Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e68f22-6572-4979-9cb6-534fd279a73d.roa
File: 41e68f22-6572-4979-9cb6-534fd279a73d.roa (raw, json)
Hash identifier: jV7Sok6Wu5ltN5ZSP0mRwKaJzwg9jTEm9LQKoUWqsHE=
Subject key identifier: AA:77:BC:FB:BF:DD:E1:E6:44:69:6B:E1:3D:82:9D:60:AE:A7:C4:47
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 502F601B13857A84D7117492417C691C82B06738
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e68f22-6572-4979-9cb6-534fd279a73d.roa
Signing time: Tue 14 Jan 2025 00:00:00 +0000
ROA not before: Tue 14 Jan 2025 00:00:00 +0000
ROA not after: Tue 18 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 56.127.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:2f:60:1b:13:85:7a:84:d7:11:74:92:41:7c:69:1c:82:b0:67:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 14 00:00:00 2025 GMT
Not After : Feb 18 23:59:59 2025 GMT
Subject: serialNumber=234fc369a05c022aa29ee97ffa28fef6009135903b80389489e416ddf52c4eb7, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:61:75:72:9e:05:82:fc:38:bc:3b:f8:f8:3f:
9d:23:4f:4a:85:b3:78:a1:4e:6c:8c:10:e9:37:c7:
33:99:5c:2f:dd:2f:29:13:95:26:80:ce:ec:b6:76:
b4:10:52:42:26:ba:a3:02:8d:d0:41:0d:67:26:80:
c6:58:9e:e0:27:58:66:5b:a9:90:46:1f:b9:c8:4a:
3b:7a:da:96:82:38:49:cd:f2:f3:8f:e4:56:a3:0e:
27:83:5a:78:1f:ea:5f:81:19:56:4b:db:27:9a:43:
d8:c8:02:e8:78:26:ed:25:31:e1:e2:8e:71:df:18:
8e:8e:99:4f:fb:64:1f:3b:c8:da:f6:83:59:9e:07:
63:40:24:60:c6:a1:a2:02:da:17:90:51:53:9d:73:
48:69:e8:0c:4b:76:39:2c:0b:66:2a:38:6f:b8:29:
eb:88:ba:2d:7e:37:4a:f1:14:37:a6:61:44:45:07:
09:29:43:b4:10:3e:47:b1:6e:00:41:14:9d:96:fe:
76:63:8a:87:44:91:cf:de:5c:fb:72:24:a0:87:e4:
88:9a:c9:ef:42:f9:e8:51:99:50:e5:9a:6c:88:66:
e0:16:97:56:b0:1c:c6:dc:9b:88:5e:37:80:81:10:
50:ec:0d:b6:33:98:d9:7e:da:9e:39:d8:3e:5f:dc:
7e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:77:BC:FB:BF:DD:E1:E6:44:69:6B:E1:3D:82:9D:60:AE:A7:C4:47
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41e68f22-6572-4979-9cb6-534fd279a73d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.127.0.0/16
Signature Algorithm: sha256WithRSAEncryption
39:ea:2e:46:8a:99:94:1d:cc:53:be:b5:2a:e3:d2:26:42:da:
72:f6:60:bd:cb:26:7a:74:73:40:c3:1c:ae:ab:33:2d:6f:67:
d3:cb:52:64:7e:23:46:bc:cc:f8:77:8f:ba:d1:80:55:70:72:
4b:ee:e8:e7:b7:5e:39:df:22:a8:52:40:f3:4f:81:ee:30:81:
df:79:69:75:59:b1:51:24:f6:42:57:cb:69:bd:6e:7e:4b:ba:
35:3c:09:2b:a0:3e:b5:41:01:f6:cb:5a:4f:4e:50:c5:8a:ba:
39:d9:1e:20:36:5b:f5:f1:44:a3:f1:f0:d1:b9:90:4e:16:d5:
75:15:c1:67:13:27:b9:43:bc:57:cf:3f:b9:df:de:e6:9f:dd:
c7:7c:07:fa:71:5a:49:65:31:23:94:16:8d:36:ca:ff:5a:dd:
cc:1b:ff:2e:c6:5d:cf:fe:97:a5:09:91:0f:08:b7:7d:34:bb:
ba:83:0a:cf:bc:0f:f8:5b:6b:1b:06:90:c8:c7:88:8f:b7:4d:
2c:3e:86:9b:ad:2c:0f:a6:44:90:84:30:1a:ab:cb:09:2a:49:
53:5d:8e:ac:47:bd:64:0c:65:bb:54:6a:69:ca:64:7e:51:ea:
b0:d4:77:24:94:d4:2e:62:e4:04:7a:76:99:8a:bb:bb:8f:11:
01:5c:03:a6
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUUC9gGxOFeoTXEXSSQXxpHIKwZzgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTE0MDAwMDAwWhcNMjUwMjE4MjM1OTU5
WjB6MUkwRwYDVQQFE0AyMzRmYzM2OWEwNWMwMjJhYTI5ZWU5N2ZmYTI4ZmVmNjAw
OTEzNTkwM2I4MDM4OTQ4OWU0MTZkZGY1MmM0ZWI3MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCzYXVyngWC/Di8O/j4P50jT0qFs3ihTmyMEOk3xzOZXC/d
LykTlSaAzuy2drQQUkImuqMCjdBBDWcmgMZYnuAnWGZbqZBGH7nISjt62paCOEnN
8vOP5FajDieDWngf6l+BGVZL2yeaQ9jIAuh4Ju0lMeHijnHfGI6OmU/7ZB87yNr2
g1meB2NAJGDGoaIC2heQUVOdc0hp6AxLdjksC2YqOG+4KeuIui1+N0rxFDemYURF
BwkpQ7QQPkexbgBBFJ2W/nZjiodEkc/eXPtyJKCH5Iiaye9C+ehRmVDlmmyIZuAW
l1awHMbcm4heN4CBEFDsDbYzmNl+2p452D5f3H7xAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUqne8+7/d4eZEaWvhPYKdYK6nxEcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzQxZTY4ZjIyLTY1NzItNDk3OS05Y2I2LTUzNGZkMjc5YTczZC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA4fzANBgkqhkiG9w0BAQsFAAOCAQEAOeouRoqZlB3MU761KuPSJkLacvZg
vcsmenRzQMMcrqszLW9n08tSZH4jRrzM+HePutGAVXByS+7o57deOd8iqFJA80+B
7jCB33lpdVmxUST2QlfLab1ufku6NTwJK6A+tUEB9staT05QxYq6OdkeIDZb9fFE
o/Hw0bmQThbVdRXBZxMnuUO8V88/ud/e5p/dx3wH+nFaSWUxI5QWjTbK/1rdzBv/
LsZdz/6XpQmRDwi3fTS7uoMKz7wP+FtrGwaQyMeIj7dNLD6Gm60sD6ZEkIQwGqvL
CSpJU12OrEe9ZAxlu1RqacpkflHqsNR3JJTULmLkBHp2mYq7u48RAVwDpg==
-----END CERTIFICATE-----
Generated at Wed Apr 16 17:12:32 2025 by rpki-client