Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1b99b09-0ba6-4ef3-890e-ee2c04cf9a51.roa
File: d1b99b09-0ba6-4ef3-890e-ee2c04cf9a51.roa (raw, json)
Hash identifier: +f9fLBAoiKMJ4O/8CtNDT9jRnKFiGOrGld3+r3ktKVg=
Subject key identifier: A1:52:F6:05:F6:F5:9D:47:56:0E:C4:5E:37:D6:C4:44:74:66:2D:9A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1306484998E5CE6DDFAE1BCD20BD85708F4B9826
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1b99b09-0ba6-4ef3-890e-ee2c04cf9a51.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 142.4.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:06:48:49:98:e5:ce:6d:df:ae:1b:cd:20:bd:85:70:8f:4b:98:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: serialNumber=203fce44fda3a8593e13831d52586658d75b87787d00ec8597f387415baf3909, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:19:de:ff:06:63:36:2e:16:83:20:37:ab:1f:
38:cc:e5:1e:e8:a2:8a:e3:e0:58:8d:40:cf:9d:a5:
fc:95:7c:a9:31:08:ad:9c:3e:41:a5:ef:1b:8f:fe:
03:a3:fe:af:ff:71:7c:69:c2:82:b2:be:2c:a0:2f:
16:d4:e5:6c:6f:44:81:4a:82:f1:c0:80:f1:a1:bc:
8a:bc:45:00:e9:b3:ed:9f:0d:d5:cc:cf:f8:d1:94:
53:bb:74:47:1c:0f:79:bb:3c:ac:52:26:44:25:a5:
0a:8c:4f:83:64:71:be:31:57:fa:53:2f:c9:38:13:
86:54:e5:dd:64:44:ca:8c:d0:5d:4a:31:10:8e:9f:
82:1f:cd:6f:a8:6c:09:b9:e5:c1:59:3d:32:44:24:
b5:2b:2d:01:45:1e:28:f9:a8:4d:89:01:1c:77:54:
29:44:a4:f6:f9:0b:22:a2:22:f5:61:ad:12:cd:bf:
27:10:74:72:e3:5b:24:2d:9b:53:37:b2:01:9e:89:
be:41:fd:8d:03:36:60:f4:a8:4c:99:0a:b4:9f:83:
18:dc:81:2b:93:bb:df:a0:70:c3:6e:3f:31:4d:43:
2b:af:67:02:0f:ed:e5:a6:c4:23:cd:be:cd:07:8e:
05:6c:9b:22:8b:a3:81:04:9e:bb:35:ca:3a:4a:20:
9f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:52:F6:05:F6:F5:9D:47:56:0E:C4:5E:37:D6:C4:44:74:66:2D:9A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1b99b09-0ba6-4ef3-890e-ee2c04cf9a51.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
142.4.165.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b0:6b:8e:4b:29:e6:97:07:01:77:c7:7e:e6:0c:c0:8c:24:
c5:2b:d2:9d:ab:28:5d:8b:20:93:a3:dc:67:cc:f6:7d:23:95:
2e:5e:ab:0e:01:fd:d6:f7:d0:7d:9a:53:21:27:98:b9:44:c3:
2c:63:83:10:7a:af:9c:f8:f0:eb:ac:3c:2f:8d:19:4d:09:a5:
b8:8f:b8:f0:ba:fa:a9:15:80:05:02:85:b3:f9:e5:bc:1c:40:
f6:a6:ed:f9:ed:24:94:bd:0d:69:3a:ba:9c:11:04:6f:eb:2a:
e2:ff:ad:8b:f5:e8:5f:3d:e7:de:8b:71:4e:7a:26:4f:ac:72:
d6:19:e5:00:e4:d1:21:4d:b0:1a:b9:8b:38:55:c7:30:5e:98:
08:38:08:6c:ae:20:d5:68:3a:c6:a2:78:94:e2:0a:eb:c8:c3:
22:ce:4b:c1:f8:9c:7e:25:1b:71:bd:76:8c:3f:6a:fe:23:71:
a9:db:4f:5f:30:2a:e7:ed:12:10:62:f6:3c:24:da:c7:d3:8a:
96:fa:02:32:e0:ca:bd:a7:e2:c9:a2:8e:55:48:08:71:0d:a1:
92:23:2e:69:c6:df:a4:ee:59:b7:4a:16:9b:43:83:5d:2b:e6:
f3:02:dc:b1:2b:20:94:26:d1:df:54:bd:df:b3:c3:1a:94:6a:
02:eb:5f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:39:42 2025 by rpki-client