Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4f8f5d-80e9-4f70-ac8b-a2b49ea81fee.roa
File: 0e4f8f5d-80e9-4f70-ac8b-a2b49ea81fee.roa (raw, json)
Hash identifier: iArDrCP5V9+9ZAgQeJyacqzyspV9BhsaC1OMAcQEY0Y=
Subject key identifier: 89:F9:E9:C3:BD:29:F5:4B:80:F1:66:FF:7F:0A:63:CA:00:C5:AE:F8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 513AE63952C87F36EAFFF3CC1242571D8D144C9C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4f8f5d-80e9-4f70-ac8b-a2b49ea81fee.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f61:4000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:3a:e6:39:52:c8:7f:36:ea:ff:f3:cc:12:42:57:1d:8d:14:4c:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: serialNumber=b7bfed9e76549c6892587088d3780d931cc24461a989324afd1585568ffad705, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:88:84:be:ca:a6:e0:8f:87:f1:0d:0a:04:5a:
ce:e6:3d:58:17:67:35:61:55:a9:01:41:7b:58:1e:
a6:4d:1f:7d:2e:70:3c:c3:80:40:05:42:34:cf:56:
b4:67:47:49:82:39:7b:13:47:3e:36:9b:c5:12:2d:
29:7f:ce:47:4e:7e:87:59:42:67:0b:8e:08:5e:55:
fe:0a:4f:00:4f:a1:59:16:02:6f:64:23:96:1a:88:
7a:f4:b8:42:d1:60:24:7e:2c:c6:f6:78:ca:63:ea:
9d:fd:fe:27:ab:1c:18:51:15:04:ad:52:ba:76:56:
53:59:6f:85:c3:f3:02:b0:7b:63:3b:39:48:c5:2d:
72:14:de:a0:ae:e4:91:1d:46:75:ec:85:6a:07:da:
95:f0:e5:1e:44:63:09:5b:6d:ca:6a:8e:29:97:c6:
53:13:8f:1e:ad:bf:55:2d:1e:76:64:90:18:5a:a2:
a7:bb:72:37:d7:a8:1d:76:50:b2:98:14:bb:bc:49:
84:21:f1:c9:18:98:87:9e:f0:64:26:03:79:cb:9d:
98:11:77:c9:17:79:5a:bc:80:b9:65:2a:ae:c6:8a:
1e:57:4c:32:dc:96:29:c2:92:23:02:ed:61:c9:39:
90:9d:2d:96:d3:86:9a:3c:70:6b:2e:84:03:73:97:
01:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F9:E9:C3:BD:29:F5:4B:80:F1:66:FF:7F:0A:63:CA:00:C5:AE:F8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4f8f5d-80e9-4f70-ac8b-a2b49ea81fee.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f61:4000::/40
Signature Algorithm: sha256WithRSAEncryption
00:81:8e:54:23:34:3d:a1:99:96:ef:58:8c:fa:7a:db:72:0b:
2f:5e:ba:f3:56:29:b8:a7:3f:e5:e8:05:dc:4b:9c:b7:51:2b:
db:e4:94:d8:2d:0d:6f:05:9d:dc:6b:34:42:69:87:65:e0:22:
c5:ac:f8:3c:14:51:6a:af:17:f3:6b:2e:7d:38:0a:f0:b1:89:
60:81:19:9d:4e:df:e5:1d:92:4e:35:36:33:fd:d0:5e:cb:f9:
16:26:da:b5:72:66:a6:14:a0:e7:c5:33:75:30:e0:6a:4e:b7:
fb:be:33:85:f6:34:f7:ef:88:7c:f6:20:8c:ce:31:dd:7c:87:
72:9e:b2:2c:4c:25:42:8d:a2:4f:2c:07:d4:06:7d:cb:0f:53:
9c:c9:52:c7:e3:b6:b8:f8:52:77:56:dc:41:7f:85:af:a5:de:
db:a7:b5:63:d2:39:a1:6d:f8:e4:fa:2c:92:81:d1:01:ee:ee:
5d:4c:d8:34:d6:bb:5d:03:b7:fb:74:94:f4:2f:f0:66:53:b4:
0b:a2:a6:01:fe:06:a5:4a:50:fb:21:db:ff:da:9d:e3:4a:04:
47:b6:8c:1e:5b:2c:f2:0f:15:1b:d0:fb:ff:bc:17:42:b0:af:
60:9a:0c:89:06:b1:dd:5a:74:54:f1:01:89:ce:96:3f:27:ae:
59:8c:21:5b
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 16 16:39:43 2025 by rpki-client