Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c2e800d-f1da-4d6d-ad22-006a0ccfac03.roa
File: 5c2e800d-f1da-4d6d-ad22-006a0ccfac03.roa (raw, json)
Hash identifier: aeg7xylZ3v9cmW2qE9NdfrjZWcb/OvO1KNmWOSos/5A=
Subject key identifier: 2B:A0:1C:38:1D:BE:3B:75:74:D5:1F:6E:BF:1D:FE:CE:C0:86:57:33
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0B8F1E97C19D9A11C6B2716F915AF4D197FAEFBE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c2e800d-f1da-4d6d-ad22-006a0ccfac03.roa
Signing time: Mon 02 Dec 2024 00:00:00 +0000
ROA not before: Mon 02 Dec 2024 00:00:00 +0000
ROA not after: Mon 06 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 16.26.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:8f:1e:97:c1:9d:9a:11:c6:b2:71:6f:91:5a:f4:d1:97:fa:ef:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 2 00:00:00 2024 GMT
Not After : Jan 6 23:59:59 2025 GMT
Subject: serialNumber=3dd6a0ebedb7ff80dfca26c63701e0c3c6fe633f7eb38a9250dd5bafa8b9cd5f, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:08:a0:99:3c:0f:eb:e6:92:f2:3d:34:02:a2:
71:40:93:91:34:70:20:ee:82:de:3c:fb:d8:d3:c2:
fd:d2:cc:cc:d3:9b:fb:04:81:e6:bc:14:d0:4c:76:
37:49:93:7c:39:67:c3:07:66:aa:6f:59:41:c1:03:
3f:e5:d3:34:8e:9a:13:b0:3e:28:76:04:22:70:c9:
27:ab:fb:c4:72:b0:f0:d2:14:01:c4:29:e0:fc:80:
81:07:69:59:c6:a8:5f:fb:44:ea:ff:a0:d6:33:20:
9a:6a:fa:ed:7a:ad:c5:08:73:ac:20:fa:43:02:66:
5a:8e:ab:85:65:53:12:ca:9b:9a:85:ac:65:58:74:
bd:a7:d5:3a:89:7e:a6:26:b2:c4:3b:5b:3c:ae:2d:
67:2f:ca:9b:1f:62:e2:16:08:b8:33:55:d6:ec:b6:
b3:a2:9d:77:72:03:47:6a:8c:28:58:86:5f:3f:ce:
51:ef:81:79:9d:40:1c:6c:d2:91:14:7c:dd:f5:11:
d7:bf:ea:31:17:fc:ae:7f:bc:a8:13:08:5b:3c:80:
3e:e9:dd:8b:cd:4d:22:a0:f2:83:0f:7a:c9:2b:39:
f1:ee:69:26:aa:9d:f0:e5:37:0a:3d:f6:97:b2:69:
c7:51:a7:bc:62:80:05:bc:5a:40:db:69:d9:5c:06:
59:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A0:1C:38:1D:BE:3B:75:74:D5:1F:6E:BF:1D:FE:CE:C0:86:57:33
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c2e800d-f1da-4d6d-ad22-006a0ccfac03.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.26.0.0/15
Signature Algorithm: sha256WithRSAEncryption
20:41:43:11:2e:9c:ae:fb:7f:80:64:eb:64:59:70:49:75:51:
cf:71:5b:9a:4b:1c:54:71:c8:3d:bb:51:8b:8f:c5:db:d5:10:
8e:0f:81:93:4c:36:e8:0c:cb:e6:48:ae:2a:b0:c0:14:52:2a:
be:14:1c:a0:0d:48:24:56:5d:ba:e7:46:24:65:b7:a2:a6:0e:
e7:76:97:d9:d1:e1:17:ad:38:b6:f0:f8:dc:65:01:c3:06:89:
88:ca:83:9a:2a:68:d6:1e:e8:e7:de:c1:35:21:14:23:91:54:
65:58:da:9e:c2:70:88:c7:66:dd:26:ba:66:17:96:bd:d2:80:
44:2a:03:ed:7c:12:67:b6:85:52:99:81:65:ad:a0:a6:74:c8:
3d:9d:ac:02:82:d8:9f:15:ac:7f:cf:48:a3:2d:26:ef:06:81:
f8:39:59:dd:54:6c:b6:45:61:73:97:62:24:ae:32:6a:18:38:
18:37:e9:78:f3:77:2b:4f:7e:5c:03:10:64:49:9c:c4:88:a9:
85:bb:03:c3:a3:92:d8:87:52:65:bb:74:92:6e:c5:22:a0:7b:
ea:a4:5a:4b:99:b6:7c:ae:43:3d:e5:ad:86:ef:89:25:24:f2:
12:5a:20:ec:ff:d6:91:72:69:9f:86:e5:2d:ed:a6:2e:92:64:
24:1b:0f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:05:52 2025 by rpki-client