Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9b6eede-112c-4bd9-9b88-aca84729d043.roa
File: e9b6eede-112c-4bd9-9b88-aca84729d043.roa (raw, json)
Hash identifier: WtUNwm6MeXoYNmgKtKm4XeF7cr/8H6/YHgvb490UoVI=
Subject key identifier: D4:9A:65:8C:85:7C:0F:37:B4:C3:27:A4:93:61:54:E1:AE:42:4E:6C
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 555D3184639086AFE4615939080209C191CEA0BA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9b6eede-112c-4bd9-9b88-aca84729d043.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:1f61:5000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:5d:31:84:63:90:86:af:e4:61:59:39:08:02:09:c1:91:ce:a0:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: serialNumber=20a912393f0e09e0849a954a3863209a532eb72603e007238bdfbb932b960eed, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:33:97:7e:3a:ea:61:bf:af:58:15:be:d7:27:
6a:1d:76:43:a5:db:66:76:d2:43:f6:ca:d0:99:d9:
f0:3f:3f:05:00:7d:c3:04:8f:f8:c5:ff:49:b7:82:
e2:0b:35:b9:e4:9c:f2:83:92:77:49:30:86:65:7c:
0d:76:ad:91:03:12:8f:a3:17:2e:41:e3:1c:b4:fe:
dc:b0:7b:4d:7f:d8:e6:8f:a2:b3:05:0a:8f:c2:78:
73:a2:05:ca:63:66:66:a0:35:7c:4d:82:06:32:4e:
64:9a:50:b7:4d:77:ad:8b:69:95:65:da:81:46:2f:
f4:e0:7c:ed:b1:49:eb:24:b3:d4:bc:d1:2c:c8:4b:
af:61:84:69:5c:97:d1:0d:a1:47:34:e8:f2:db:54:
3b:e3:17:d7:e4:ea:87:10:a3:ca:61:7d:28:10:41:
74:7a:4c:7d:fb:29:d6:60:99:07:39:cd:ae:25:33:
6f:3a:f6:ba:9d:b9:cf:b2:5e:9b:1f:0e:e8:74:cb:
c5:43:65:3c:e3:63:3a:29:3f:ab:16:ea:4c:87:02:
fd:28:54:08:6b:0f:b0:cd:c3:80:c4:69:39:97:a6:
d5:69:31:f1:3c:f2:96:6a:b2:0e:79:a5:92:d1:4b:
8d:ed:73:b2:89:7f:eb:5e:d8:4c:b1:4c:66:6c:a6:
61:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9A:65:8C:85:7C:0F:37:B4:C3:27:A4:93:61:54:E1:AE:42:4E:6C
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9b6eede-112c-4bd9-9b88-aca84729d043.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f61:5000::/40
Signature Algorithm: sha256WithRSAEncryption
97:cd:0b:78:dd:63:4b:45:aa:c7:5d:0d:b8:b4:05:7a:ac:71:
b2:7d:50:8a:fb:dd:f0:1a:3f:0e:ba:8a:5b:75:d9:4a:07:d9:
08:42:ea:9f:de:41:73:18:81:dd:1e:67:02:25:00:20:50:e6:
b3:f7:9a:ac:93:7d:30:05:d8:52:7a:09:70:a2:f7:78:1f:4c:
85:e6:92:45:ca:2b:be:f9:67:09:db:e6:fe:ce:e0:e6:91:f1:
05:47:1d:09:e9:4b:e7:a4:d1:5a:fd:31:c4:7a:df:29:db:25:
f2:65:6a:e7:82:35:83:fa:57:85:54:6b:d5:d5:d7:62:69:33:
66:d3:04:e0:a3:0e:4e:41:3d:2b:f9:8b:7f:9d:62:05:8f:fc:
54:75:32:e1:ab:d0:dc:62:c6:58:03:ba:18:0a:bd:9f:4b:5d:
7f:2d:5b:41:18:69:88:35:b4:88:4e:2f:d9:fc:b2:7b:5d:68:
e8:e9:5a:99:eb:0d:be:f5:84:61:94:b9:21:48:42:1b:5e:ee:
8c:7c:44:af:c8:25:83:31:1b:15:71:b7:3e:2a:a5:7c:fd:32:
d1:f2:45:31:ba:92:e4:e3:9b:63:93:87:d0:9a:aa:27:90:da:
0d:02:70:ac:23:0b:62:5c:31:fc:e2:07:c4:15:4a:7b:b7:6b:
9c:18:a1:ba
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 16 17:11:42 2025 by rpki-client