt0Dkltzu2GPS7k49JOyAhs1lJqg+jL28uqvOrLYA91e0Oikat2NspO
5hZL4Zqgkm8Dtv4GcFq3HPZUW5/3H93JOXlXhtpIZqYJ+XikIgeVgee5WfgNovfp
UUhd8cb64EdrguNzBtrVDUD+QYz633ij2zCof4i1Bh/mMzmUmKHA9hz8ZaTYL85x
LNZlq/PMmT8queWkrQO1gqrHIKxGHbMyvG9jRmjaKxAjlCUzYcchZbQAQg3X5YhU
CG5GB5t1uB5ii0TFPDabOoRqbyLCvjOqbshBCuAhR1ko8FGJuUTFFsmjQwIDAQAB
o4ICRzCCAkMwHQYDVR0OBBYEFOxcv9g6WEL4uOkIoVZQWvikrcpeMB8GA1UdIwQY
MBaAFFPcIhJfo085hsvxJCLjT5ucZhvnMA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9VOXdpRWwt
alR6bUd5X0VrSXVOUG01eG1HLWMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx
L2M0NjM1M2Q2LWY2NmEtNGFjNi1hZWNhLWM4ZjMyMGViZWU5YS5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1
MGJlYzkyNjEvYTViMDFiZGQtY2RlYi00Y2ZjLThjOTMtN2U3MGM1ZTA5MzA2LmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTAL
BAIAATAFAwMAn/gwDQYJKoZIhvcNAQELBQADggEBAFhW2S1i7rKIGCSLRIldZFzX
V3f7bKEcCJsOBBHqR7EqvTt8jHZpOx0JH/O+zZlPNQgqErHjCKlX0cd7YIDZqcUp
7Hnv6wNEzazLLhVKp7MZ86B4mPfHZaGx/JBIApBFOWevSIRL/YBvMadFP8P4eLKX
B2a1L1zA045SiC4G9iJs3q5iLVzG/NlsCt6kbq9RuVI0iICJZy8/r6p77SNL+r2n
e8oNBBX+jAiOickn62VfFi53BxB8urZejCDAFBUgdP5k5z3kfyeF6DEtPhQaK8Zd
MZJc36wByKGHQUE6wcALyTEc0WrJwr8FOQ0WVcBTlmt+F2xri4oy3baxJHlck9E=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:51:42 2025 by rpki-client