Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae8073c-33ea-400f-bbc5-8395bb0fc041.roa
File: dae8073c-33ea-400f-bbc5-8395bb0fc041.roa (raw, json)
Hash identifier: 9EFCklbKHTalaKkAcF23H/rOKqmKueY/67TGf8NabsQ=
Subject key identifier: 28:3B:36:1C:D8:FA:DD:F8:76:72:F6:3B:56:D2:81:34:B8:20:D8:DD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 174CB87766B69C6EF410AE98FD793A9354CB54CF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae8073c-33ea-400f-bbc5-8395bb0fc041.roa
Signing time: Fri 06 Dec 2024 00:00:00 +0000
ROA not before: Fri 06 Dec 2024 00:00:00 +0000
ROA not after: Fri 10 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 56.68.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:4c:b8:77:66:b6:9c:6e:f4:10:ae:98:fd:79:3a:93:54:cb:54:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 6 00:00:00 2024 GMT
Not After : Jan 10 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ea:8d:b9:2c:bc:19:43:11:a5:fb:34:6e:59:
eb:f1:a8:a0:df:b4:23:5f:a8:33:7f:0e:e0:69:d0:
f8:f0:8f:70:0f:84:fb:24:4d:c3:1b:77:2c:e6:d4:
68:3a:7d:d6:2f:00:69:d7:52:1b:d1:56:dd:da:d9:
c4:75:b5:f1:11:a4:70:25:df:61:34:19:83:ab:bf:
62:85:ee:cd:d8:a0:67:13:79:37:3c:a2:e9:36:26:
43:a6:a3:c4:4a:05:a7:56:30:04:e6:02:3c:c9:58:
6b:ae:65:34:97:38:1c:ce:8c:1c:17:c6:1a:c6:5d:
4e:3e:20:84:48:6b:3b:9f:c6:9b:78:d0:09:6c:dd:
cb:a7:e4:0a:30:3f:dd:59:c4:cb:4a:bf:a5:e8:2c:
41:bf:5c:9a:e6:b7:60:a8:a2:01:04:4b:50:11:54:
0a:cc:f5:e6:3f:c1:6a:9a:5f:63:c6:cd:34:76:15:
35:ea:b5:05:38:6a:3c:21:80:eb:90:59:9c:22:59:
00:7b:c2:ec:7a:11:18:3e:77:01:1b:dd:dc:5e:fd:
c3:fd:0a:5e:da:e4:05:18:5a:36:3e:9f:e6:89:9a:
ed:ef:70:71:6d:d7:0c:bb:8d:f0:de:79:28:ac:bf:
39:cc:21:55:d2:af:b1:86:5c:38:ce:e3:56:df:f9:
ac:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:3B:36:1C:D8:FA:DD:F8:76:72:F6:3B:56:D2:81:34:B8:20:D8:DD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae8073c-33ea-400f-bbc5-8395bb0fc041.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.68.0.0/16
Signature Algorithm: sha256WithRSAEncryption
67:fc:86:15:68:72:29:f2:05:34:52:69:75:ca:71:cc:42:38:
f1:a1:6c:e4:7a:b6:a2:26:f8:93:b2:09:d7:1c:ee:ef:5b:64:
00:df:35:63:ef:6b:02:c5:3b:be:d7:84:6c:35:fb:f7:56:4f:
f8:86:e1:72:bc:34:6e:6e:34:c6:8b:e5:7c:ca:d1:14:47:91:
f9:8f:56:df:ea:bc:6d:17:8c:a9:8b:04:8c:e2:93:5d:d3:14:
6d:27:3a:50:9d:5d:41:92:da:bf:53:c8:f2:3a:14:83:44:3f:
66:33:ae:8c:60:8f:81:5e:d0:5c:f9:c1:a4:ee:e5:e6:31:ee:
16:28:d6:f6:75:70:09:bf:aa:8b:00:bf:23:8a:0a:d7:29:2d:
ae:32:9c:11:62:33:59:a7:2f:18:97:c1:35:7b:d5:ce:e8:44:
14:26:45:25:93:ab:5e:65:6a:51:9f:84:a9:33:41:40:1a:bb:
29:37:56:a9:fc:c2:c0:48:8b:db:25:89:d3:e4:4c:cf:5a:dc:
0c:c9:6c:8b:11:1e:66:b4:11:39:3f:0a:05:c7:12:23:0b:cc:
41:a6:fa:00:18:15:98:86:cc:16:a3:e2:6f:09:ff:ba:7f:dd:
08:f8:5e:d1:55:63:25:08:3f:72:1a:4c:6a:97:64:7f:bd:c5:
b6:28:90:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:14:24 2025 by rpki-client