Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e891366b-ba3c-4304-a3db-05d27d71eed8.roa
File: e891366b-ba3c-4304-a3db-05d27d71eed8.roa (raw, json)
Hash identifier: NEOvDGmCinhd72XM0UENCDbfGKLt8B9NL5VEMo6ZgIo=
Subject key identifier: 7C:85:0B:7A:4B:CF:D2:45:BF:AE:67:E3:6D:D9:DC:3C:F6:7C:4C:10
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2951AD90187A82D1D95FB83CD3B97E7EE8F07755
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e891366b-ba3c-4304-a3db-05d27d71eed8.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 16.87.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:51:ad:90:18:7a:82:d1:d9:5f:b8:3c:d3:b9:7e:7e:e8:f0:77:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:ce:4c:7e:bd:55:76:dd:e1:96:27:bb:ed:
e5:da:1c:91:b5:58:e5:f9:57:2d:b6:5f:f4:d8:b7:
d1:5b:51:f2:21:c8:2f:8c:95:5c:50:49:a8:f8:87:
24:c6:96:f8:87:0e:32:bf:7f:ac:56:3e:21:df:e4:
a0:ac:35:2e:b2:4b:fa:2e:02:82:ce:b1:3a:a7:03:
c6:18:43:dc:cd:63:58:8b:d2:f6:c2:28:3a:b0:ab:
18:c0:ea:74:1b:44:a5:89:ef:dc:35:4c:6f:4c:7f:
eb:21:04:28:77:2d:b8:4e:f2:87:64:04:46:ff:3d:
e1:0d:71:4a:dc:83:3e:41:f5:79:8e:e0:f4:a3:ea:
52:e0:08:07:a3:6e:b1:18:65:69:f6:5a:4e:2b:8a:
e4:ef:bb:ac:2c:b2:6d:ea:b7:ec:93:f2:b0:76:d2:
1d:8b:01:18:3a:7b:d0:5c:af:6c:82:c9:e0:2b:be:
a5:a2:d9:a0:f6:53:5e:86:17:c9:8e:b8:59:8e:15:
1b:ca:ac:63:ff:b0:98:02:9d:40:58:a5:b2:35:d4:
7c:a8:79:84:13:da:bc:fa:eb:10:a6:38:41:17:85:
02:8a:f0:5e:63:cb:c5:f2:46:0a:e9:64:b5:d4:8f:
55:8d:87:2d:cb:31:18:04:24:66:31:c1:47:4a:47:
71:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:85:0B:7A:4B:CF:D2:45:BF:AE:67:E3:6D:D9:DC:3C:F6:7C:4C:10
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e891366b-ba3c-4304-a3db-05d27d71eed8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.87.0.0/16
Signature Algorithm: sha256WithRSAEncryption
19:c0:ee:01:f0:00:d5:48:ca:a0:0c:24:98:a5:10:b9:0b:3e:
45:eb:27:3b:24:c0:cb:b4:f3:31:74:d0:7a:8d:d2:14:d2:ce:
64:fc:35:8b:c4:e3:35:5d:8a:1c:3e:76:71:76:48:07:77:b9:
0a:03:a5:72:b4:d0:ce:47:62:25:b8:bf:9d:cd:5c:05:ba:1d:
3a:e0:0d:47:1d:b4:7f:0e:63:d8:4e:41:7b:dd:07:80:4a:b7:
23:d8:06:a6:1c:c4:2d:8f:fa:a0:0b:1a:b2:03:95:ad:6a:f5:
a1:af:51:bc:c8:38:97:cc:7c:cf:23:e1:a8:c1:2c:a1:e3:a8:
75:5d:d6:19:3b:72:ae:59:60:54:0d:54:74:f4:46:5c:ee:22:
92:28:60:ae:0f:20:cb:c5:c8:3c:98:75:d7:2c:b0:73:06:b5:
83:2a:40:35:6d:a4:ef:44:ec:bc:19:a6:49:30:bf:fb:e9:9f:
ac:52:51:66:9f:61:85:0a:44:75:51:ac:53:6e:f4:0a:70:9e:
6c:a8:49:f6:f3:ef:1c:04:95:e4:6a:da:90:10:9b:03:32:bc:
51:a4:54:a9:af:b0:a4:52:ed:c4:fd:fa:db:58:fa:a0:a6:84:
b0:31:93:c8:ea:2d:c4:ca:66:d0:e9:bf:0c:78:1e:d7:d8:41:
d8:20:b4:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:33:59 2025 by rpki-client