Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bde9bde1-57e1-4fd1-9591-4d051eb4ce38.roa
File: bde9bde1-57e1-4fd1-9591-4d051eb4ce38.roa (raw, json)
Hash identifier: H56Tnh2Ved4pro7Uge1hormnh+4tALtk1dNog5qxo8s=
Subject key identifier: E9:BD:93:35:E0:33:7E:AD:A1:BC:E1:AB:C2:08:2C:9E:41:73:07:82
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 18FCE3254819B7921AA3FAEE6A4939A57C332BB6
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bde9bde1-57e1-4fd1-9591-4d051eb4ce38.roa
Signing time: Sat 04 Jan 2025 00:00:00 +0000
ROA not before: Sat 04 Jan 2025 00:00:00 +0000
ROA not after: Sat 08 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 16.66.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:fc:e3:25:48:19:b7:92:1a:a3:fa:ee:6a:49:39:a5:7c:33:2b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 4 00:00:00 2025 GMT
Not After : Feb 8 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:99:90:e3:44:23:fc:e8:2a:f3:59:ff:94:10:
5a:3e:31:0b:cf:9c:42:6a:cc:47:31:1f:ae:7b:69:
72:ee:23:11:1f:d2:d7:7b:4f:f2:52:7b:19:c7:17:
ed:6f:7b:45:ad:e5:65:25:d8:97:c8:ea:55:6e:0b:
52:38:93:18:ed:c1:8d:81:b4:26:c9:71:2e:0a:aa:
ad:58:fd:ba:2f:b8:00:37:31:f6:3a:58:06:0e:3b:
ac:ac:53:68:af:b5:7b:e0:1a:33:df:3b:63:2b:2a:
3b:02:b0:8a:42:76:cd:48:31:a5:75:3b:f5:7c:cc:
22:e6:55:03:6b:40:58:61:13:d7:94:09:cd:94:d8:
b9:ac:cb:4c:17:54:02:ab:73:ff:09:d1:46:0e:bc:
b7:16:e9:ab:e5:63:37:b1:a4:91:41:f4:0f:39:74:
c6:aa:11:d3:8f:9d:be:ad:ad:95:04:86:a5:2c:7f:
39:80:7a:e9:0e:f6:e0:32:bd:27:53:b5:73:79:11:
a7:b5:06:1e:c8:dc:1d:34:07:26:ad:84:53:2f:d5:
bf:57:62:67:d0:89:0c:73:03:98:0e:f1:40:d5:61:
ff:a4:b2:fd:5e:ea:f8:36:43:39:cb:4d:b1:ab:41:
f9:c5:06:05:92:37:a2:80:4f:5b:d6:af:13:99:5b:
72:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:BD:93:35:E0:33:7E:AD:A1:BC:E1:AB:C2:08:2C:9E:41:73:07:82
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bde9bde1-57e1-4fd1-9591-4d051eb4ce38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.66.0.0/16
Signature Algorithm: sha256WithRSAEncryption
93:04:3c:47:43:b7:8a:1d:fc:d2:14:ea:96:21:09:97:f8:c4:
dd:c2:12:9f:4e:a4:09:5f:17:0e:0c:5c:a2:55:22:c2:df:0a:
32:02:43:15:ed:f5:10:b7:06:e6:6d:1a:5b:0f:47:74:fd:c8:
a6:6a:9f:b2:87:b0:08:0a:00:b8:0a:7e:cd:64:88:85:94:8d:
41:95:3d:de:69:23:e9:c1:87:42:fb:1d:55:ce:b8:e2:26:e6:
ca:38:d1:c9:ce:e3:a7:78:46:23:71:ef:3d:d4:68:1f:e0:37:
38:ee:cb:13:53:ef:84:b3:25:37:b1:ff:b3:50:7b:ba:f3:dd:
47:81:4b:dd:30:2a:65:e6:ca:7f:87:f6:49:32:18:98:22:ad:
55:f7:60:fd:77:dc:54:13:87:da:41:6c:79:3e:81:5c:cd:81:
9a:da:8e:d5:89:77:95:26:45:52:6f:a3:cd:ae:6f:18:e9:f9:
f6:04:32:cc:48:d4:3c:07:72:65:50:8f:b5:d8:10:8b:ba:44:
2a:1b:33:7b:17:81:bf:6a:9b:86:93:88:a3:da:d3:d4:df:2e:
f6:e1:4e:90:69:15:f6:b0:ff:62:ff:7b:7c:5e:02:4f:ae:2c:
b5:8d:1a:52:36:81:59:bd:37:e7:fb:60:24:47:6e:34:1e:1a:
a2:37:0b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:12:02 2025 by rpki-client