Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18709896-04b2-4b4b-9539-f3fc250ae339.roa
File: 18709896-04b2-4b4b-9539-f3fc250ae339.roa (raw, json)
Hash identifier: 33Ybcn3iL1MvsriwwJS59gqSKhxJyyKTYEmStMZtaFg=
Subject key identifier: 81:7E:6E:7D:F5:CE:50:2D:0F:66:63:74:70:9C:6B:5C:4E:58:B4:1E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0C65C209B4504B048F731D57C0430A8D912330CB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18709896-04b2-4b4b-9539-f3fc250ae339.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.77.48.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:65:c2:09:b4:50:4b:04:8f:73:1d:57:c0:43:0a:8d:91:23:30:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: serialNumber=cf016f48d0a03b464ca1aa2cadfb3a2da63867819081ec35ca62bf3676fb6dc2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:26:56:f9:75:32:ef:41:b8:51:8a:65:55:6f:
ca:18:04:a9:eb:8a:06:15:26:21:80:fa:64:88:97:
32:56:49:d4:32:6b:ed:ca:f0:4d:58:32:21:85:eb:
1b:8e:9c:5c:db:57:05:6a:40:eb:c6:34:f7:2f:83:
82:bc:75:6c:5f:fb:ce:c1:96:b2:ff:92:75:92:0b:
50:af:60:df:d5:a6:39:7d:f2:9e:04:6c:b2:bd:77:
d0:16:c4:19:fe:fe:21:3d:41:4c:51:9c:e2:e5:1a:
37:fb:e2:df:54:62:12:de:ce:6e:39:8a:ee:a5:81:
d3:59:45:12:df:65:de:15:33:59:34:00:d1:66:73:
f1:21:44:e2:9f:7f:8a:19:34:51:ac:df:1d:f7:58:
b0:7a:5d:56:4a:e1:e8:10:59:53:d3:e7:69:3a:20:
80:45:a7:57:3e:71:ba:b0:31:2f:b3:dc:14:66:65:
7b:d1:71:1d:5a:1c:04:4c:80:84:a3:0e:0c:88:e0:
bf:61:c5:e3:bf:30:0f:0b:12:a9:88:b0:09:c3:a4:
34:ce:d9:53:10:7e:ae:4c:08:9d:18:d2:83:7a:7e:
13:b3:c4:6b:f3:a3:cc:85:20:d7:be:72:80:05:66:
8e:16:99:7b:d1:db:88:87:c7:81:ac:8f:27:fa:26:
41:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7E:6E:7D:F5:CE:50:2D:0F:66:63:74:70:9C:6B:5C:4E:58:B4:1E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18709896-04b2-4b4b-9539-f3fc250ae339.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.77.48.0/21
Signature Algorithm: sha256WithRSAEncryption
64:fd:7b:a9:0b:e3:7b:8d:1f:82:f4:00:8a:9c:c9:25:b6:51:
7c:e4:c5:c1:1d:5e:e6:9a:75:66:fb:5a:1c:43:cb:40:7b:10:
28:90:d3:1d:c1:7e:56:3b:6a:f4:86:17:8e:07:2e:07:25:28:
a6:c3:30:08:98:af:07:dd:ac:90:db:3e:3b:64:22:63:94:d9:
c4:d8:32:a0:e8:88:a5:ef:85:cc:bf:f0:40:eb:01:42:74:be:
d4:14:a9:17:3b:1d:4f:6a:7f:16:11:40:61:37:4a:81:e5:e3:
43:36:94:f7:4b:07:2f:85:18:32:0e:7c:63:10:d2:ce:b0:86:
1d:e1:ae:40:e2:31:d9:8e:c2:d0:fa:e2:ad:8c:49:a8:54:14:
fc:54:70:3d:fa:f8:50:8b:7d:e4:f7:8c:5f:8f:15:da:fc:f6:
9f:b1:4b:c1:e9:5f:30:7f:87:5f:3a:78:c6:a0:34:cd:85:e2:
3e:7c:13:75:91:57:e7:b0:d7:c5:c3:2b:5e:cc:63:48:68:61:
80:ed:af:f1:0f:7a:b2:77:7b:9f:96:a6:ee:25:51:34:18:31:
e8:6a:66:52:a1:ba:fc:b2:47:28:48:e4:65:c0:27:47:71:6d:
3d:d7:53:66:47:cf:b5:2b:b9:c0:81:f7:8d:33:64:fe:4c:1f:
4b:3d:65:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:17:54 2025 by rpki-client