Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a6afaf1-5d31-44a8-8f53-776be73e229a.roa
File: 7a6afaf1-5d31-44a8-8f53-776be73e229a.roa (raw, json)
Hash identifier: Kyi/jODWxFPWJ2xgIFUpdisc54y1zDKyq+v9vIpAqV8=
Subject key identifier: B1:57:91:25:C5:0B:BE:85:34:E1:90:13:3B:E1:0A:D0:95:CD:16:CC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 25CCE3A2AFFBA0FEE8561516DB4D372FF24334DB
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a6afaf1-5d31-44a8-8f53-776be73e229a.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 16.75.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:cc:e3:a2:af:fb:a0:fe:e8:56:15:16:db:4d:37:2f:f2:43:34:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: serialNumber=f30ebf4847defb76a61baa4caf9b1bb76bfe18de7992c065ec1929dd1db8fb65, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:63:d1:4e:5e:61:06:b8:e5:2c:ad:ae:c7:09:
17:a4:1a:fa:ef:31:11:8b:19:37:8e:e8:c3:84:94:
7e:d3:b3:f1:92:3d:25:a2:93:66:c6:1d:f4:2b:c9:
1a:41:ee:89:af:fe:6a:ae:fd:b3:f4:49:ab:0f:30:
74:c0:b2:f3:9d:ca:ff:79:47:63:34:e5:69:65:73:
0a:2b:a3:89:8f:b5:55:7b:d2:d9:da:fa:b3:46:0f:
95:49:4e:00:f0:64:87:d8:72:36:dd:20:b6:db:b2:
44:53:41:e0:52:aa:ab:e2:69:3f:d9:03:cb:81:fb:
78:6d:e9:71:0d:8a:3c:2c:f8:cc:f5:37:23:b7:67:
cf:9a:1f:27:11:ac:55:7c:13:c8:ff:73:a4:1a:83:
c3:36:58:ad:ef:3b:39:84:00:63:6a:a3:f5:ce:c3:
a1:1f:32:45:eb:42:49:d1:47:e2:84:ed:98:80:62:
2f:11:eb:77:d3:4b:67:9c:42:d9:bc:dc:f0:33:ef:
20:88:27:eb:8b:b2:4a:96:b1:3b:54:06:bb:24:e6:
e8:34:1a:58:fc:0e:4f:13:38:ff:0d:03:38:c2:9a:
e7:6c:4c:11:d2:90:f8:94:bc:d1:22:f4:27:bf:34:
03:db:e0:e0:58:91:3c:75:41:d7:2c:d8:9d:2c:c1:
90:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:57:91:25:C5:0B:BE:85:34:E1:90:13:3B:E1:0A:D0:95:CD:16:CC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a6afaf1-5d31-44a8-8f53-776be73e229a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.75.0.0/16
Signature Algorithm: sha256WithRSAEncryption
79:35:c0:4f:15:12:87:02:d0:de:79:4a:71:00:0b:73:f5:46:
2c:e2:54:8e:ee:77:83:fe:f9:68:1a:e4:90:5c:64:cf:df:b0:
6e:e9:8e:1f:08:02:9e:13:1f:d8:1c:48:4b:f4:be:ef:3e:b1:
01:8d:cb:b8:5e:26:04:28:fc:0e:b8:11:6a:25:5f:81:9b:a3:
18:a7:b2:ab:61:29:0a:aa:22:48:30:d1:83:6c:cc:4c:ae:5e:
67:df:73:21:94:cd:84:a8:17:bd:a1:da:37:21:19:8f:8f:75:
47:50:d8:e6:09:66:45:22:e5:f1:5a:91:05:96:b2:13:59:b8:
e4:95:23:68:51:d4:0d:86:9e:3c:7a:23:30:0c:8a:92:e2:80:
cf:20:12:af:14:ea:f9:76:e4:b3:2b:0c:3b:6e:6f:f3:1f:b7:
77:74:46:59:67:c5:55:33:8f:34:cc:9c:7c:88:2f:5d:2f:e4:
b6:3d:ee:bb:8c:d3:76:29:a7:fa:9f:39:61:4c:13:49:fb:db:
71:44:e4:bb:dd:a6:b6:92:55:ff:a5:91:b2:a5:2f:3b:69:65:
80:e4:a2:cd:4c:0b:ed:4a:33:18:a7:8d:8b:63:5a:2c:47:fb:
15:5d:cb:5a:e7:6d:b1:88:c4:3b:44:40:7e:1c:c6:5a:da:16:
79:d4:c8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:06:00 2025 by rpki-client