Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e527b4cc-d757-4fe5-b860-39f3cd54f2dc.roa
File: e527b4cc-d757-4fe5-b860-39f3cd54f2dc.roa (raw, json)
Hash identifier: +LPstKYnskP1uQdd4o3cpjOKsa/1sjEkQId03TosqSo=
Subject key identifier: AF:80:DB:DB:13:F2:A8:25:F9:45:E2:33:66:05:3D:E0:64:AD:42:35
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 3641D65B24EB0FF42EDFEF4CDBF98F0940B2443E
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e527b4cc-d757-4fe5-b860-39f3cd54f2dc.roa
Signing time: Sat 14 Dec 2024 00:00:00 +0000
ROA not before: Sat 14 Dec 2024 00:00:00 +0000
ROA not after: Sat 18 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf2:1000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:41:d6:5b:24:eb:0f:f4:2e:df:ef:4c:db:f9:8f:09:40:b2:44:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Dec 14 00:00:00 2024 GMT
Not After : Jan 18 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:98:3a:c5:88:db:7e:2b:88:89:06:82:66:1d:
6a:8d:41:24:3d:4d:29:4d:b8:b5:91:42:69:fa:e6:
0b:be:7d:32:b3:ef:b1:a6:98:07:d9:d4:17:24:b4:
88:b9:55:e2:91:40:a3:65:52:c5:1c:75:52:b2:d6:
0f:e3:b9:6a:c4:65:02:97:d8:a5:04:47:f6:a3:10:
20:e7:e9:23:9b:67:d2:ae:1b:de:db:7c:4a:d1:c8:
2b:6a:00:fc:48:10:6d:be:bf:6e:54:d0:72:97:e2:
43:f1:17:c5:2f:fc:01:9d:25:21:fd:ff:0c:92:0f:
18:b8:65:8a:32:6c:17:02:57:5d:a1:95:e9:1e:eb:
22:fe:cb:3c:f9:06:99:93:76:8a:c9:f4:59:c0:1c:
8f:24:ba:cb:67:2a:5e:63:76:fd:4e:f3:ae:0e:d9:
2c:18:4b:7b:17:e4:37:af:9d:1d:3f:38:b1:a4:6a:
89:49:9a:f6:23:da:e1:99:64:bc:8c:59:7d:f3:ca:
43:b5:96:71:10:08:44:c7:b6:37:d1:8c:18:7d:3f:
d7:40:7c:82:f4:dd:bd:3a:1a:9a:43:61:58:a5:3e:
6c:98:a7:66:56:ef:47:0c:76:68:18:82:40:3e:3c:
18:47:79:f0:71:11:f4:be:c2:11:37:ba:8c:85:c2:
4f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:80:DB:DB:13:F2:A8:25:F9:45:E2:33:66:05:3D:E0:64:AD:42:35
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e527b4cc-d757-4fe5-b860-39f3cd54f2dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf2:1000::/40
Signature Algorithm: sha256WithRSAEncryption
14:9c:d7:76:71:88:cd:47:8d:70:30:f4:c7:6c:b6:89:49:9d:
56:c8:89:63:42:7a:49:43:9d:89:a4:c4:8c:31:66:7b:8f:00:
7b:85:44:4f:25:ce:6d:21:2d:6e:62:34:2f:47:38:1d:da:b4:
b6:3d:2d:a2:08:2e:64:01:1f:28:fc:72:83:ce:8d:9d:88:8b:
14:94:11:d8:32:8b:e9:1d:4d:fc:88:ad:50:6c:f0:8c:0a:87:
90:0c:d0:ca:7e:a9:38:d0:c9:b1:82:f2:e5:de:00:71:ea:fd:
8f:58:ee:85:6c:67:cd:e9:3d:5d:59:ce:0f:22:18:c8:63:5f:
a8:95:71:12:72:82:09:bd:fb:55:e6:e7:37:94:65:38:f3:1c:
f9:1a:5b:56:28:29:89:5f:8c:ef:e7:0e:97:57:f0:86:32:d4:
15:7a:da:e0:12:1a:28:30:37:7f:88:c3:2e:e9:c7:46:13:df:
8f:c5:04:5c:c9:52:25:5b:51:05:8e:14:ea:b2:08:c3:d7:82:
a5:f5:40:6a:89:e5:92:e4:15:6b:c7:7d:28:5b:ac:d4:a8:de:
8a:ec:58:a3:94:0e:25:0b:33:d8:3b:2e:d2:fb:d8:a8:5e:e1:
a2:d1:77:81:7a:0b:65:6e:23:fc:bd:90:61:b5:9a:53:a6:5e:
12:02:6a:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:14:24 2025 by rpki-client