Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa
File: e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa (raw, json)
Hash identifier: 9Slb1x5v7cpBD5mVvqsx6g9MQ+0xZS/b/57jB4wfiy8=
Subject key identifier: 68:C4:8A:11:68:64:A9:3A:5A:DB:C8:3E:37:58:BD:58:6A:5A:44:1A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2A4E97F0FA8C43598432F869BC27CD2148FB0B28
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa
Signing time: Wed 25 Dec 2024 00:00:00 +0000
ROA not before: Wed 25 Dec 2024 00:00:00 +0000
ROA not after: Wed 29 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 130.176.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:4e:97:f0:fa:8c:43:59:84:32:f8:69:bc:27:cd:21:48:fb:0b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 25 00:00:00 2024 GMT
Not After : Jan 29 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:be:0d:ad:d4:f1:67:d0:b8:55:be:de:a1:0f:
63:df:4c:44:4d:d9:6d:52:6d:2b:4d:bd:a4:04:bf:
34:fe:47:67:6c:1f:31:b7:dc:3c:bd:de:43:e3:f0:
e0:c2:9a:3e:fc:0c:c2:77:42:b7:98:16:b7:af:c3:
9d:86:97:21:60:38:df:b6:63:49:48:d4:de:bf:d8:
5a:e8:ef:97:0a:30:a4:32:c4:3c:a0:5e:e5:d4:11:
31:77:2c:4b:91:71:f0:ce:e3:54:07:cd:28:c3:94:
78:56:16:b7:d5:af:2a:c0:89:0f:14:45:c2:d7:92:
0b:d8:12:d1:d1:c0:9b:42:f5:00:ae:56:1f:6e:cb:
a8:d0:19:48:27:07:3d:5f:d4:c1:18:05:48:96:7d:
1c:9a:b0:7d:36:1c:e8:18:e6:7a:9b:90:65:55:92:
c9:91:66:24:e0:34:c4:7e:46:b5:bf:ec:1c:12:23:
ba:64:9c:60:d8:45:3c:a2:32:b0:39:5b:f0:20:29:
99:76:9a:2f:78:34:4b:b4:53:56:19:75:ee:25:c9:
8f:08:5f:dd:4f:30:e0:eb:22:38:ab:2c:d6:4d:90:
cb:00:13:e0:bc:67:81:46:70:98:77:3c:54:d3:77:
b5:47:1b:77:88:10:25:c3:a6:d3:20:16:b4:25:2e:
94:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C4:8A:11:68:64:A9:3A:5A:DB:C8:3E:37:58:BD:58:6A:5A:44:1A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e423baa5-bd3b-4a4c-a789-dd8bb284e0db.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.176.128.0/18
Signature Algorithm: sha256WithRSAEncryption
82:da:c4:12:27:e9:c3:96:42:0f:82:6f:ae:d2:20:62:b8:96:
26:10:0e:06:9e:27:bc:0f:a1:41:40:0e:bd:62:57:d7:5d:f5:
07:b1:37:1b:3b:eb:92:61:59:07:c6:33:66:90:ca:c2:91:70:
f0:7d:dc:d7:44:67:fd:19:3a:cf:7e:6c:66:6c:83:2d:86:0b:
72:86:3c:ef:e7:63:03:92:9a:f6:0a:53:83:03:41:5e:83:47:
83:7a:4e:67:b3:f9:bc:f9:8a:85:68:7e:23:a2:e2:a1:1e:94:
64:2c:50:02:e3:92:26:bb:ba:55:03:67:39:69:5e:46:11:cf:
4b:de:1b:d6:8e:48:46:6e:05:be:3e:c3:3b:58:53:1f:88:8e:
21:23:f2:3e:14:2f:c7:43:f1:47:36:16:f7:fd:ba:da:ab:5b:
3f:ef:0c:d9:5c:2b:dc:43:de:31:dc:f5:38:2b:0a:7f:de:8e:
79:91:7f:4e:4e:cb:61:84:32:fe:1b:bd:c9:ee:99:af:c5:6e:
b2:75:f1:a1:8d:52:95:ef:99:5c:69:1c:48:81:e7:f6:2d:ff:
17:b6:ef:89:d7:f1:7b:51:6a:6f:e7:23:7d:12:08:e1:4a:ab:
40:f3:63:54:88:bd:51:31:ce:b8:e8:7f:7d:ad:72:93:0b:a3:
98:05:44:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:07:41 2025 by rpki-client