Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa
File: daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa (raw, json)
Hash identifier: SypYhltnZtOL6qWFHBFz0MMEhklTA2VNe4qZi3yguWw=
Subject key identifier: 52:A3:62:52:22:E2:C9:85:34:41:C2:89:1D:FF:7F:5D:C1:BA:2E:D6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7E5FDB2CCE2607896AFC9CC22900B6234CD6B4CA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa
Signing time: Mon 23 Dec 2024 00:00:00 +0000
ROA not before: Mon 23 Dec 2024 00:00:00 +0000
ROA not after: Mon 27 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.150.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:5f:db:2c:ce:26:07:89:6a:fc:9c:c2:29:00:b6:23:4c:d6:b4:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 23 00:00:00 2024 GMT
Not After : Jan 27 23:59:59 2025 GMT
Subject: serialNumber=2413294805a192dcb2ba5bdd9bb3b5bced69708a2742da6c19f8df961e86cb99, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cc:d5:68:bd:e1:2f:fb:cf:17:2e:ef:5c:11:
60:da:eb:ea:72:dc:55:4e:75:bf:d4:bd:da:80:8a:
c3:1d:20:6a:f1:de:0a:8d:66:dd:62:d4:32:3a:bd:
9c:4a:7e:a9:27:24:8f:67:5f:07:ce:0a:8a:98:48:
6d:40:c0:ad:8f:06:35:c4:b6:a0:d3:ab:5a:d1:00:
3f:75:7e:d4:26:67:d3:60:8e:39:ec:dc:8e:be:f7:
08:88:7c:97:69:16:a7:63:fe:16:8c:36:26:ad:9a:
7b:6d:ee:35:02:b9:82:48:ea:73:18:1a:dd:cb:d4:
2d:da:5a:46:af:d5:ec:18:11:22:9a:e4:7e:45:de:
40:6b:a5:16:22:98:bd:7a:2c:ea:3a:ad:71:17:f0:
75:8e:ba:1b:f6:c6:17:c9:dd:7b:d0:bd:f7:6c:c4:
f2:12:09:70:f8:20:9e:dd:1a:88:26:d0:bd:56:96:
00:16:a5:4d:23:7d:cd:90:7d:7e:4e:d1:c7:8d:90:
b9:78:7c:27:ff:87:05:ac:21:64:2b:33:02:34:97:
21:5a:b9:94:12:57:0b:07:ab:1c:f3:82:fa:19:ff:
ef:96:b0:00:9a:4c:21:eb:c5:d9:de:a0:eb:e3:9f:
6d:d6:6a:00:f4:1b:00:f1:f7:88:38:a6:ca:8a:4b:
c4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:A3:62:52:22:E2:C9:85:34:41:C2:89:1D:FF:7F:5D:C1:BA:2E:D6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa25f22-9b7c-4c9b-8b2d-71fbb9801f35.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.150.16.0/21
Signature Algorithm: sha256WithRSAEncryption
12:9b:1a:6a:77:70:06:7b:60:14:bd:2d:bc:1b:3c:5d:50:57:
e4:d4:fd:73:94:41:ac:c3:0c:aa:66:cc:42:40:ec:07:ee:69:
4f:b8:e2:5e:05:ad:c5:a1:f7:5e:d1:2c:f6:22:ef:9a:f8:c1:
1b:7e:93:30:75:92:d5:cb:21:8c:f6:a9:f1:10:94:2f:95:97:
7a:34:aa:4f:06:e0:8d:3d:c9:cb:3a:1b:f0:71:90:c2:a4:3f:
cc:fb:a7:e3:f0:45:1a:74:2f:65:f2:0d:aa:f1:2a:8a:15:fe:
be:25:db:03:b4:95:b2:c6:b5:6c:e2:36:e6:f3:22:dc:a7:e0:
42:dd:ff:5d:b4:78:9c:7e:70:b0:fd:81:ad:9b:8f:f0:66:bc:
c0:50:a1:ce:38:87:fc:e2:73:56:30:c0:75:4f:d0:62:cf:ff:
eb:0b:fb:d5:ee:27:e7:f3:7e:af:45:5f:37:bd:70:77:00:3a:
11:78:23:56:2a:7e:a1:26:74:de:be:68:7f:19:81:03:8a:66:
50:28:f4:47:0c:aa:f4:2d:0e:9d:bd:74:71:19:25:c3:29:21:
0a:2c:ec:fe:8f:75:6e:3d:25:82:e3:65:65:10:c6:bb:be:e3:
15:5d:fd:04:5c:85:22:9a:1e:d8:7f:45:59:63:61:47:14:69:
d8:39:4b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:54:33 2025 by rpki-client