Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e607f3a-14ed-4f1d-9ab0-2ba8378bda8a.roa
File: 2e607f3a-14ed-4f1d-9ab0-2ba8378bda8a.roa (raw, json)
Hash identifier: PSYOvmD62azjHgo3Cnjb9oTpBI9wMN9W34iDmKUMlH8=
Subject key identifier: CE:13:A3:8B:26:A6:E7:B6:BA:57:0A:70:1F:26:77:81:C4:70:4E:F3
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 66470393C6E7ECDB37A559DE2A856B021C6CFFAE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e607f3a-14ed-4f1d-9ab0-2ba8378bda8a.roa
Signing time: Tue 17 Dec 2024 00:00:00 +0000
ROA not before: Tue 17 Dec 2024 00:00:00 +0000
ROA not after: Tue 21 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 5.60.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:47:03:93:c6:e7:ec:db:37:a5:59:de:2a:85:6b:02:1c:6c:ff:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 17 00:00:00 2024 GMT
Not After : Jan 21 23:59:59 2025 GMT
Subject: serialNumber=2a4cb9dff343d184cfb110f3d6bc821ef89b89b4a8e8361db1f9731f61b337f2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:15:1b:dc:e7:41:16:b1:28:3a:54:6e:e3:3a:
c3:ed:2b:f2:fc:57:98:29:e3:90:f9:e0:3c:ff:36:
1d:2a:33:40:2d:e7:36:c5:40:86:8b:2e:a6:ff:12:
5a:11:60:a9:c2:69:24:c5:06:e7:d9:a3:75:8e:db:
84:05:d1:e3:59:bd:f5:ca:03:4f:e6:bf:aa:50:82:
8e:c7:47:ad:0a:c5:ce:d6:a2:f1:5a:7f:1f:0e:8a:
ec:3c:c0:1a:24:97:20:9a:38:30:a8:c3:44:fb:15:
1c:f8:08:03:1a:ad:7e:de:48:3d:8a:71:60:bb:2f:
b8:fd:94:36:aa:68:8a:3e:51:2c:16:47:b7:1c:9e:
c8:cb:a7:4e:64:76:8b:c0:1f:e1:91:79:8e:c2:32:
55:c1:b5:97:3d:74:2a:69:2b:55:d1:36:06:86:98:
23:ad:dc:db:48:59:e6:46:4b:f9:1b:0b:48:a1:c2:
35:87:2b:83:62:f1:c4:4e:a4:b6:73:44:16:7e:19:
70:b1:04:f7:12:98:a0:c0:91:3a:f5:46:de:59:30:
e3:cc:e4:ab:83:e6:f2:61:72:25:8f:8f:58:4a:1e:
80:cb:9e:ff:82:96:e1:89:33:4e:d1:fa:16:75:71:
d3:9f:07:57:c0:38:49:a3:82:4e:b2:23:01:af:72:
38:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:13:A3:8B:26:A6:E7:B6:BA:57:0A:70:1F:26:77:81:C4:70:4E:F3
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e607f3a-14ed-4f1d-9ab0-2ba8378bda8a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.60.244.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:fc:5e:37:23:d1:7f:22:5f:a1:bb:67:db:55:a7:4a:39:b7:
f5:4d:ff:09:d3:8a:04:ac:52:08:86:7c:1d:c5:60:6f:24:fc:
9b:fe:e1:5b:9d:91:4d:d3:d2:3b:10:18:ea:c7:95:51:13:82:
3e:ed:f5:4e:50:cd:41:cd:35:ae:9d:00:60:50:d1:8f:9b:e2:
b4:38:c7:c3:97:43:5d:31:96:c9:56:63:9d:5a:6f:fb:00:18:
cd:23:3a:62:bc:61:31:c9:c3:c7:af:91:98:21:2c:67:bb:6a:
b3:1a:aa:0b:cf:6a:e8:b5:a8:11:e6:9b:61:17:56:14:db:9c:
75:83:cf:35:df:3c:be:b4:3d:76:4b:2d:e8:ae:a0:92:61:72:
71:84:77:fa:18:5d:53:7c:33:8b:67:27:35:29:f7:49:89:7a:
02:ea:47:69:77:dc:31:87:4b:c5:bb:f2:90:3c:0d:7e:46:02:
4a:49:bc:83:ca:b7:57:81:c2:ad:a9:27:07:a9:e0:53:66:3b:
e8:c0:e5:73:62:05:01:4b:fc:64:1a:23:51:ef:74:ad:a1:f7:
2a:0b:d8:e2:9c:ea:7a:1d:0f:d4:2e:a5:ff:8d:2f:41:39:02:
7d:84:a9:06:7f:f6:32:6b:95:3e:a0:05:1b:62:97:2a:d2:0c:
f9:d6:9e:a2
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUZkcDk8bn7Ns3pVneKoVrAhxs/64wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjE3MDAwMDAwWhcNMjUwMTIxMjM1OTU5
WjB6MUkwRwYDVQQFE0AyYTRjYjlkZmYzNDNkMTg0Y2ZiMTEwZjNkNmJjODIxZWY4
OWI4OWI0YThlODM2MWRiMWY5NzMxZjYxYjMzN2YyMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDGFRvc50EWsSg6VG7jOsPtK/L8V5gp45D54Dz/Nh0qM0At
5zbFQIaLLqb/EloRYKnCaSTFBufZo3WO24QF0eNZvfXKA0/mv6pQgo7HR60Kxc7W
ovFafx8Oiuw8wBoklyCaODCow0T7FRz4CAMarX7eSD2KcWC7L7j9lDaqaIo+USwW
R7ccnsjLp05kdovAH+GReY7CMlXBtZc9dCppK1XRNgaGmCOt3NtIWeZGS/kbC0ih
wjWHK4Ni8cROpLZzRBZ+GXCxBPcSmKDAkTr1Rt5ZMOPM5KuD5vJhciWPj1hKHoDL
nv+CluGJM07R+hZ1cdOfB1fAOEmjgk6yIwGvcjhzAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUzhOjiyam57a6VwpwHyZ3gcRwTvMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzJlNjA3ZjNhLTE0ZWQtNGYxZC05YWIwLTJiYTgzNzhiZGE4YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIFPPQwDQYJKoZIhvcNAQELBQADggEBAGv8Xjcj0X8iX6G7Z9tVp0o5t/VN
/wnTigSsUgiGfB3FYG8k/Jv+4VudkU3T0jsQGOrHlVETgj7t9U5QzUHNNa6dAGBQ
0Y+b4rQ4x8OXQ10xlslWY51ab/sAGM0jOmK8YTHJw8evkZghLGe7arMaqgvPaui1
qBHmm2EXVhTbnHWDzzXfPL60PXZLLeiuoJJhcnGEd/oYXVN8M4tnJzUp90mJegLq
R2l33DGHS8W78pA8DX5GAkpJvIPKt1eBwq2pJwep4FNmO+jA5XNiBQFL/GQaI1Hv
dK2h9yoL2OKc6nodD9Qupf+NL0E5An2EqQZ/9jJrlT6gBRtilyrSDPnWnqI=
-----END CERTIFICATE-----
Generated at Wed Apr 16 16:54:23 2025 by rpki-client