Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22b25ccf-2082-4e9a-a5f1-b24b4b94a75a.roa
File: 22b25ccf-2082-4e9a-a5f1-b24b4b94a75a.roa (raw, json)
Hash identifier: u75CYpUTBNfgQk8HzYjk4h93H0bSuGuugcOfUQG7+I0=
Subject key identifier: 80:28:5F:66:0E:3F:12:39:18:86:27:12:EC:78:BF:21:69:E7:E9:9C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4BFD18CBF1882074B5703616B67FDDFB86AAB17F
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22b25ccf-2082-4e9a-a5f1-b24b4b94a75a.roa
Signing time: Mon 13 Jan 2025 00:00:00 +0000
ROA not before: Mon 13 Jan 2025 00:00:00 +0000
ROA not after: Mon 17 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 56.240.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:fd:18:cb:f1:88:20:74:b5:70:36:16:b6:7f:dd:fb:86:aa:b1:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 13 00:00:00 2025 GMT
Not After : Feb 17 23:59:59 2025 GMT
Subject: serialNumber=16792e538c3b12cca167a8a8c9e1eac4245685c89450f2434919f6f8ca8c895b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:54:38:c2:cf:0c:0d:5b:9c:58:62:7e:28:95:
b4:a4:7a:31:f0:5c:0e:3c:14:37:be:bb:6d:be:b2:
23:0c:5b:b9:0f:83:d7:be:22:cf:7b:02:42:b1:51:
44:7c:e9:5a:60:10:16:ba:19:37:6a:bc:47:47:31:
be:3c:52:3a:2a:6a:f0:e8:29:4f:00:19:b1:a6:5e:
87:cd:c8:d0:22:23:0f:f9:07:d7:d2:ce:45:3a:04:
2e:d4:c6:be:34:01:85:b9:44:34:2c:2e:36:33:4d:
85:c4:4f:28:be:11:55:4a:73:d6:d2:6d:1a:38:e2:
25:ba:dc:05:1c:92:17:9a:28:7c:9f:1a:ad:73:55:
6e:89:54:ec:43:3d:80:48:6c:fa:1b:b6:9e:17:f0:
e1:cc:17:7c:a6:0c:bd:ec:7c:79:05:7c:55:50:a8:
8a:21:80:93:67:29:4e:fb:9e:a6:aa:db:b5:4c:4f:
32:9c:ae:90:3b:dc:23:c3:04:73:f2:0b:3e:2f:bf:
2c:fb:0a:eb:c3:99:20:ce:08:c8:36:c3:0c:fb:1d:
83:11:71:2e:47:4b:8b:6a:70:98:15:d1:aa:91:16:
45:c7:a8:05:23:d1:9a:7f:a3:b0:1b:60:de:5e:40:
ac:d9:8d:b2:73:1c:cb:99:68:63:29:0e:24:9e:63:
40:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:28:5F:66:0E:3F:12:39:18:86:27:12:EC:78:BF:21:69:E7:E9:9C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22b25ccf-2082-4e9a-a5f1-b24b4b94a75a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.240.0.0/16
Signature Algorithm: sha256WithRSAEncryption
aa:9c:4b:56:14:b7:ec:b2:77:86:52:cf:26:64:dd:36:a6:a9:
14:8d:c8:bf:36:ba:f5:45:fe:25:4e:b9:40:a2:b9:f6:fc:89:
23:5b:94:31:c1:f9:03:8c:bc:94:09:e1:cd:c5:d0:b3:30:c5:
47:6b:85:67:db:70:a3:0e:a3:4b:f1:e0:d9:e8:cb:72:59:04:
3a:04:c5:01:ed:40:a1:38:58:88:55:17:a4:f4:db:eb:ed:b1:
b7:4a:e3:82:f3:aa:c3:35:26:90:e4:b4:ed:a9:2f:ff:35:ae:
d0:ac:94:46:a0:09:63:5b:7c:64:ba:37:f2:0e:25:a4:99:c0:
91:48:f5:85:f7:7e:bb:42:1d:5a:ff:f3:88:a1:00:00:2b:50:
23:41:70:7c:16:04:2a:bb:58:73:06:52:4b:25:48:01:7b:21:
a7:d5:8d:fa:02:97:62:e2:3f:a0:7d:19:e3:cf:90:df:c8:22:
57:1a:e0:13:77:4a:c2:da:e4:d6:76:05:d7:81:fa:fc:4a:73:
63:0d:49:a4:a2:34:f2:bf:47:7a:65:de:1d:1f:5d:a4:81:1c:
60:a1:98:a2:6a:35:ea:95:06:f3:ad:e0:ee:7d:66:70:46:b9:
cd:d4:ca:22:52:c2:43:9f:1a:4b:f3:d5:dd:8d:3d:8b:bb:51:
4e:c5:37:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:44:48 2025 by rpki-client