Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa
File: 7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa (raw, json)
Hash identifier: IGKX/7AEaezwDakrly23fb+iywadK6s+xlSdHJRYN0Y=
Subject key identifier: E2:A2:C7:51:2F:97:A4:A3:20:2E:D8:39:0A:EB:CB:C1:8F:D3:BB:AD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 36D0EE6579ACCF29F77C6C87B127B4F5A6F31E60
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 66.157.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:d0:ee:65:79:ac:cf:29:f7:7c:6c:87:b1:27:b4:f5:a6:f3:1e:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: serialNumber=0560adf7b45aa3a642e5757ad251c98d7857ca2bf88fbfc3f336143a0802c1cd, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ef:4e:ec:0f:f3:dd:f0:28:42:c2:c0:57:b4:
da:85:5a:30:11:35:58:9d:ce:8d:fe:cb:ab:b3:08:
53:a7:24:81:a7:00:6c:46:db:f9:58:c4:de:a6:11:
48:9b:34:4f:87:fd:ac:83:53:58:53:ec:f3:42:65:
35:cc:e2:50:e4:cf:02:87:aa:c6:d0:28:7f:d8:7e:
6b:90:14:77:06:3c:f6:fb:04:40:3f:77:2f:39:bb:
df:5f:b9:03:0f:d2:9f:54:cc:3b:73:48:89:40:da:
f3:77:c1:52:01:b8:06:0f:2d:64:43:c7:11:41:53:
e2:8e:eb:92:77:fe:d7:fe:e9:70:fb:5b:c6:5c:f3:
c3:f2:21:11:c4:3c:b7:8f:8e:fd:2c:fb:b6:5d:79:
bc:4b:0f:b9:3c:b5:d1:49:3d:48:60:b8:08:cb:71:
be:c4:15:6e:79:0b:73:bb:9d:34:24:bb:cb:10:50:
17:b5:6b:9e:db:f2:c2:34:71:6e:8f:01:03:65:c9:
e3:6e:e7:41:5f:1f:35:1b:06:85:4d:1b:5f:45:08:
42:65:df:8c:16:90:4a:0c:a6:35:6e:ca:d3:ea:a1:
14:5c:5b:b6:a3:e9:af:4e:a4:6d:de:14:25:8c:66:
6f:2d:d9:c3:8d:d5:1a:1f:67:8b:3c:1f:3d:d0:f4:
d5:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A2:C7:51:2F:97:A4:A3:20:2E:D8:39:0A:EB:CB:C1:8F:D3:BB:AD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7be82cf8-62dd-44fd-8f2a-7e5a7be6a94f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.157.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:08:7a:ce:de:ad:68:21:52:55:00:d6:30:df:e2:d9:5e:5f:
91:2f:4f:c9:17:56:14:2b:51:f4:69:1c:d5:32:8a:41:12:d8:
97:a0:ef:c6:85:7b:ad:b5:28:79:ab:ff:c8:37:a0:28:52:a8:
5d:f4:5e:8c:47:28:f3:95:cc:6e:49:8e:ad:2f:58:61:23:3f:
ae:b8:a4:88:73:3c:03:c7:f7:56:95:a8:22:f1:a8:1d:fd:d9:
6e:78:14:9b:e6:8d:63:41:e5:d9:2f:cb:5f:a0:45:78:5b:a5:
96:7d:12:1c:7a:53:7f:8b:e4:cf:b4:38:6c:52:de:ef:7c:ce:
db:1d:8d:73:5e:f5:1a:df:64:c5:37:ab:56:7b:ab:fd:88:da:
54:34:01:43:e3:03:97:00:6b:60:64:6d:54:a7:93:e0:d7:40:
88:0b:0d:13:25:15:d6:bb:1a:cf:f3:3d:1e:20:83:7e:95:03:
c4:9f:95:5f:56:4e:d0:71:e0:89:a6:71:67:bd:f9:7b:30:14:
0c:c4:ff:99:f1:30:00:47:54:cf:7b:27:3a:bf:9a:e0:f8:07:
6f:ce:4f:b7:27:00:f5:ab:38:f7:9f:72:ec:a2:c3:2a:e4:12:
56:53:be:86:35:68:0a:67:56:56:ba:57:c3:19:56:f4:c9:19:
11:45:e1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:02:09 2025 by rpki-client