Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa
File: 7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa (raw, json)
Hash identifier: R2yD2KKs6j51Kg4GEGfKliun6KKO7pOQeg88V+4aEvM=
Subject key identifier: 36:0D:0A:C6:1E:45:0D:33:63:78:95:EC:FA:BC:7E:91:92:43:86:8E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1A32505E60C817A4E07A8110FF1BCB3F9183084D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa
Signing time: Tue 14 Jan 2025 00:00:00 +0000
ROA not before: Tue 14 Jan 2025 00:00:00 +0000
ROA not after: Tue 18 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 16.187.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:32:50:5e:60:c8:17:a4:e0:7a:81:10:ff:1b:cb:3f:91:83:08:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 14 00:00:00 2025 GMT
Not After : Feb 18 23:59:59 2025 GMT
Subject: serialNumber=9a536296f04723742adbd2918ff351a2cce6a6261f5a6419e594f6f9cf78519e, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:02:00:d5:44:69:65:16:23:fd:5d:4d:2f:0a:
2d:12:45:f5:37:f7:ab:1d:84:87:50:5b:93:2d:4e:
0f:a3:d8:b4:89:a7:0b:6f:0a:f2:93:19:40:2a:fd:
94:73:23:0e:9e:35:02:96:c9:6f:cb:3d:f2:b0:56:
0f:7a:d3:f0:45:77:32:ea:d5:1a:b6:08:73:9a:f9:
00:d6:5f:59:5e:84:8e:db:91:95:e3:b3:f0:21:9d:
14:c9:f0:fd:89:2d:1b:6e:cf:a7:3a:f1:a7:ea:f3:
2c:22:c8:27:fd:d1:b0:ac:0f:e5:6a:e2:d3:92:cc:
2d:34:5e:74:30:d4:72:6f:43:f7:6e:6a:85:26:00:
b7:fe:ce:86:37:c5:8b:5e:ca:a2:99:f9:0c:02:aa:
3d:2f:01:69:2a:fd:70:00:9e:e8:7a:06:81:83:99:
00:f8:9f:b8:c8:2a:ca:aa:5d:28:15:5c:34:67:31:
aa:7f:d3:0b:65:ac:1a:6d:ab:63:b0:07:a5:c2:27:
ff:a3:82:9d:0f:27:97:ec:26:42:29:e7:d8:8e:f3:
c9:77:62:38:d1:0a:8f:ab:0a:ee:c8:b6:64:3b:dd:
0c:f2:6c:fc:0d:8c:9c:2f:b2:a9:b8:2d:b3:02:7b:
26:76:5a:b0:14:10:33:af:41:e3:1f:e9:90:f3:6c:
66:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0D:0A:C6:1E:45:0D:33:63:78:95:EC:FA:BC:7E:91:92:43:86:8E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a717dc1-351f-48ad-b1d5-4ea4e5f0e0b3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.187.0.0/16
Signature Algorithm: sha256WithRSAEncryption
30:57:79:73:d2:b2:3b:0d:21:a4:42:bb:c7:a6:09:12:5e:64:
67:d1:fe:95:94:2f:95:2e:e1:78:fb:fd:e4:65:82:3c:1d:bf:
f9:33:b4:68:c5:0f:c0:e2:e6:7a:9a:60:56:da:33:98:26:05:
61:f7:31:af:0d:11:18:b5:2a:56:76:d8:48:be:91:5d:57:54:
c2:5c:db:56:9f:3c:02:38:05:59:f5:ff:15:9e:db:41:8e:df:
45:e2:50:ce:82:c0:6a:52:ad:6a:88:c8:10:58:36:c0:9f:15:
60:64:8e:66:95:a8:d3:b9:a2:12:9d:3b:96:e5:64:9a:f2:3a:
85:58:96:82:7e:ed:07:c1:1e:96:d5:0f:8c:08:c1:21:9f:0a:
f6:f9:c4:33:c8:1d:e1:40:11:2c:27:fc:e1:14:9e:7f:86:24:
91:a2:7d:24:9f:ca:9b:10:3c:96:03:e6:7c:f7:3d:a1:49:9d:
4f:bc:c5:45:fd:6d:a8:dd:37:96:87:3c:35:ec:38:1c:d5:c9:
73:26:34:4b:33:a0:d9:62:53:6a:16:70:e5:c1:0d:13:72:14:
bb:6c:f4:18:f8:34:88:0e:62:90:2b:7b:df:68:36:d8:a8:d4:
00:56:43:5c:e3:14:56:0e:2c:3d:a0:f5:7f:9a:dd:8e:18:7f:
7b:d3:38:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:00:36 2025 by rpki-client