Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0083d184-fb3a-42e2-8b2b-f1bae2b01be2.roa
File: 0083d184-fb3a-42e2-8b2b-f1bae2b01be2.roa (raw, json)
Hash identifier: IepCqkjC6TYDhG1H2jA5U4Cs2L7TpIOTCEKY+4mvAPs=
Subject key identifier: B6:60:7B:AF:43:8F:29:2D:FA:86:1B:6A:6A:F1:8F:A8:8F:86:7C:A7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 38BCA8559E5FBB4E0C6C9FBC35215E09C662D6CD
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0083d184-fb3a-42e2-8b2b-f1bae2b01be2.roa
Signing time: Tue 03 Dec 2024 00:00:00 +0000
ROA not before: Tue 03 Dec 2024 00:00:00 +0000
ROA not after: Tue 07 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 54.112.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:bc:a8:55:9e:5f:bb:4e:0c:6c:9f:bc:35:21:5e:09:c6:62:d6:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 3 00:00:00 2024 GMT
Not After : Jan 7 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:42:61:75:8e:8e:31:e7:eb:69:84:0d:07:6b:
77:40:14:35:d3:a4:43:82:ec:c7:91:e3:53:2d:3c:
60:09:62:78:b7:3c:c4:8e:13:d4:c8:cd:1a:c7:0d:
1c:98:d6:5c:63:14:f3:db:c3:57:25:3c:43:03:78:
24:07:50:04:11:7d:3c:22:cb:20:7a:e6:f8:ba:e2:
14:22:c0:46:9a:83:cb:45:73:e3:60:77:1e:5d:14:
c0:62:64:a4:69:e1:5f:46:fd:74:f2:46:a5:0f:9d:
07:0f:f6:00:91:65:6d:78:a3:9c:44:ef:40:1d:d1:
fc:cb:e8:3e:cc:39:c5:c6:70:6b:dc:10:95:ad:d6:
ed:5f:df:3e:59:9f:9e:c9:31:a2:d8:8f:4c:eb:cb:
fe:ca:25:fe:dc:df:4d:aa:8a:8f:16:27:0d:6c:39:
d5:f1:95:3d:82:b9:51:1f:5e:30:29:e2:2a:2b:06:
64:e6:12:bc:c6:62:d4:0b:08:ac:44:be:b6:69:94:
1a:5e:84:68:31:b3:36:e4:74:ee:b4:c5:e6:e4:0f:
65:39:8f:cc:18:37:99:2b:af:d2:47:5d:73:91:dd:
08:1e:94:d9:88:57:21:a3:27:5a:d0:8d:f1:56:a4:
de:6d:8b:dd:cf:73:69:a2:7f:ab:ff:76:6d:57:b5:
c3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:60:7B:AF:43:8F:29:2D:FA:86:1B:6A:6A:F1:8F:A8:8F:86:7C:A7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0083d184-fb3a-42e2-8b2b-f1bae2b01be2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.112.0.0/18
Signature Algorithm: sha256WithRSAEncryption
43:38:8e:e8:31:22:9d:bb:3b:da:04:3b:3e:96:55:23:cb:19:
27:56:5d:4c:0b:c8:b8:0b:af:d5:76:d1:45:c3:cb:af:8c:f2:
9a:63:b8:5e:43:13:22:0d:3d:c0:f3:b9:ed:99:a8:6d:38:92:
1a:5f:b6:ad:11:6d:ab:8d:d9:55:46:8c:76:c5:ae:07:c8:40:
c1:87:32:23:79:0a:f1:e0:fd:f9:33:61:b2:ff:97:69:9d:c6:
6a:e1:ed:6e:d3:f0:5b:fa:4d:cb:de:8e:24:dc:1b:9f:50:e5:
a4:b0:fe:8f:3f:b0:b3:45:7c:02:31:aa:61:03:2b:48:ca:b6:
e4:d3:1d:af:93:26:d1:6b:9e:ff:ca:b6:fd:79:e3:5c:f3:64:
5b:5e:6f:87:2e:07:d3:24:0b:d9:bc:66:2f:5b:f0:b1:da:da:
41:49:42:4a:3b:1e:35:50:29:e8:e3:6e:27:8a:8f:c0:95:8b:
23:79:58:73:d3:8f:90:cd:70:bc:e5:e9:1e:16:0f:f1:0a:48:
22:10:b8:21:06:90:5e:e5:56:fa:22:1c:ce:97:a5:61:2d:78:
18:5f:4b:72:3a:0e:b2:3c:12:14:69:89:e8:c8:db:07:93:c5:
cb:a0:a1:7d:63:09:ce:97:2d:c5:e0:db:e1:87:d0:3a:03:28:
0d:1a:be:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:38:43 2025 by rpki-client