Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797213e5-8628-4248-8ce3-0bfa8630b40b.roa
File: 797213e5-8628-4248-8ce3-0bfa8630b40b.roa (raw, json)
Hash identifier: j3T3XtrxaACtNwz4vAIIw0TUgv/PrcFGzLhxKNcGhPg=
Subject key identifier: C5:AE:89:7B:1B:59:B4:BA:DB:DC:26:4A:CD:19:45:E1:AE:18:9A:4C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 04A92C3581D9F8B8798203DC05918AE2D42718EF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797213e5-8628-4248-8ce3-0bfa8630b40b.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 54.0.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:a9:2c:35:81:d9:f8:b8:79:82:03:dc:05:91:8a:e2:d4:27:18:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:ad:44:49:2c:23:5e:5e:6d:44:6e:b8:68:
40:b8:83:26:01:6d:1e:8d:04:b6:cc:de:88:f1:cd:
97:b7:cf:af:7c:b9:6a:7e:ec:8c:1d:c1:fc:9a:47:
47:a8:cd:40:34:d1:76:d5:97:90:55:dd:59:89:59:
f0:80:f3:3b:dc:4d:2e:26:ad:74:41:00:77:e3:f7:
08:57:4e:f4:2f:9c:81:7d:d6:63:72:7f:43:df:76:
80:4b:c3:d5:d1:ba:63:ed:97:85:ac:86:af:37:ae:
36:ee:6b:15:7e:5c:97:96:12:89:5b:08:6f:df:e9:
c9:01:55:63:85:59:64:d6:c6:71:93:80:5a:0c:aa:
5d:8c:b3:17:54:48:07:6d:3a:d6:2d:5b:37:d3:eb:
58:a3:9a:d0:d0:1f:a5:27:aa:84:49:50:f5:9b:6c:
c1:22:9f:7d:8f:c4:38:b5:60:d4:31:17:7a:ae:18:
8a:ee:67:66:5a:2d:5f:b5:53:2d:bf:36:02:e1:2c:
f6:ae:08:ea:ce:5c:6c:58:2d:24:3e:3b:96:92:ea:
0f:7a:d2:3a:9a:61:bd:ff:5a:4f:cc:b1:22:f8:3d:
8b:68:2c:6d:bd:1c:0a:33:51:bf:4a:34:7b:a0:b3:
32:99:d4:b9:e7:f0:75:2f:36:1d:1c:9d:0c:a8:e2:
c7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AE:89:7B:1B:59:B4:BA:DB:DC:26:4A:CD:19:45:E1:AE:18:9A:4C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797213e5-8628-4248-8ce3-0bfa8630b40b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.0.0.0/16
Signature Algorithm: sha256WithRSAEncryption
85:10:64:80:7f:e8:07:94:88:2b:4c:ae:4a:8b:f9:fa:9a:8c:
10:2c:5f:11:3c:45:0d:0e:99:80:65:31:f9:ee:28:ea:90:8f:
c0:af:f2:96:89:b8:26:85:09:44:ca:b1:cb:39:c7:a5:95:db:
77:c7:68:3d:48:19:e1:82:29:04:a2:8c:3d:92:11:42:f7:52:
1a:53:5f:02:a0:b7:29:10:b1:48:1c:94:df:86:6d:f7:11:a0:
a9:7e:b2:f9:8d:d0:43:51:2f:be:70:57:cd:a1:b5:ec:ba:90:
15:fe:aa:c3:3b:bb:36:c9:4e:a1:c4:75:3e:2f:05:e7:6d:7e:
6e:9b:da:a9:52:f0:11:b8:16:c2:82:88:d8:8f:a7:de:18:7c:
43:95:3c:82:b3:14:eb:f4:20:49:38:12:51:63:5c:81:00:07:
d9:70:a6:36:17:05:f8:f5:4a:8d:64:f4:4e:cd:21:8e:a5:98:
1e:b2:db:ca:59:0a:ba:a2:35:da:78:07:26:b7:b2:75:b3:4c:
82:9d:0e:90:a3:92:68:74:16:a1:3a:93:dd:15:b0:2a:39:6f:
4a:8f:d9:8f:f6:f8:9b:68:06:1f:65:84:8e:89:1a:1e:cf:ed:
3e:0c:b1:16:d1:51:e4:a6:c4:bd:05:13:4b:2b:09:8b:12:18:
87:d9:ca:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 23:31:37 2025 by rpki-client