Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0872318d-4027-4fdc-9214-cb45218993d0.roa
File: 0872318d-4027-4fdc-9214-cb45218993d0.roa (raw, json)
Hash identifier: Jxq6Sn1glqkprkurj3axWTMRaJHd5mWrE65YDvx/wZw=
Subject key identifier: 44:18:45:76:1E:D2:34:74:92:AB:98:20:3A:07:4A:FC:B7:73:2E:97
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 28180397B986033C84EB801A2594CC55DF458A14
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0872318d-4027-4fdc-9214-cb45218993d0.roa
Signing time: Sat 11 Nov 2023 00:00:00 +0000
ROA not before: Sat 11 Nov 2023 00:00:00 +0000
ROA not after: Sat 16 Dec 2023 23:59:59 +0000
asID: 14618
IP address blocks: 192.31.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:18:03:97:b9:86:03:3c:84:eb:80:1a:25:94:cc:55:df:45:8a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 11 00:00:00 2023 GMT
Not After : Dec 16 23:59:59 2023 GMT
Subject: serialNumber=bca27e8517536d493047ec6a17a9ab8c88500d89bf66915524031d2bd17e46bc, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a6:d4:9f:f3:63:fc:22:bb:86:10:76:0e:de:
6b:e0:08:f0:24:f1:ae:aa:e6:e4:5d:b6:46:58:5d:
d6:12:77:6d:f8:33:ab:cf:ee:f0:4f:fc:fe:b4:6f:
4e:84:d7:59:2f:90:b3:19:d3:e5:48:99:79:71:da:
27:9c:84:91:00:04:34:c0:37:36:38:bc:e8:99:9d:
af:0d:ae:57:ff:d2:a8:60:68:54:33:9c:87:9e:27:
c9:b3:87:4d:95:33:4c:0a:70:c4:2c:f1:0a:5d:2b:
01:28:55:dc:6a:90:35:2c:15:b5:c7:17:9b:05:21:
93:90:f7:d4:7d:a6:38:16:fc:a9:e1:61:c0:f0:74:
b0:4e:f8:3c:58:25:b7:3a:a6:4f:4c:a2:a7:35:f6:
58:2b:c8:3f:f7:e4:0f:95:cb:eb:48:ec:17:dd:d8:
07:d6:9f:a3:60:1b:8c:60:dd:d0:69:ac:34:d1:29:
5a:2e:f8:a6:91:79:46:3b:75:7a:6e:ba:21:d6:42:
11:89:f6:18:80:86:6c:d5:5a:2b:12:d6:00:9e:07:
39:75:9b:70:4c:d5:5e:15:36:5f:58:bb:7f:17:7e:
ca:3d:ab:6c:e3:fa:c9:35:58:68:e6:b8:76:8f:68:
63:ee:17:97:7e:f0:1c:25:22:c3:fd:84:e3:16:3d:
7e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:18:45:76:1E:D2:34:74:92:AB:98:20:3A:07:4A:FC:B7:73:2E:97
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0872318d-4027-4fdc-9214-cb45218993d0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.31.213.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:f6:c4:ab:68:8f:5c:e6:a6:a4:04:3c:d9:06:ae:f1:2c:d7:
cb:4f:62:00:9e:01:c6:56:14:5c:59:f0:ea:91:7c:01:de:ec:
c5:f1:3f:48:99:98:b2:66:49:01:fd:a6:12:83:fb:95:c5:db:
01:ee:b3:ea:b1:ae:c3:5d:4e:e5:3c:13:15:94:00:c2:81:c3:
27:1c:bb:71:a7:fe:bd:2f:46:15:fb:77:47:21:3c:d4:ef:a4:
77:34:8e:6b:07:f4:c7:d4:ed:ba:b2:63:3f:ec:dc:93:50:02:
bc:e6:a9:cc:60:d6:8b:5c:04:e4:83:5b:70:bb:0f:91:ee:6a:
3f:42:e8:f2:9c:a4:ce:07:4a:40:6b:4a:1c:b8:ed:71:b5:67:
39:e6:97:1c:bc:55:02:40:8b:71:0b:77:90:73:73:a1:14:0c:
86:87:3e:17:91:b4:d0:7e:18:90:86:33:8a:32:5b:fb:47:6f:
0e:5c:39:27:35:dd:88:58:79:44:b7:39:6a:01:9d:32:ac:4a:
cf:f3:01:7e:75:21:1c:c1:74:00:34:cf:69:0b:55:fb:6f:4f:
69:2b:70:95:17:12:85:ec:51:e8:43:d8:62:4e:d3:3e:88:13:
16:c8:92:4e:0a:db:2e:e6:b0:a8:76:3a:8e:90:cf:69:72:bc:
3d:af:62:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:42 2024 by rpki-client on console-ams.rpki-client.org