Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa
File: 414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa (raw, json)
Hash identifier: cH3pqXcH2fNyFDYWiSQkCRPIZONurmjvmR+KTvNxUpo=
Subject key identifier: 34:6D:62:F1:2F:31:0C:6C:15:BA:AF:19:3C:0B:E5:E6:C6:C4:1F:35
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 138B04B8CEA303F411572E195E2AE6A8BA1B2387
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.151.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:8b:04:b8:ce:a3:03:f4:11:57:2e:19:5e:2a:e6:a8:ba:1b:23:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:57:a5:ec:c5:17:38:65:a5:ef:24:8e:8d:91:
e7:8d:5f:bc:08:64:78:07:75:7c:67:35:49:cc:34:
e8:3f:63:27:3b:39:a3:a8:5a:e5:a0:6a:1d:3f:cf:
02:8d:fb:44:29:84:d2:01:fd:91:91:bb:1c:61:9c:
16:31:cb:68:fe:5a:99:48:be:e0:68:ce:2b:94:13:
9d:af:85:42:11:78:92:75:7d:0e:68:3b:e0:a5:c4:
ff:b6:ef:00:6f:f7:c7:ae:94:47:a4:5e:e3:fe:2c:
5a:11:76:a2:e6:a1:32:55:dd:38:85:46:ba:47:4a:
b8:92:6c:b2:76:a6:6d:02:10:5d:59:e5:b0:bc:a2:
45:45:4e:ef:24:4b:cc:4d:a4:f7:ae:2a:44:1f:97:
45:1c:bc:07:69:74:62:74:f9:28:a7:b5:97:d4:91:
1a:fc:3f:9d:fc:64:11:ea:18:1d:b0:db:d6:08:86:
b0:24:22:e0:c7:29:04:80:df:f4:a9:33:d0:e0:78:
4e:eb:ca:da:a5:1f:1e:c9:e4:7b:e7:7c:16:34:e8:
ad:0a:fe:1a:cf:44:e3:8c:51:de:95:44:6c:93:f1:
5d:18:74:a9:65:48:b0:77:48:c6:ba:c0:63:08:65:
9a:47:5e:31:b0:47:10:5f:ba:42:ba:69:08:9a:ce:
fe:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:6D:62:F1:2F:31:0C:6C:15:BA:AF:19:3C:0B:E5:E6:C6:C4:1F:35
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/414f78f0-f144-4b6a-85e5-9117d5a2f0d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.151.176.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:a3:07:1f:15:e6:54:8b:31:be:c7:f3:24:d5:70:b1:42:20:
2e:7d:ab:7a:c9:2c:eb:1f:90:b3:a0:60:5e:28:0d:53:c1:16:
24:38:93:85:ef:76:b8:73:84:ef:69:08:1a:2c:86:76:a1:66:
d1:ab:13:5d:a9:68:57:4b:a6:56:b9:6e:d7:d6:66:d3:cf:c1:
8a:6e:00:54:76:c2:37:02:b5:a6:97:fe:9a:8c:7b:d6:41:7f:
8f:fe:76:96:7f:dc:fb:06:80:3b:2f:dc:76:fc:75:e9:da:f5:
a5:94:ad:8b:7e:94:08:7d:39:32:10:fb:bb:11:18:6b:72:7f:
2c:c0:a9:36:96:6f:a4:77:70:22:b1:19:1a:c9:fd:d9:ea:de:
ad:0f:47:ef:01:a0:47:14:39:02:73:00:19:d5:29:1c:b0:c8:
44:37:e7:1e:cd:c9:b0:2b:83:94:ef:a4:9c:ff:73:a9:0f:1f:
2b:4c:ae:6f:70:61:fb:01:70:31:ac:6f:dd:b9:9c:2c:61:61:
37:d0:03:1b:e1:03:5a:19:67:e0:b6:c5:9f:8c:f2:2a:d7:83:
55:40:68:80:ec:7e:80:a1:c4:07:4e:d1:7c:4c:f0:2b:39:a3:
d0:36:e5:59:cd:2a:00:ff:fb:bb:79:6b:38:3f:c2:64:5a:6d:
f6:28:94:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:23:44 2025 by rpki-client