Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c1c6d7c-7d43-45ca-b506-fb3e0e356cde.roa
File: 3c1c6d7c-7d43-45ca-b506-fb3e0e356cde.roa (raw, json)
Hash identifier: qbosjy0p//Ns4LlbxeER3Hf9bir9hfRA57reBehz5Pk=
Subject key identifier: EA:13:E6:22:01:C0:55:52:FC:2F:AA:77:A4:28:D5:EF:8F:85:F9:57
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 23687F04A42A5BDE31B5E3DD0F4444F5E186970C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c1c6d7c-7d43-45ca-b506-fb3e0e356cde.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 216.72.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:68:7f:04:a4:2a:5b:de:31:b5:e3:dd:0f:44:44:f5:e1:86:97:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=0d0ecdc0b3b6a96437aa547a97a0339163fed0d82f3dfc2aa53a1b2844f4cd7c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:67:51:20:23:91:e1:1e:d5:1b:08:03:66:e3:
c8:3f:a0:52:61:5e:03:51:89:5e:88:75:8b:88:fe:
53:9e:50:e6:9f:78:e8:38:c6:73:1b:ab:87:f2:26:
e8:ec:6f:00:9b:ee:88:1a:ad:07:58:25:c9:9c:50:
68:ea:2b:3a:f8:ff:46:e5:15:ed:b1:f6:3e:9a:f9:
3a:b2:76:7c:0d:02:2c:d9:30:4d:2c:1b:6d:86:27:
68:eb:77:97:39:ce:dd:15:bc:54:c7:a7:3a:80:4d:
46:16:f2:7b:2e:b2:b0:c7:3d:9c:b4:30:56:c0:b4:
2d:fc:62:c2:13:4b:c8:b4:24:0e:62:63:f1:bf:24:
1a:c9:57:1b:b6:0c:7e:eb:f9:9a:3c:76:53:f1:07:
8b:82:bd:29:d0:1f:a1:48:18:03:5a:73:91:22:56:
c0:d5:46:a0:e6:db:c1:4f:cd:63:15:fa:65:ff:34:
48:09:0f:4f:ad:89:c8:9c:9a:06:84:87:1c:31:1e:
a0:07:7f:f7:23:e8:18:a6:11:24:e1:28:97:ee:5f:
85:d4:ad:25:62:15:f0:8c:cc:d4:1d:3c:8b:05:25:
0e:a4:ee:93:e5:14:5a:bb:c7:ce:34:42:26:66:f4:
64:87:2f:e3:24:11:f1:93:c7:54:30:cc:df:57:e2:
86:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:13:E6:22:01:C0:55:52:FC:2F:AA:77:A4:28:D5:EF:8F:85:F9:57
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c1c6d7c-7d43-45ca-b506-fb3e0e356cde.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.72.0.0/16
Signature Algorithm: sha256WithRSAEncryption
84:a4:28:54:fa:3e:c4:c9:16:12:4e:12:75:32:67:1f:6e:64:
ea:ee:d8:c2:f1:99:94:ec:40:c1:36:54:dd:c7:aa:38:56:42:
1b:c8:6f:70:e3:f7:dc:74:69:c2:b5:c7:a1:44:10:20:b1:5b:
12:aa:21:37:10:2e:82:53:34:37:b4:93:0a:2e:92:1d:51:96:
7b:d1:5b:a8:76:05:05:82:24:4b:14:08:e0:32:f9:7c:b5:91:
29:d5:2a:65:5d:92:48:86:35:e8:ca:0b:0e:23:6d:06:76:f1:
23:ef:56:4a:4a:53:bf:69:a4:41:20:74:71:4b:36:38:3e:68:
13:8a:86:63:fe:fb:2c:af:6c:e2:ec:ea:69:7a:fd:07:25:93:
1d:31:b6:7f:31:9c:a4:ad:8c:cb:8f:41:fc:b6:bc:ac:cd:98:
d9:2a:d8:fd:1f:97:5d:6d:1f:89:e7:6e:b6:85:20:14:38:75:
84:cc:43:8b:7f:3b:55:87:56:34:29:2c:eb:b9:28:97:9f:e2:
21:8e:47:21:6f:12:f4:ed:90:3d:c0:b9:5c:d0:1b:a3:4f:3c:
b9:2a:28:dd:2b:7f:a2:08:8e:e1:30:a1:f0:6e:d2:3d:ec:2a:
93:ab:38:c1:d3:1d:f9:10:d4:23:31:af:cb:24:0b:08:79:17:
01:05:de:81
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUI2h/BKQqW94xtePdD0RE9eGGlwwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTA3MDAwMDAwWhcNMjUwMjExMjM1OTU5
WjB6MUkwRwYDVQQFE0AwZDBlY2RjMGIzYjZhOTY0MzdhYTU0N2E5N2EwMzM5MTYz
ZmVkMGQ4MmYzZGZjMmFhNTNhMWIyODQ0ZjRjZDdjMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDjZ1EgI5HhHtUbCANm48g/oFJhXgNRiV6IdYuI/lOeUOaf
eOg4xnMbq4fyJujsbwCb7ogarQdYJcmcUGjqKzr4/0blFe2x9j6a+TqydnwNAizZ
ME0sG22GJ2jrd5c5zt0VvFTHpzqATUYW8nsusrDHPZy0MFbAtC38YsITS8i0JA5i
Y/G/JBrJVxu2DH7r+Zo8dlPxB4uCvSnQH6FIGANac5EiVsDVRqDm28FPzWMV+mX/
NEgJD0+ticicmgaEhxwxHqAHf/cj6BimESThKJfuX4XUrSViFfCMzNQdPIsFJQ6k
7pPlFFq7x840QiZm9GSHL+MkEfGTx1QwzN9X4oYjAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQU6hPmIgHAVVL8L6p3pCjV74+F+VcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzNjMWM2ZDdjLTdkNDMtNDVjYS1iNTA2LWZiM2UwZTM1NmNkZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwDYSDANBgkqhkiG9w0BAQsFAAOCAQEAhKQoVPo+xMkWEk4SdTJnH25k6u7Y
wvGZlOxAwTZU3ceqOFZCG8hvcOP33HRpwrXHoUQQILFbEqohNxAuglM0N7STCi6S
HVGWe9FbqHYFBYIkSxQI4DL5fLWRKdUqZV2SSIY16MoLDiNtBnbxI+9WSkpTv2mk
QSB0cUs2OD5oE4qGY/77LK9s4uzqaXr9ByWTHTG2fzGcpK2My49B/La8rM2Y2SrY
/R+XXW0fiedutoUgFDh1hMxDi387VYdWNCks67kol5/iIY5HIW8S9O2QPcC5XNAb
o088uSoo3St/ogiO4TCh8G7SPewqk6s4wdMd+RDUIzGvyyQLCHkXAQXegQ==
-----END CERTIFICATE-----
Generated at Wed Apr 16 17:17:43 2025 by rpki-client