Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa
File: 2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa (raw, json)
Hash identifier: XfLc/YXtG042BMXTm81Ozn2H0zddqxTZYsRFh3UhQzk=
Subject key identifier: D3:B4:23:AD:8A:75:DC:29:A1:AE:22:79:67:D4:0A:62:25:42:49:01
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0F54A6439A8E7D111622CDC99F21F341867B8055
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 76.252.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:54:a6:43:9a:8e:7d:11:16:22:cd:c9:9f:21:f3:41:86:7b:80:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4e:5a:11:ae:eb:7b:16:1e:c3:8b:db:db:77:
85:a5:3f:b4:05:f5:f5:d8:03:dc:ea:7f:39:06:b4:
ea:2a:83:54:3d:a4:af:15:c3:62:2a:6d:43:b0:98:
30:b0:8f:9a:5f:f2:ab:fd:ce:cd:9d:df:78:19:9d:
30:d4:c0:5c:ff:d7:47:b7:e3:25:f6:db:26:0b:0f:
14:db:f8:21:f6:71:38:de:ce:8b:19:6b:46:91:6e:
bd:07:9c:3c:f2:b0:46:c1:17:93:ba:7f:68:20:17:
13:3a:a9:43:b5:d2:d8:2f:45:1f:95:4a:2f:6b:76:
5f:68:2c:75:64:f2:0b:f2:b8:17:5f:d2:8e:10:5e:
b8:a5:af:6b:62:c8:cb:a2:be:c1:a8:7b:16:26:54:
36:cf:35:c2:29:44:64:2d:d5:60:79:da:2e:1d:3a:
2b:51:e5:79:bd:7a:d5:d4:0f:24:08:82:4a:3c:6b:
12:1a:d7:86:c4:03:71:49:8b:e7:e6:d7:7c:6e:0a:
aa:a6:ad:ba:c8:8d:98:65:30:93:97:6f:24:3c:0d:
11:23:e0:70:3e:65:74:52:33:64:c5:97:c4:51:1d:
f4:41:73:77:3a:cc:b9:4f:04:d3:21:86:e0:cc:05:
7b:2d:9f:ab:1f:83:e2:00:1b:63:d9:91:0d:87:71:
ef:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B4:23:AD:8A:75:DC:29:A1:AE:22:79:67:D4:0A:62:25:42:49:01
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d6bc11d-b2d7-4fbb-8409-5107d85b669c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
76.252.0.0/18
Signature Algorithm: sha256WithRSAEncryption
a8:09:cd:d6:ba:d0:98:d0:47:e4:85:6e:90:48:29:5d:bc:62:
08:05:39:c6:d9:c3:35:cf:e7:67:f2:9b:d9:4f:22:c0:cb:3e:
28:db:c9:c3:dc:cb:1e:c6:82:db:b6:d8:15:76:21:04:83:18:
87:dc:2d:50:d5:c7:69:1e:2a:92:aa:23:73:db:f6:e8:a2:ee:
82:ef:43:3c:00:b5:16:a3:32:bb:96:81:10:c9:10:d8:47:9f:
c4:6a:0e:1a:a1:98:67:f0:47:d2:3c:2c:a8:fd:21:86:2c:c3:
d9:ff:19:89:19:26:df:7a:9b:d6:1c:83:f5:3e:ae:94:21:6c:
37:0e:9f:56:99:12:91:9c:e3:e7:d2:3b:96:04:13:aa:e8:59:
ac:3b:17:7f:0a:19:5f:78:f6:19:71:03:fc:3b:47:11:f3:83:
b3:1e:bd:a8:b0:ba:d6:54:4b:85:ea:db:04:0e:f8:a7:a6:61:
a8:bd:ba:ad:e2:4d:73:ea:fd:4a:74:1a:23:d3:57:5a:60:58:
1c:1c:4b:6a:16:a0:6a:aa:1d:a2:95:ec:85:33:bc:1e:c2:91:
b3:b4:b2:03:cf:95:89:13:f1:2b:cd:6d:7c:25:2c:20:02:15:
ff:13:1a:2e:02:9c:8a:c4:37:a3:f9:4e:82:03:30:3b:fb:e6:
44:e5:b1:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:04:24 2025 by rpki-client