Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d49c26fe-36cf-42b4-92ba-b2f1573d7a6e.roa
File: d49c26fe-36cf-42b4-92ba-b2f1573d7a6e.roa (raw, json)
Hash identifier: OX1ymNxk7el6yrJgEal7dLcv2DHPOH78VHSqU3hqFjw=
Subject key identifier: C7:CB:BE:7A:9C:C7:B4:3C:02:F5:F4:54:10:59:95:63:C3:12:90:8D
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 28C00DC2E0E447533319825F56E7E62E80750083
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d49c26fe-36cf-42b4-92ba-b2f1573d7a6e.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf9:c000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:c0:0d:c2:e0:e4:47:53:33:19:82:5f:56:e7:e6:2e:80:75:00:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:20:62:72:ba:00:e8:8e:c3:5d:98:98:2a:c2:
34:34:64:14:a0:80:8e:55:47:04:10:d6:db:13:54:
e9:30:0d:af:e1:42:70:87:a5:b6:a4:25:7c:08:cf:
1c:c9:e2:ea:9b:72:78:ec:e3:14:76:45:15:5f:10:
b1:ad:6d:87:5c:f3:8d:21:b5:02:aa:6d:72:a4:1b:
24:c3:ec:2e:64:35:5a:ff:f3:c8:a8:19:c3:c0:68:
a2:1f:9e:55:8c:e0:8d:57:c8:88:da:45:05:ad:da:
77:64:32:92:03:06:88:71:b1:c7:20:6f:3a:95:fc:
31:38:39:1c:99:3d:eb:b3:d5:43:ec:6d:72:cf:a5:
a8:13:9d:c9:01:65:8a:1f:1f:ed:a2:b8:27:c8:58:
ee:03:74:fb:e7:50:6a:db:67:6a:42:9e:b3:3e:27:
64:8c:4a:06:6c:64:55:6f:6c:4f:ce:1d:c6:0b:5b:
b6:5e:1b:dd:6f:f8:02:5a:ee:6f:7a:d5:a3:33:93:
38:01:ea:62:66:37:85:6f:aa:a1:ef:af:a1:dd:25:
8a:43:68:ae:04:71:35:b0:e2:3c:85:44:2f:e5:21:
8b:7a:99:ad:5b:1b:d3:02:1c:27:98:5c:56:f7:52:
e7:f4:ea:d8:ae:27:70:03:25:d0:3c:64:0c:ab:51:
3b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CB:BE:7A:9C:C7:B4:3C:02:F5:F4:54:10:59:95:63:C3:12:90:8D
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/d49c26fe-36cf-42b4-92ba-b2f1573d7a6e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf9:c000::/40
Signature Algorithm: sha256WithRSAEncryption
74:4c:fe:d8:ae:6b:53:fa:0e:80:08:42:f5:ff:83:3e:04:14:
6f:42:30:fb:60:2c:c4:f0:ac:68:52:7e:ae:7f:f0:7b:f9:a0:
80:fb:56:84:b3:5d:a3:a7:e2:71:86:1f:c6:d1:43:62:fa:9e:
3c:29:df:6e:19:3d:39:3c:d9:9d:6d:0e:8e:b3:aa:d0:68:b8:
b5:16:21:85:4b:5a:0a:d1:f5:1b:2c:97:93:ef:2d:e6:a2:a9:
8d:76:60:e1:ea:0c:69:f7:c1:f2:88:47:2f:74:02:25:fd:96:
9c:b3:09:58:83:17:1f:7b:eb:4b:e7:58:e9:d4:00:53:f7:cd:
52:03:9c:4b:d8:05:ef:12:92:5b:16:a9:9e:2f:37:dd:c9:0e:
22:bf:15:2a:7b:f5:79:6b:65:c4:20:cf:95:3c:99:41:d4:98:
f2:b8:6a:e4:d8:84:04:42:22:fa:33:8b:2c:38:88:eb:47:1e:
42:5e:34:90:4f:a8:11:8f:f9:b2:83:58:6a:a7:79:f5:d5:9f:
b5:e4:f3:2e:06:3c:38:09:fe:95:75:54:5b:39:ca:ab:c1:09:
66:7b:08:04:62:2d:e5:9c:a6:82:5d:25:63:82:bb:6b:2b:4e:
be:3d:a1:62:6a:76:8c:f1:ff:e5:51:63:f5:ba:8f:89:fe:c8:
af:44:c9:bd
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIUKMANwuDkR1MzGYJfVufmLoB1AIMwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0
RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDEwODAwMDAwMFoX
DTI1MDIxMjIzNTk1OVowejFJMEcGA1UEBRNANDUyOGU3ZDdjYTEyOTkyZWYwM2Q1
ZjkzNGE5ZDc0NTgwMmZiNzQ5NjdkNjJmYWZjMDg3ZTkzNGY3OGNlOThjYzEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyBicroA6I7DXZiYKsI0NGQUoICO
VUcEENbbE1TpMA2v4UJwh6W2pCV8CM8cyeLqm3J47OMUdkUVXxCxrW2HXPONIbUC
qm1ypBskw+wuZDVa//PIqBnDwGiiH55VjOCNV8iI2kUFrdp3ZDKSAwaIcbHHIG86
lfwxODkcmT3rs9VD7G1yz6WoE53JAWWKHx/torgnyFjuA3T751Bq22dqQp6zPidk
jEoGbGRVb2xPzh3GC1u2Xhvdb/gCWu5vetWjM5M4AepiZjeFb6qh76+h3SWKQ2iu
BHE1sOI8hUQv5SGLepmtWxvTAhwnmFxW91Ln9OrYridwAyXQPGQMq1E7vwIDAQAB
o4ICSjCCAkYwHQYDVR0OBBYEFMfLvnqcx7Q8AvX0VBBZlWPDEpCNMB8GA1UdIwQY
MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU
U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx
L2Q0OWMyNmZlLTM2Y2YtNDJiNC05MmJhLWIyZjE1NzNkN2E2ZS5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1
MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO
BAIAAjAIAwYAJAba+cAwDQYJKoZIhvcNAQELBQADggEBAHRM/tiua1P6DoAIQvX/
gz4EFG9CMPtgLMTwrGhSfq5/8Hv5oID7VoSzXaOn4nGGH8bRQ2L6njwp324ZPTk8
2Z1tDo6zqtBouLUWIYVLWgrR9Rssl5PvLeaiqY12YOHqDGn3wfKIRy90AiX9lpyz
CViDFx9760vnWOnUAFP3zVIDnEvYBe8SklsWqZ4vN93JDiK/FSp79XlrZcQgz5U8
mUHUmPK4auTYhARCIvoziyw4iOtHHkJeNJBPqBGP+bKDWGqnefXVn7Xk8y4GPDgJ
/pV1VFs5yqvBCWZ7CARiLeWcpoJdJWOCu2srTr49oWJqdozx/+VRY/W6j4n+yK9E
yb0=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:27:44 2025 by rpki-client