Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0fe1bd2-c0e0-465d-a03a-b8958470d734.roa
File: d0fe1bd2-c0e0-465d-a03a-b8958470d734.roa (raw, json)
Hash identifier: 6CrX2yYi+TcwJKPD/UEQPmKTpbJmGGl0L/YqFblV2qo=
Subject key identifier: AE:AB:A9:87:FF:5C:47:35:E0:01:FF:4E:B0:08:77:5D:15:63:15:6B
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 15C5FD2AC2C94355E818B618F6F8E2BB19872294
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0fe1bd2-c0e0-465d-a03a-b8958470d734.roa
Signing time: Tue 17 Dec 2024 00:00:00 +0000
ROA not before: Tue 17 Dec 2024 00:00:00 +0000
ROA not after: Tue 21 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff4:a400::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:c5:fd:2a:c2:c9:43:55:e8:18:b6:18:f6:f8:e2:bb:19:87:22:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 17 00:00:00 2024 GMT
Not After : Jan 21 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b4:8a:04:21:4e:dc:66:36:4f:b5:6f:56:15:
8c:c6:35:30:99:e8:55:20:c2:1e:7b:34:b4:9a:c3:
23:91:1e:0c:13:4c:c4:0a:55:2a:a6:c6:8d:61:6e:
d5:b2:15:10:45:f0:09:ba:58:ea:0c:67:14:cb:5e:
9d:cd:ed:9b:93:11:d3:53:f2:6e:1f:d3:d4:6b:7d:
44:19:9d:cd:96:0d:51:f0:74:f3:03:e2:62:49:be:
e7:34:d9:78:41:ed:99:35:c1:26:87:e1:d7:e8:52:
a6:b6:dd:4c:a5:3d:4c:f9:60:1c:4b:81:a3:1f:48:
9b:a2:18:1e:0c:83:03:42:2c:c5:4d:3c:df:54:66:
b6:1b:0f:aa:47:b0:e2:64:cd:4f:23:6e:52:46:76:
6c:11:1a:71:0a:8d:eb:57:be:cf:11:ce:6f:c2:74:
f7:2e:ea:02:42:23:b6:b8:db:c4:c2:9b:bd:26:c8:
aa:df:63:7b:f0:6f:98:50:ec:57:35:7a:3b:3e:07:
da:e4:2c:f1:5f:51:80:a5:eb:fa:b6:de:44:2b:4b:
6c:f8:63:9f:b4:b1:f5:68:11:21:11:2f:5d:13:71:
97:9d:4b:fa:ab:6f:d7:51:8d:47:5a:87:fa:91:07:
52:7b:60:6b:92:b3:56:1a:99:5c:bc:e2:e8:4b:ab:
4e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:AB:A9:87:FF:5C:47:35:E0:01:FF:4E:B0:08:77:5D:15:63:15:6B
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0fe1bd2-c0e0-465d-a03a-b8958470d734.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff4:a400::/40
Signature Algorithm: sha256WithRSAEncryption
29:ed:d3:e3:c9:3b:6b:b7:20:0d:10:8e:95:80:7e:b8:70:50:
30:2d:f1:12:e0:fc:52:7f:bd:a9:f6:1c:d7:59:35:83:a1:56:
d0:60:5b:50:6b:2a:ba:cd:d5:67:61:76:35:16:ac:93:78:60:
27:54:8b:20:20:a1:5d:06:94:a2:7d:4c:98:d5:62:6f:e9:9d:
b8:78:58:31:fb:cb:8f:bc:65:7f:4e:ef:8f:cd:c5:87:86:73:
b5:fb:b2:bd:27:61:d1:59:ee:96:96:d6:ee:f1:7a:5c:42:87:
1a:72:d5:7a:d2:14:ca:f9:f4:bc:95:5e:7f:a0:75:92:fb:cb:
49:7a:fe:4b:ad:ca:8c:65:ea:3c:ca:2a:17:34:86:2c:f1:c5:
fb:62:91:85:fb:e9:f6:01:69:da:7d:af:54:62:89:7c:e1:8a:
be:ea:70:86:00:f0:0d:0d:9a:d3:a2:48:9c:35:c5:d5:9e:a7:
e1:6a:16:9e:4e:c5:6d:76:00:16:42:1a:6c:04:bf:c4:c1:64:
d2:dc:df:4e:85:3b:b9:fc:a3:38:4c:7e:0c:ca:45:f5:ff:2e:
9b:04:ff:02:7e:23:25:39:36:e2:7d:b0:84:1e:63:50:fa:1d:
eb:ad:e2:c8:bd:8f:ff:7b:85:64:a0:d1:67:08:12:c6:b2:84:
b8:04:74:e5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:20:10 2025 by rpki-client