Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27257c18-14da-4c82-aed1-9f13431d1f7c.roa
File: 27257c18-14da-4c82-aed1-9f13431d1f7c.roa (raw, json)
Hash identifier: Li3AAAjIuapvx2CeRY8OiBzgao0vZ2c5xdsPSah4X24=
Subject key identifier: 31:CC:FB:2B:C4:5D:83:36:71:D9:6D:21:AA:F3:FC:39:5D:9E:74:99
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1461F39548BEA2C962573ED39C7CEE662ED3B025
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27257c18-14da-4c82-aed1-9f13431d1f7c.roa
Signing time: Fri 20 Dec 2024 00:00:00 +0000
ROA not before: Fri 20 Dec 2024 00:00:00 +0000
ROA not after: Fri 24 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 35.47.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:61:f3:95:48:be:a2:c9:62:57:3e:d3:9c:7c:ee:66:2e:d3:b0:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 20 00:00:00 2024 GMT
Not After : Jan 24 23:59:59 2025 GMT
Subject: serialNumber=78367770796cd4befe56ae12b85cd14a5cc74f0786d5075d439729a19c388a1c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:dc:b2:09:4a:23:e0:26:8c:7c:14:be:27:a0:
8f:8a:97:67:b8:e1:a9:e8:0a:06:1c:da:36:06:fb:
87:d5:60:cf:7c:4c:d6:11:70:94:62:e8:fe:66:19:
f4:6e:ff:8f:1e:74:be:41:c6:be:44:5d:67:77:b7:
f3:d8:68:a2:38:66:5b:8e:7b:0b:4c:87:d0:ff:82:
1d:4a:ba:92:05:2f:8a:4e:c6:a7:14:95:01:f6:01:
30:89:ef:a3:88:90:d8:1b:0d:e4:13:70:71:8b:49:
47:af:2f:eb:37:4b:75:46:1a:1e:f7:b7:23:ce:b3:
0f:a6:b6:f1:09:bf:60:0c:1a:98:0b:41:fd:46:48:
d6:8f:92:af:ee:64:92:71:b4:3a:b4:1c:f9:03:de:
38:a3:54:f3:23:9f:c3:44:e7:60:4c:65:dd:59:b4:
75:66:a8:65:94:e8:b6:c5:f4:fa:8c:05:63:5c:3d:
6f:19:99:61:d7:c2:ba:37:af:be:fb:80:f2:50:01:
ec:a3:94:76:36:85:a9:3e:62:6c:c5:f5:df:ca:7d:
d5:9a:59:63:47:1a:61:18:50:6a:ff:5e:1d:9d:09:
be:f4:16:76:77:01:75:eb:e2:30:78:7c:57:82:d1:
48:00:ee:0a:0f:a1:ec:80:2b:9d:fd:de:7b:d4:ae:
69:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CC:FB:2B:C4:5D:83:36:71:D9:6D:21:AA:F3:FC:39:5D:9E:74:99
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27257c18-14da-4c82-aed1-9f13431d1f7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.47.0.0/16
Signature Algorithm: sha256WithRSAEncryption
64:58:9b:ad:41:a5:48:46:c7:12:19:85:e2:2a:35:d3:84:2f:
bc:40:57:b3:b2:ca:54:32:49:3a:69:5c:0e:1a:52:6b:7e:3c:
00:53:87:17:0c:cf:fa:4f:08:80:38:7b:56:6d:f8:66:93:7e:
0c:96:fa:8c:c9:85:2d:bb:4d:37:5e:e4:37:7c:aa:37:29:a5:
ce:e7:dd:e8:11:47:b8:22:e0:37:ea:3f:74:c0:d3:9a:38:b8:
20:ba:a1:02:1a:fe:cb:d3:c6:82:a3:a3:c2:3a:4e:09:9f:d7:
ff:44:4d:ee:ca:08:e4:57:52:93:8d:61:5d:4b:6a:1e:59:82:
a4:a2:8f:b7:7e:9b:13:de:ed:8c:fb:81:1c:cc:76:ea:69:31:
d1:85:25:2d:72:ba:95:de:a5:9c:a2:31:12:2b:73:3d:73:f3:
e5:a7:a9:b4:42:22:97:33:73:58:1e:fa:51:d5:98:47:33:c9:
ae:2a:24:81:d5:c8:04:50:b0:2f:04:9f:6c:27:9d:0c:02:a3:
71:5a:5c:66:17:bf:9c:f8:19:5f:27:93:89:c5:c9:c4:3a:30:
cd:ab:bc:7e:a5:c2:8c:77:25:e3:2e:1f:5d:12:4a:27:61:6d:
0f:b8:12:be:77:9e:b2:cc:ee:42:29:40:a8:f2:e3:f1:c3:e9:
e7:8a:51:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:52:08 2025 by rpki-client