Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b2a143a-b610-47d7-9e1e-06b87afef19a.roa
File: 7b2a143a-b610-47d7-9e1e-06b87afef19a.roa (raw, json)
Hash identifier: Jp0PjDhnaTU3ln47gnCnpY+/m4R4SN2R9G3MSNU9Gs8=
Subject key identifier: 1E:F0:FF:2D:68:BE:43:B4:73:D0:E8:AB:A6:8B:8F:B9:38:3D:94:32
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 616E7574AB75D3CE2438DCFBBFB86ACCC54ACF44
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b2a143a-b610-47d7-9e1e-06b87afef19a.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1fb8:8000::/39 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:6e:75:74:ab:75:d3:ce:24:38:dc:fb:bf:b8:6a:cc:c5:4a:cf:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:3b:76:d1:cd:ee:25:61:10:53:df:3e:fa:54:
20:72:28:a1:65:e1:0b:a9:aa:5a:92:bf:d4:0d:ca:
0d:22:4b:7d:58:90:ba:37:e5:fb:cd:16:74:bc:68:
89:1c:dd:67:e3:d2:18:df:b9:32:07:a9:55:eb:d1:
74:2f:a4:e3:17:a0:ff:1e:f1:4c:53:7f:d6:49:6a:
76:51:13:66:50:8a:c6:69:71:df:d3:b1:fa:14:f6:
fc:17:2b:b4:f6:6a:bc:a1:81:11:8c:2c:b9:ff:a6:
42:d9:0f:c9:6e:45:8f:9a:89:14:04:1f:46:0f:59:
5e:6f:75:07:15:b0:28:49:84:1d:74:cd:13:02:a8:
34:d0:d1:4b:7b:88:0c:47:e3:e2:4c:c2:ad:7b:fb:
ef:b2:64:1d:38:ac:d2:cf:3a:36:85:25:e2:7d:6c:
d3:62:bf:3f:49:03:ff:21:be:dc:4c:c6:19:8d:af:
75:d4:5e:73:86:ea:92:bc:e5:63:33:db:c6:56:78:
74:8e:c9:19:4f:68:da:5c:2c:cc:73:92:82:c4:e8:
aa:c0:92:e4:45:b6:f8:d3:1c:35:2e:29:05:e0:ce:
c8:5a:0f:c2:54:c3:f2:cf:d2:90:5f:de:95:dd:3c:
09:21:6e:ce:ff:2e:ae:40:74:60:1b:43:ac:31:de:
13:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F0:FF:2D:68:BE:43:B4:73:D0:E8:AB:A6:8B:8F:B9:38:3D:94:32
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b2a143a-b610-47d7-9e1e-06b87afef19a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1fb8:8000::/39
Signature Algorithm: sha256WithRSAEncryption
70:10:d5:c8:22:c0:c6:89:35:fb:19:83:0e:31:f4:89:a5:18:
37:47:0d:ab:08:a9:8a:68:8a:55:b9:0a:a6:0b:ca:f7:fa:30:
8a:88:b1:fa:e5:ae:76:b4:b9:c4:ee:ef:2e:b7:ea:41:f3:03:
02:8b:01:12:0b:9b:d1:4f:d5:c7:d6:e4:5b:f5:29:e9:b6:6a:
93:0a:b9:66:28:85:e1:6c:29:83:08:2f:cd:95:5c:1e:39:ef:
3a:cc:3f:63:8b:60:bd:43:8c:ae:bf:55:72:9a:f5:fb:05:77:
c8:37:11:c1:04:ff:c5:4f:65:72:17:22:53:02:f2:9d:e2:34:
26:d6:dd:5b:19:2f:ca:0f:24:38:57:52:13:4f:2c:bc:70:eb:
be:0d:c5:9e:fc:44:fb:a3:75:bb:f8:09:0c:99:cd:de:1a:c9:
8d:8c:38:70:8a:02:f3:a7:96:25:48:93:d1:e8:e9:03:4f:7d:
cf:30:e9:fd:a2:19:fc:af:4b:ae:46:53:cc:1f:26:dd:44:a9:
63:d2:09:65:47:9d:ee:a2:ee:58:47:91:e5:f5:70:a4:b2:d3:
17:16:e2:0a:84:66:70:6b:b1:61:94:61:78:2a:82:99:24:89:
40:7f:f1:d8:5e:3f:95:aa:c9:85:d9:03:d2:7f:b6:0a:99:b5:
35:07:63:a8
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUYW51dKt1084kONz7v7hqzMVKz0QwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTAzMDAwMDAwWhcNMjUwMjA3MjM1OTU5
WjB6MUkwRwYDVQQFE0A3ZjU1NjhhMzk0YTQ2OTlmODA1ZjQ3MGI1MzBlZmE1MmY0
OTM1YWUxODBmZDg5ODMzMWQ0OTkwZWQwZjIzNzljMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCUO3bRze4lYRBT3z76VCByKKFl4QupqlqSv9QNyg0iS31Y
kLo35fvNFnS8aIkc3Wfj0hjfuTIHqVXr0XQvpOMXoP8e8UxTf9ZJanZRE2ZQisZp
cd/TsfoU9vwXK7T2aryhgRGMLLn/pkLZD8luRY+aiRQEH0YPWV5vdQcVsChJhB10
zRMCqDTQ0Ut7iAxH4+JMwq17+++yZB04rNLPOjaFJeJ9bNNivz9JA/8hvtxMxhmN
r3XUXnOG6pK85WMz28ZWeHSOyRlPaNpcLMxzkoLE6KrAkuRFtvjTHDUuKQXgzsha
D8JUw/LP0pBf3pXdPAkhbs7/Lq5AdGAbQ6wx3hPjAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUHvD/LWi+Q7Rz0OirpouPuTg9lDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzdiMmExNDNhLWI2MTAtNDdkNy05ZTFlLTA2Yjg3YWZlZjE5YS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgEmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAcBDVyCLAxok1+xmDDjH0iaUY
N0cNqwipimiKVbkKpgvK9/owioix+uWudrS5xO7vLrfqQfMDAosBEgub0U/Vx9bk
W/Up6bZqkwq5ZiiF4WwpgwgvzZVcHjnvOsw/Y4tgvUOMrr9Vcpr1+wV3yDcRwQT/
xU9lchciUwLyneI0JtbdWxkvyg8kOFdSE08svHDrvg3FnvxE+6N1u/gJDJnN3hrJ
jYw4cIoC86eWJUiT0ejpA099zzDp/aIZ/K9LrkZTzB8m3USpY9IJZUed7qLuWEeR
5fVwpLLTFxbiCoRmcGuxYZRheCqCmSSJQH/x2F4/larJhdkD0n+2Cpm1NQdjqA==
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:49:53 2025 by rpki-client