Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98921146-e18d-4a48-881e-125805ae23ae.roa
File: 98921146-e18d-4a48-881e-125805ae23ae.roa (raw, json)
Hash identifier: sgGMc5OWBLEzuHl5IsnTJK5mjU8cpNswsGpi5sWjizQ=
Subject key identifier: D7:70:48:E9:08:EE:17:E9:60:6B:42:3F:23:3D:45:64:64:02:25:87
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3829EBEBDAE2FBDE541B0C5F0C071182C033B711
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98921146-e18d-4a48-881e-125805ae23ae.roa
Signing time: Sat 28 Dec 2024 00:00:00 +0000
ROA not before: Sat 28 Dec 2024 00:00:00 +0000
ROA not after: Sat 01 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 141.242.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:29:eb:eb:da:e2:fb:de:54:1b:0c:5f:0c:07:11:82:c0:33:b7:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 28 00:00:00 2024 GMT
Not After : Feb 1 23:59:59 2025 GMT
Subject: serialNumber=8b793f81ef837c45ab924588e070ef487bd0b4cc3b10da31bbfc50edf6b2a1b3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fd:ac:30:04:bf:9a:b5:ce:25:46:31:4e:99:
07:f8:29:b6:81:3b:63:d8:4f:fb:fb:28:9f:95:fc:
0c:4b:fb:42:c1:65:8c:24:8b:ac:75:1c:3e:89:89:
9e:16:17:73:12:85:04:b3:3c:57:ba:f3:73:e0:d4:
7b:80:4f:7c:68:f0:74:f3:4d:a9:dc:a8:47:4b:28:
d4:d0:57:c4:f5:c4:7a:b4:e1:d3:8b:81:c2:c6:be:
0b:90:9b:e0:82:1a:5e:64:80:b7:85:58:43:fa:d7:
3d:2b:2a:04:35:cf:87:79:5d:63:eb:a5:bd:ae:3e:
cc:44:da:43:f7:64:48:4a:94:2c:31:0e:6d:11:20:
94:51:26:5c:af:48:1b:7e:d3:42:f6:e9:7b:ba:88:
ff:89:d9:8d:b0:9f:8b:8d:d9:7b:a4:f4:04:07:4b:
e4:2b:ef:8d:4b:00:56:58:fd:25:c8:46:3d:a5:82:
07:0c:80:56:fa:93:e1:e3:1e:65:61:4e:c8:33:a8:
a4:bb:11:72:91:1d:ba:bc:27:71:c2:75:d1:01:5a:
c6:2b:39:92:28:19:ac:ab:d5:f8:5f:47:b2:d4:3b:
da:dd:5d:17:a1:51:e3:13:a6:7e:4f:9a:66:c5:17:
ec:67:31:47:4a:c6:bf:c7:c4:15:65:18:81:40:62:
81:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:70:48:E9:08:EE:17:E9:60:6B:42:3F:23:3D:45:64:64:02:25:87
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98921146-e18d-4a48-881e-125805ae23ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.242.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6d:14:40:d1:44:ec:cb:e1:40:0f:b9:fb:90:40:58:c9:8c:b6:
33:1e:9f:85:f6:b9:a5:87:7d:d1:5e:5c:84:3a:71:ef:1e:9f:
6a:19:13:c5:ff:b7:1e:f6:33:9c:63:72:58:95:55:50:28:21:
cf:c7:22:9f:c7:91:b2:98:33:59:29:f3:c7:46:29:ad:b9:f5:
14:46:74:58:bf:e6:a9:bd:62:ae:d4:57:ba:43:f9:d2:ee:81:
c0:49:bd:17:21:fd:15:76:a6:73:0a:4d:b4:61:11:8f:41:52:
5e:b5:1d:18:dc:44:75:21:f1:31:ed:c8:b4:ce:2d:31:04:90:
02:90:24:d9:9e:a4:c1:53:c2:27:70:f7:21:3b:e6:eb:99:03:
ab:c8:d1:8c:ac:f4:2d:d6:67:8a:da:1e:4f:7e:d3:5b:84:d3:
39:b4:8b:5d:12:a2:b4:b4:f9:dd:bf:2a:6a:ea:82:05:a6:c4:
8a:06:ee:d7:d5:37:d4:2e:9a:be:7c:b6:95:ed:f4:8e:5f:6d:
d4:3c:e5:1d:61:24:a2:7b:a8:dc:5d:a4:e0:96:50:5b:48:84:
a7:b0:96:bb:47:9b:39:ff:f3:8d:ab:c4:cc:e2:b8:8e:39:ba:
b9:9d:77:a6:4f:71:ee:d3:64:9a:a1:45:a4:64:54:79:62:1c:
e1:1b:2d:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:17:54 2025 by rpki-client