Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b4c26b-8d86-4f8e-9ec9-27f245c6d18c.roa
File: c4b4c26b-8d86-4f8e-9ec9-27f245c6d18c.roa (raw, json)
Hash identifier: Gyj79iNOtRh9LE30uGbEZ+cZ01fGNtnzRmMH/ERSI4E=
Subject key identifier: 3E:A9:DF:0B:3C:D2:5B:A7:B6:5F:92:FC:FC:F6:3C:0D:33:43:BA:59
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: F22A8A4E3DE8E60DE8C390FACF2CF618074ECC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b4c26b-8d86-4f8e-9ec9-27f245c6d18c.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 130.176.192.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
f2:2a:8a:4e:3d:e8:e6:0d:e8:c3:90:fa:cf:2c:f6:18:07:4e:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:35:08:d5:60:2e:fe:a9:4d:00:20:b3:d9:cc:
bc:7a:49:9f:c5:6b:73:b1:9e:f4:fd:82:cc:7d:1a:
e5:96:d3:31:12:11:16:b1:08:8e:35:dd:a1:81:20:
01:cb:ba:97:b3:6d:7d:44:ec:a0:95:4a:96:df:90:
c2:fe:86:f2:98:3f:6d:e4:a9:cd:59:01:5b:f4:cc:
f5:eb:ce:7b:31:60:14:d5:61:10:b6:ac:3e:06:7b:
70:0f:38:fe:15:a3:49:68:fb:e2:4d:d0:d6:19:a0:
3f:a7:eb:75:a4:55:eb:e6:aa:f4:83:d7:08:80:a4:
dd:43:a7:7a:ce:8c:a3:d2:ce:e9:1a:ff:ef:24:e2:
04:c4:76:93:46:f6:cd:c0:b0:b6:54:02:5f:f3:a3:
50:40:f3:11:b2:6a:49:a0:4b:7e:a4:21:85:63:ec:
7d:8b:26:5c:ea:c8:85:7c:88:cd:22:dc:f6:ba:da:
a6:5a:a0:c8:df:70:1e:dd:fa:94:ca:b8:01:42:01:
5d:47:fe:53:c0:5f:ba:94:fc:09:b1:de:10:65:b9:
8e:a9:3a:9c:08:7e:ce:c0:71:a1:e9:7e:90:2c:e1:
3f:48:07:25:e3:05:ce:1c:0a:0a:17:67:e1:77:06:
8f:2d:9b:64:7a:6a:3f:8e:28:fa:d9:03:1e:3a:64:
a0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A9:DF:0B:3C:D2:5B:A7:B6:5F:92:FC:FC:F6:3C:0D:33:43:BA:59
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b4c26b-8d86-4f8e-9ec9-27f245c6d18c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.176.192.0/19
Signature Algorithm: sha256WithRSAEncryption
d6:b7:7f:f4:c5:8c:c6:0f:94:0a:5b:71:ce:6e:0c:d7:c3:af:
53:11:ed:44:79:0c:bb:7e:75:b2:30:fc:fe:4b:c2:a1:ff:50:
53:41:16:50:20:d3:79:eb:1d:d2:3c:11:ea:d9:a1:ab:08:6c:
8c:cb:c8:96:3e:69:7d:e5:43:95:06:85:de:3f:c5:d0:15:40:
d0:dd:af:ab:32:4d:94:25:ba:d8:dc:55:69:f3:60:49:31:34:
8e:c6:3f:f8:d1:e2:6c:56:a7:9d:6c:e0:24:a7:35:48:b9:8f:
8b:95:e5:83:fe:27:75:f1:4b:29:65:60:f8:d5:5a:90:4a:f1:
a9:80:d7:ed:44:c6:ef:2b:0e:f1:f8:e6:5b:af:12:4f:38:ed:
78:db:31:9f:86:6b:82:54:79:bc:72:16:75:45:dc:44:78:ee:
59:16:04:50:98:e2:54:62:49:18:97:09:11:fe:9a:61:05:82:
db:f8:4e:cc:af:f5:7e:7c:af:b2:12:4a:5b:47:ce:f5:14:d4:
c8:6a:bd:20:bb:c9:ea:90:cf:3f:eb:41:08:94:7d:ec:3a:07:
79:50:bd:36:87:0f:d4:f3:80:1a:8a:4e:87:36:67:42:40:3a:
bc:db:2d:a4:0d:fa:9c:bc:ae:53:5f:e6:a5:7d:c8:4d:ae:a2:
ad:87:4c:35
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUAPIqik496OYN6MOQ+s8s9hgHTswwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjI3MDAwMDAwWhcNMjUwMTMxMjM1OTU5
WjB6MUkwRwYDVQQFE0BiMjg2NTJiOTBmYzJmNTA2M2QxZWM5MjY2NzcwMTVjMTA3
YjJkOTZmODcwMTgxMjU5Y2FkOTc5MmM5YTZiNGYxMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCtNQjVYC7+qU0AILPZzLx6SZ/Fa3OxnvT9gsx9GuWW0zES
ERaxCI413aGBIAHLupezbX1E7KCVSpbfkML+hvKYP23kqc1ZAVv0zPXrznsxYBTV
YRC2rD4Ge3APOP4Vo0lo++JN0NYZoD+n63WkVevmqvSD1wiApN1Dp3rOjKPSzuka
/+8k4gTEdpNG9s3AsLZUAl/zo1BA8xGyakmgS36kIYVj7H2LJlzqyIV8iM0i3Pa6
2qZaoMjfcB7d+pTKuAFCAV1H/lPAX7qU/Amx3hBluY6pOpwIfs7AcaHpfpAs4T9I
ByXjBc4cCgoXZ+F3Bo8tm2R6aj+OKPrZAx46ZKBxAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUPqnfCzzSW6e2X5L8/PY8DTNDulkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2M0YjRjMjZiLThkODYtNGY4ZS05ZWM5LTI3ZjI0NWM2ZDE4Yy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAWCsMAwDQYJKoZIhvcNAQELBQADggEBANa3f/TFjMYPlApbcc5uDNfDr1MR
7UR5DLt+dbIw/P5LwqH/UFNBFlAg03nrHdI8EerZoasIbIzLyJY+aX3lQ5UGhd4/
xdAVQNDdr6syTZQlutjcVWnzYEkxNI7GP/jR4mxWp51s4CSnNUi5j4uV5YP+J3Xx
SyllYPjVWpBK8amA1+1Exu8rDvH45luvEk847XjbMZ+Ga4JUebxyFnVF3ER47lkW
BFCY4lRiSRiXCRH+mmEFgtv4Tsyv9X58r7ISSltHzvUU1MhqvSC7yeqQzz/rQQiU
few6B3lQvTaHD9TzgBqKToc2Z0JAOrzbLaQN+py8rlNf5qV9yE2uoq2HTDU=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:26 2025 by rpki-client