Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf5c92d-af95-4acd-b109-d562e87b288f.roa
File: 0cf5c92d-af95-4acd-b109-d562e87b288f.roa (raw, json)
Hash identifier: YxOP0mhzGQ4oy9w0/fNiD1V7KRVx6k2vkF3axfcoQx0=
Subject key identifier: 0D:81:4C:B8:3A:97:93:FB:93:FC:3B:F7:AA:DD:C4:C7:8D:38:E8:9C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 09E83B4965158AD26FE2A2F59A5FE02639A6B737
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf5c92d-af95-4acd-b109-d562e87b288f.roa
Signing time: Tue 24 Dec 2024 00:00:00 +0000
ROA not before: Tue 24 Dec 2024 00:00:00 +0000
ROA not after: Tue 28 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 56.57.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:e8:3b:49:65:15:8a:d2:6f:e2:a2:f5:9a:5f:e0:26:39:a6:b7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 24 00:00:00 2024 GMT
Not After : Jan 28 23:59:59 2025 GMT
Subject: serialNumber=4620cdc23a4e919c2729523099b0f71ec1134dcb0c2c824f5e0e58311f895816, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5f:86:04:f4:ef:b8:5c:6c:69:31:4e:6c:b5:
78:dd:36:9a:f2:2e:cf:d4:4d:08:5d:4f:ee:00:19:
48:07:4f:70:43:26:29:d4:a0:04:af:0b:97:99:0b:
97:72:48:4b:7e:7e:e6:60:2a:69:42:70:77:cd:43:
eb:63:1f:b3:05:1b:ce:cd:71:99:62:15:d9:f0:7c:
48:95:3e:19:08:24:88:62:8a:cc:97:b0:02:3f:82:
28:b1:d1:85:2b:e2:d2:02:e7:e1:e2:c5:12:53:a0:
4f:41:3e:84:f2:14:34:49:c1:63:5a:64:41:5a:ba:
cc:85:86:83:75:c1:f3:cf:9d:16:a1:52:1f:f3:26:
5d:18:3c:a0:cb:67:42:72:d0:07:2c:09:28:f9:c7:
f0:13:ce:62:32:10:66:cf:8f:3b:b4:88:ef:06:81:
65:5e:6f:5a:8f:19:e4:31:69:56:0b:aa:5b:fe:ef:
f2:c3:b7:9c:fb:9d:0b:95:8f:85:d6:de:ed:f0:da:
38:89:c7:37:ec:f0:14:57:e9:32:01:05:72:8c:9f:
31:48:93:fc:27:50:fb:17:5e:6e:f4:01:55:84:df:
ae:a3:08:65:f8:b4:e9:31:18:69:bf:71:7c:e2:ac:
e4:14:6a:49:d0:a3:9c:36:05:2a:47:1b:96:08:73:
36:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:81:4C:B8:3A:97:93:FB:93:FC:3B:F7:AA:DD:C4:C7:8D:38:E8:9C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf5c92d-af95-4acd-b109-d562e87b288f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.57.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2d:ab:ce:ff:9a:3d:b4:c3:57:c3:61:03:68:9d:d2:eb:a4:fa:
85:d7:eb:2b:ba:a2:95:d7:91:84:5a:f7:1c:81:a4:2a:e1:16:
14:fc:10:ee:db:8f:59:e4:36:51:07:99:0f:29:1e:f0:f8:11:
5b:48:2f:9e:82:4f:a6:59:82:73:c2:fe:a1:21:4b:cf:72:ca:
8a:27:d0:93:72:10:7e:19:9a:9e:fb:52:61:76:ea:44:35:2a:
8b:7d:1e:1b:e9:f2:cd:2c:27:cd:f2:ce:ae:7c:ef:43:3c:e8:
bd:46:68:c6:91:46:9c:8d:b2:5a:d0:16:71:8d:85:d5:dc:28:
4e:93:31:45:ad:ad:c1:72:12:54:3a:2b:70:5b:d0:ed:e2:a3:
1c:33:28:40:5d:b6:6d:b6:a3:02:04:b9:be:a0:4f:93:00:f3:
41:05:54:16:12:98:05:21:2d:69:89:e4:47:d1:e9:0d:7f:3f:
3a:5d:e1:53:19:95:b3:70:44:d3:97:f9:0a:d5:2e:57:92:44:
e6:9a:17:d9:91:cb:ba:a7:c4:ee:48:c1:8c:9f:23:e8:8c:9b:
6b:bd:60:52:e5:8f:fd:18:a2:1a:4f:09:ef:39:ab:a2:94:5d:
6c:63:50:25:a2:d5:9f:1c:ff:58:75:b1:e1:76:0e:2a:dd:87:
66:80:df:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:47:01 2025 by rpki-client