Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccab712e-62cd-4e64-88df-27c433c6a27f.roa
File: ccab712e-62cd-4e64-88df-27c433c6a27f.roa (raw, json)
Hash identifier: 7j9ACWbH76JO4vhN4pGKLlWZqRpUGrmUtJoSYPAV3xc=
Subject key identifier: 32:18:67:F9:82:40:39:C5:25:37:85:1E:37:1D:C4:BF:C3:8B:0E:0C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 78CBDDBC204CAB555EB6AC86D072ADE9029984F0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccab712e-62cd-4e64-88df-27c433c6a27f.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 56.44.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:cb:dd:bc:20:4c:ab:55:5e:b6:ac:86:d0:72:ad:e9:02:99:84:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: serialNumber=dcd97581e6daaea50dd235836e29769148601c123dea9496324772e83079b5e2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6e:15:56:0b:5a:20:a3:10:52:0d:9d:f3:f5:
26:e1:3d:d2:64:e0:78:bd:cc:8c:b9:3e:3c:8f:82:
3e:b1:d8:67:30:22:bd:6a:2c:87:c7:c3:3c:6f:09:
b0:ee:c3:41:bf:f8:ff:9c:d7:a2:6a:23:28:fe:1b:
73:7b:c9:ed:51:3c:4e:0f:3f:2a:b7:4d:c6:4c:8a:
f3:c2:8b:b1:40:50:58:17:3a:fb:b3:91:65:96:b2:
48:3d:7a:ad:ad:f9:18:18:09:ee:c6:99:af:25:71:
0d:9e:c7:19:33:c4:8c:b6:9a:e8:ca:67:4d:7d:e0:
3b:f6:9e:1f:95:4e:e0:7f:44:01:fb:cf:57:66:1d:
89:f5:aa:33:9d:99:1b:b6:b2:f5:db:be:c5:48:26:
33:b8:d5:a9:3a:e8:49:4f:27:8d:59:29:d2:09:44:
19:b5:fb:38:08:55:f8:b1:d1:22:2d:d8:99:78:05:
84:93:2b:c6:31:ef:82:3c:2d:5a:17:f0:3d:d9:42:
bc:03:92:f0:1a:1e:d8:dc:6a:d2:86:0b:bb:57:37:
87:89:11:8a:0d:06:f2:cc:d3:c4:d4:93:a2:82:56:
5f:56:1c:02:b5:17:ff:3e:b2:79:fa:cf:e8:8c:e2:
ed:c4:65:5f:bb:cc:ce:57:e2:bd:c0:09:0b:9a:8b:
da:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:18:67:F9:82:40:39:C5:25:37:85:1E:37:1D:C4:BF:C3:8B:0E:0C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccab712e-62cd-4e64-88df-27c433c6a27f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.44.0.0/16
Signature Algorithm: sha256WithRSAEncryption
d2:40:d3:d0:40:95:00:38:b6:f1:c8:9f:ee:38:11:43:9e:e2:
2e:4d:72:fc:ba:c8:66:98:80:ac:fb:42:2a:ce:60:a9:9c:4a:
c6:96:4f:aa:ad:ab:48:9f:de:d0:ae:7e:5f:6a:f8:d9:a9:c5:
78:d9:74:e5:3b:0c:9a:ad:45:eb:89:41:24:dc:19:71:00:f3:
12:f7:d7:2b:42:39:75:e8:8c:db:4c:26:3d:da:4a:00:f9:34:
a2:19:09:23:02:d3:57:8e:96:21:58:e7:f6:d6:26:35:83:29:
55:89:fe:09:53:9c:96:35:e8:b3:84:f6:10:2e:d0:8b:09:0b:
da:a2:11:45:51:ce:13:a2:e9:66:1d:bd:40:8c:e7:ba:c6:25:
6a:c2:b6:ae:43:dc:22:16:71:66:f8:3e:6d:5c:40:21:26:28:
49:1c:c0:9b:0b:5e:63:39:0f:f4:8a:33:81:d5:e0:9f:3e:41:
bb:b6:04:9b:2d:a6:00:cb:ba:fc:a6:28:08:1c:4e:03:3a:f0:
3d:d9:32:c2:70:86:1b:65:ad:a4:4d:6d:bf:82:2c:80:4e:7c:
42:54:89:69:e3:08:c6:96:f5:1d:5f:2b:e3:16:d4:e3:31:2d:
48:01:0b:35:52:da:18:47:2c:48:13:fa:74:7e:f3:ac:11:82:
25:0d:13:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:54:33 2025 by rpki-client