Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e15fdd3a-f841-48ca-bcbb-730223dd6595.roa
File: e15fdd3a-f841-48ca-bcbb-730223dd6595.roa (raw, json)
Hash identifier: aR8QNEHefEjJWmURDw78Epkf9xLbfPGUF79T25F6jc4=
Subject key identifier: 09:3F:F9:32:64:FD:ED:36:05:C5:09:8E:CD:C7:44:BF:0F:17:A8:1F
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 18B8C5AD071FB04F08CF3579CD48C02F09CE1A55
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e15fdd3a-f841-48ca-bcbb-730223dd6595.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 103.246.150.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:b8:c5:ad:07:1f:b0:4f:08:cf:35:79:cd:48:c0:2f:09:ce:1a:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e7:38:cd:05:8f:ae:6e:3d:a9:cf:de:02:87:
f4:92:75:03:c9:a6:aa:c5:39:b1:e8:db:c8:3d:9f:
9a:0d:84:d8:f7:9f:d6:7b:ab:84:e8:8a:2f:fc:03:
4f:46:cf:56:cd:a5:43:cf:49:12:c1:af:61:d7:4d:
94:62:e9:c5:82:fc:3d:e7:93:c1:5a:c9:45:b9:ec:
07:14:54:b3:68:16:4d:09:9f:56:fb:c8:29:82:78:
10:f3:5e:4b:18:6a:ae:50:bd:33:90:b9:d3:cd:53:
5c:f7:4c:b7:95:2b:04:ba:4e:03:60:81:4c:d9:b9:
f4:0f:78:0d:05:0f:dd:9c:16:24:94:80:a8:20:e1:
69:c7:17:e3:76:f9:2b:75:fd:80:70:9d:78:8a:25:
80:ce:af:62:22:ff:53:c5:c7:03:cc:51:48:c5:5c:
78:dc:36:6d:04:c0:6a:92:1e:31:4f:90:74:e2:0e:
14:0d:3e:bf:ea:16:7c:d8:eb:37:0c:c7:b4:dc:ce:
4f:96:20:61:e6:16:99:f4:02:09:7b:62:c6:bd:b7:
66:63:d3:fc:15:85:19:12:30:14:31:ae:0c:17:bc:
d7:22:ff:17:19:d0:b7:bd:3a:12:ce:e0:34:6f:53:
e5:07:34:e6:a0:d8:58:12:d5:40:1a:52:cd:49:ba:
cb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:3F:F9:32:64:FD:ED:36:05:C5:09:8E:CD:C7:44:BF:0F:17:A8:1F
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e15fdd3a-f841-48ca-bcbb-730223dd6595.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.246.150.0/23
Signature Algorithm: sha256WithRSAEncryption
09:87:da:f2:b5:6a:3a:91:d6:47:9b:5e:a1:6f:98:97:64:f6:
42:0a:7f:07:fd:2a:77:05:45:8b:61:94:d3:71:99:78:31:98:
47:59:78:de:69:46:a0:e3:04:5e:57:bd:0b:e7:d1:be:93:cf:
5d:9c:a4:a4:af:ab:25:07:56:31:f4:84:c0:4a:08:b2:11:0d:
b4:97:07:5d:1b:32:81:e1:d7:5c:53:69:82:6a:c3:6a:97:ef:
21:72:f5:ad:51:e1:42:2d:ff:14:75:14:d8:bf:e3:52:81:26:
87:83:3e:3d:e2:29:7d:6f:4a:45:89:ca:96:f1:c4:00:6f:2d:
e2:05:76:9c:8f:b4:d1:68:65:13:a3:c0:06:75:2e:56:ab:16:
a3:98:25:7a:40:59:e3:9b:e2:61:30:d6:58:e9:2e:dc:24:68:
01:6e:81:9a:c5:9e:86:5d:77:92:8b:92:78:aa:d4:8d:ad:44:
b7:25:c5:6b:c9:78:15:84:eb:7a:77:f2:f9:03:2b:29:de:06:
18:67:3a:21:ea:83:c3:ec:b8:b9:fd:44:02:bb:36:57:04:4d:
9e:a4:ca:70:a9:29:39:1f:df:a9:9a:79:43:6f:26:37:bf:8c:
48:e7:67:5a:bb:9d:c6:14:4f:f2:16:04:36:34:74:36:00:af:
7b:e0:e2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:29 2025 by rpki-client