Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/275c5b0e-c66d-49aa-b655-59dab44598d1.roa
File: 275c5b0e-c66d-49aa-b655-59dab44598d1.roa (raw, json)
Hash identifier: 3C5yiPhSyLXgDQJ3sKpvR6ttxjgfa5f9PShQIsmLZzM=
Subject key identifier: 4B:29:EE:C9:ED:73:DE:38:C9:2D:44:AD:70:11:36:2A:A7:40:45:33
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4623BBB46F754C296EF76AF7B4EC67D93BF631EB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/275c5b0e-c66d-49aa-b655-59dab44598d1.roa
Signing time: Sat 04 Jan 2025 00:00:00 +0000
ROA not before: Sat 04 Jan 2025 00:00:00 +0000
ROA not after: Sat 08 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 35.50.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:23:bb:b4:6f:75:4c:29:6e:f7:6a:f7:b4:ec:67:d9:3b:f6:31:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 4 00:00:00 2025 GMT
Not After : Feb 8 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9c:fe:6a:2e:7d:77:54:83:af:cb:56:dc:b4:
47:b1:11:9c:bf:d3:f3:61:0f:34:d9:8f:54:11:27:
27:f7:99:93:ae:65:15:2e:55:a9:1e:25:12:65:c4:
d8:d4:30:b5:ea:8e:d1:72:aa:b0:ba:fd:35:39:e5:
7b:af:26:7e:60:ef:bd:83:57:26:26:34:f3:f0:03:
35:a3:88:ca:51:ce:a9:42:a5:2e:1f:22:a5:5c:87:
db:46:f4:87:c8:af:07:10:10:30:e7:a2:44:f1:92:
94:b7:d6:92:4b:c0:6f:67:32:47:02:2e:64:1a:a7:
85:b2:cb:4b:b3:12:70:44:64:30:34:78:f3:a7:7f:
ff:72:9b:30:14:07:bd:00:dd:bd:86:e1:a0:2c:92:
72:07:ea:df:ff:d6:eb:82:46:c6:e5:c9:7a:0a:28:
03:16:e1:40:ee:6f:a5:3b:44:d0:ab:84:63:95:e7:
58:c7:65:82:b9:1a:bd:b5:d7:51:4c:df:d7:86:83:
9c:1c:36:cb:47:0e:cd:fc:ea:77:1a:56:fb:c8:5e:
45:c4:56:c9:ba:40:65:e0:9a:a9:9b:4c:02:b8:17:
ab:35:87:a2:d0:f6:1a:24:8f:1a:50:14:43:1a:82:
44:1c:9f:4e:af:04:12:4a:d9:e2:48:e1:7c:20:5d:
f9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:29:EE:C9:ED:73:DE:38:C9:2D:44:AD:70:11:36:2A:A7:40:45:33
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/275c5b0e-c66d-49aa-b655-59dab44598d1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.50.210.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:46:ee:8d:de:37:4c:38:02:2b:a2:8a:9a:79:13:36:1a:19:
36:79:b8:e7:17:c6:d1:9b:f1:c8:30:70:55:36:fa:a8:42:3e:
4e:57:2b:63:9f:a3:e3:8b:3b:09:aa:95:9f:3d:eb:49:f2:69:
9a:e9:60:21:5f:16:7d:62:d8:28:a1:0f:80:57:00:ed:5e:d2:
75:0a:a6:5c:de:8e:d4:a9:fc:9a:bc:c4:a3:4b:95:31:e5:fe:
d0:f0:74:22:7f:16:9e:e1:28:e5:76:b7:ee:44:39:ec:a8:cb:
35:7a:8d:b5:6c:1a:64:07:9e:ae:91:e8:78:95:72:94:36:0a:
2b:a0:f2:4f:fe:4e:f1:c2:08:8a:ce:0d:12:db:3a:86:83:76:
34:68:10:e4:19:1d:a9:3b:27:99:14:d5:4c:86:01:96:c4:7b:
92:c1:74:39:59:9d:40:63:04:dd:15:6e:a8:fe:19:4c:c5:ff:
73:c6:31:cc:6d:03:09:c5:be:22:ae:26:6f:b8:78:78:0a:0c:
be:fd:cf:95:80:a8:9e:83:6c:33:4e:ea:66:99:40:74:fc:07:
86:57:18:b1:c5:89:db:e4:e4:19:05:c0:61:43:50:38:7b:1c:
8c:c9:68:bd:42:d9:a9:f3:14:f5:cb:3a:47:28:0f:35:0a:a6:
44:de:9e:e1
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIURiO7tG91TClu92r3tOxn2Tv2MeswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTA0MDAwMDAwWhcNMjUwMjA4MjM1OTU5
WjB6MUkwRwYDVQQFE0AzN2U1N2UzOWM2MzQ2ZjNiZDIwYzliZjFmYTlhNmM1YTNh
YTRlOThkZWE3Y2MwODU3ZjJmYTQ2Nzk0YjRjZWYyMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC9nP5qLn13VIOvy1bctEexEZy/0/NhDzTZj1QRJyf3mZOu
ZRUuVakeJRJlxNjUMLXqjtFyqrC6/TU55XuvJn5g772DVyYmNPPwAzWjiMpRzqlC
pS4fIqVch9tG9IfIrwcQEDDnokTxkpS31pJLwG9nMkcCLmQap4Wyy0uzEnBEZDA0
ePOnf/9ymzAUB70A3b2G4aAsknIH6t//1uuCRsblyXoKKAMW4UDub6U7RNCrhGOV
51jHZYK5Gr2111FM39eGg5wcNstHDs386ncaVvvIXkXEVsm6QGXgmqmbTAK4F6s1
h6LQ9hokjxpQFEMagkQcn06vBBJK2eJI4XwgXfljAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUSynuye1z3jjJLUStcBE2KqdARTMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzI3NWM1YjBlLWM2NmQtNDlhYS1iNjU1LTU5ZGFiNDQ1OThkMS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAAjMtIwDQYJKoZIhvcNAQELBQADggEBAH9G7o3eN0w4Aiuiipp5EzYaGTZ5
uOcXxtGb8cgwcFU2+qhCPk5XK2Ofo+OLOwmqlZ8960nyaZrpYCFfFn1i2CihD4BX
AO1e0nUKplzejtSp/Jq8xKNLlTHl/tDwdCJ/Fp7hKOV2t+5EOeyoyzV6jbVsGmQH
nq6R6HiVcpQ2Ciug8k/+TvHCCIrODRLbOoaDdjRoEOQZHak7J5kU1UyGAZbEe5LB
dDlZnUBjBN0Vbqj+GUzF/3PGMcxtAwnFviKuJm+4eHgKDL79z5WAqJ6DbDNO6maZ
QHT8B4ZXGLHFidvk5BkFwGFDUDh7HIzJaL1C2anzFPXLOkcoDzUKpkTenuE=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:06:34 2025 by rpki-client