Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/454163bc-c620-4594-bc48-7ec5fb84c78d.roa
File: 454163bc-c620-4594-bc48-7ec5fb84c78d.roa (raw, json)
Hash identifier: 2ypxckeL/WSzDvLIm/gEW0xVbbLQ4tlukJLSHm4ox4Q=
Subject key identifier: 34:62:43:EA:85:BA:A9:DA:3C:04:D7:24:06:95:74:76:E7:B6:DB:5B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 184751D148B1C7EB599140127DC4D09C0BABD478
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/454163bc-c620-4594-bc48-7ec5fb84c78d.roa
Signing time: Fri 20 Dec 2024 00:00:00 +0000
ROA not before: Fri 20 Dec 2024 00:00:00 +0000
ROA not after: Fri 24 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 83.128.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:47:51:d1:48:b1:c7:eb:59:91:40:12:7d:c4:d0:9c:0b:ab:d4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 20 00:00:00 2024 GMT
Not After : Jan 24 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:91:8b:98:f9:30:98:e9:af:3f:48:04:1c:
04:d9:c4:82:a3:70:be:0e:32:04:84:2d:e9:8d:21:
76:de:00:f7:af:da:16:b0:76:61:0f:ea:ff:11:ec:
a7:6c:43:de:17:2a:41:01:1c:17:df:7c:a6:f5:a8:
73:5b:59:af:88:3a:41:23:9d:e5:fd:cf:02:77:9b:
43:20:69:0b:cd:49:d1:06:16:0a:7f:dc:52:57:a1:
c4:cf:8e:af:f2:ff:85:04:de:99:73:08:d9:0b:c6:
0b:c9:59:05:7f:09:e9:61:23:33:f1:35:cd:42:ff:
99:d5:9d:81:ca:0d:db:e3:2a:03:b0:18:f3:b7:1e:
0c:0c:56:04:d6:b4:db:a1:24:f9:e4:3a:b6:d3:4f:
45:61:c7:cf:36:13:84:c7:ba:0a:ca:94:d2:ea:24:
40:2b:65:83:80:f9:1f:c3:8c:a5:22:0a:aa:4d:01:
78:98:16:f5:0c:ae:8b:2f:2e:c9:80:2c:e7:03:52:
49:8a:24:df:f0:1b:07:0f:13:1b:84:70:54:6e:a1:
54:71:fd:fa:f6:e7:a3:d3:b4:61:9f:f2:e7:f8:12:
04:69:47:eb:e7:fd:4b:62:4a:97:d2:bb:7c:c3:9b:
52:9c:56:73:01:02:b5:8d:fe:19:b0:b8:3e:4e:08:
85:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:62:43:EA:85:BA:A9:DA:3C:04:D7:24:06:95:74:76:E7:B6:DB:5B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/454163bc-c620-4594-bc48-7ec5fb84c78d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.128.0.0/16
Signature Algorithm: sha256WithRSAEncryption
80:4a:0e:21:86:e9:0f:c6:a6:76:94:ad:43:5a:e4:02:02:76:
ba:c9:c1:63:19:1c:a3:8c:4b:0d:16:25:82:e0:7f:0b:b0:5d:
bd:35:82:cf:14:54:9b:46:9b:87:c6:e9:7c:25:56:8f:0e:fe:
67:6c:7c:9d:3c:26:69:9d:4c:ba:59:a3:bc:a6:e7:c7:09:ef:
a6:0a:6a:11:4f:ba:90:53:df:b0:44:19:45:fd:c2:0e:4e:f0:
83:43:14:3c:f3:35:41:72:07:65:7c:7a:04:7a:07:e2:d8:85:
c7:5e:01:79:30:61:40:fc:ef:13:38:c7:38:e3:c8:d6:75:ca:
ae:f6:9e:47:d6:8b:18:01:b6:f0:b7:8b:0e:e2:31:6c:67:ae:
25:e4:c6:ff:bb:bf:dc:82:28:a5:2e:4d:24:c1:0c:86:1e:8d:
4a:d9:cf:ea:00:e1:c6:8b:2d:60:28:6a:33:29:21:9b:ab:7f:
0f:d5:96:b6:a5:42:59:4c:f0:51:34:16:cb:8e:83:fd:0f:29:
96:9b:3b:cf:22:19:ad:c8:44:1f:34:50:62:39:2c:10:51:86:
c7:05:e4:01:ef:37:54:35:5c:00:91:32:f4:57:61:f6:03:64:
a5:26:31:1d:b9:94:54:74:19:10:8d:1f:5f:c6:03:04:a6:3a:
ac:c3:2a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:28 2025 by rpki-client