Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa
File: eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa (raw, json)
Hash identifier: raKt9lDq6e1l8pIF4pBNTd/DeRie0VrMW6XA6lkf/2o=
Subject key identifier: 53:8C:D9:E3:7C:F1:29:0A:CC:76:4B:AC:E7:81:3C:06:1B:6B:41:FD
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3D2BFF121099D69A3DE2D101D051D7667973AE22
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa
Signing time: Mon 23 Dec 2024 00:00:00 +0000
ROA not before: Mon 23 Dec 2024 00:00:00 +0000
ROA not after: Mon 27 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 151.148.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:2b:ff:12:10:99:d6:9a:3d:e2:d1:01:d0:51:d7:66:79:73:ae:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 23 00:00:00 2024 GMT
Not After : Jan 27 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5b:a9:48:9e:78:68:b6:62:92:fb:72:32:43:
af:78:4b:c3:c8:48:da:96:92:9e:b1:d5:80:14:ae:
58:b6:76:28:e5:35:dc:d7:6b:18:00:79:fe:55:3f:
c7:10:52:bd:63:44:a7:24:24:c9:41:e7:b9:75:76:
49:a0:6a:91:1f:c1:bf:04:6b:3d:53:17:3e:b5:06:
22:e7:01:cc:d2:41:37:41:51:37:5b:04:5f:9c:fd:
ea:df:c7:34:62:10:21:38:ea:ee:cf:06:0a:a6:e8:
b0:f7:77:9b:7b:2f:6b:2f:68:49:4d:b4:53:81:28:
06:5e:90:a2:36:9b:57:95:db:9f:05:c0:fe:3a:17:
8c:80:42:ef:1a:10:21:56:d2:31:3d:73:98:68:b3:
3e:4a:f2:2a:75:94:89:7e:c9:35:92:95:43:35:b8:
ba:62:9d:79:86:f2:88:58:56:ed:73:c3:42:49:1d:
f9:ff:0c:5e:ca:eb:0b:bb:46:a1:6a:e8:31:b4:f2:
d2:ec:e9:4c:ff:a1:00:a5:af:f9:9b:30:b8:3d:0a:
08:48:dc:7f:ec:7f:96:c6:df:27:d7:85:f1:56:c8:
bd:e6:9d:93:d4:42:bd:35:5f:c8:ee:59:8e:8c:22:
97:7a:3a:fd:98:cb:6a:eb:50:1f:ff:ae:dc:b5:e7:
02:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:8C:D9:E3:7C:F1:29:0A:CC:76:4B:AC:E7:81:3C:06:1B:6B:41:FD
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eb82f495-9ff1-40b6-98b0-f67f8a6c0ab0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.148.41.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:47:cd:b0:ff:ab:24:ca:14:aa:1f:72:85:4e:53:87:92:2c:
a5:57:f6:a8:d9:c8:c1:25:35:db:c4:e0:30:13:23:06:cb:a5:
ac:7c:fe:08:aa:00:00:81:47:dd:68:aa:8d:01:d8:d9:56:02:
e0:73:46:a4:03:2d:fd:a0:ca:71:13:63:f0:b6:cd:4e:d3:19:
10:8e:97:3b:49:14:4c:93:b8:2d:f9:8c:90:17:d4:79:c9:ad:
d0:f3:99:05:4b:86:21:fe:a9:6a:1c:dd:35:05:80:c6:b8:6a:
d7:8d:72:a8:8e:bd:26:27:41:cc:58:91:71:d4:68:0e:b0:75:
c5:21:8b:0d:e3:aa:e4:87:5c:9f:7e:95:02:5a:31:d5:9d:3f:
82:a1:c1:a2:c7:d6:11:a7:1b:8a:6b:d3:3a:f1:91:91:ae:23:
24:01:39:76:9e:a0:9b:0b:e5:5f:cc:2e:29:ef:8e:68:ae:e8:
0a:7c:b1:2c:55:64:92:7f:3d:a1:e4:4e:2e:27:73:e5:7f:6c:
8b:38:ea:9c:bd:d3:c6:57:e4:44:50:4c:26:7c:7d:76:71:3d:
7c:8b:6b:4e:2b:a0:e8:e3:19:fb:bd:84:67:ae:90:d5:ba:56:
a5:6a:f7:4d:5d:a0:9a:2d:0d:7e:1a:b7:5d:a3:fd:12:d8:b0:
ea:1e:40:59
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUPSv/EhCZ1po94tEB0FHXZnlzriIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjIzMDAwMDAwWhcNMjUwMTI3MjM1OTU5
WjB6MUkwRwYDVQQFE0AzZjY1ZTU1ODVhMmJiY2UwYTk4ZmY2NTI2MWRiMjdkYzMx
N2Y4ZmNlZmU4ODk1NGJhYmIyM2ZjYTY5MzU5YWRiMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCwW6lInnhotmKS+3IyQ694S8PISNqWkp6x1YAUrli2dijl
NdzXaxgAef5VP8cQUr1jRKckJMlB57l1dkmgapEfwb8Eaz1TFz61BiLnAczSQTdB
UTdbBF+c/erfxzRiECE46u7PBgqm6LD3d5t7L2svaElNtFOBKAZekKI2m1eV258F
wP46F4yAQu8aECFW0jE9c5hosz5K8ip1lIl+yTWSlUM1uLpinXmG8ohYVu1zw0JJ
Hfn/DF7K6wu7RqFq6DG08tLs6Uz/oQClr/mbMLg9CghI3H/sf5bG3yfXhfFWyL3m
nZPUQr01X8juWY6MIpd6Ov2Yy2rrUB//rty15wLhAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUU4zZ43zxKQrMdkus54E8BhtrQf0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2ViODJmNDk1LTlmZjEtNDBiNi05OGIwLWY2N2Y4YTZjMGFiMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBACXlCkwDQYJKoZIhvcNAQELBQADggEBAKVHzbD/qyTKFKofcoVOU4eSLKVX
9qjZyMElNdvE4DATIwbLpax8/giqAACBR91oqo0B2NlWAuBzRqQDLf2gynETY/C2
zU7TGRCOlztJFEyTuC35jJAX1HnJrdDzmQVLhiH+qWoc3TUFgMa4ateNcqiOvSYn
QcxYkXHUaA6wdcUhiw3jquSHXJ9+lQJaMdWdP4KhwaLH1hGnG4pr0zrxkZGuIyQB
OXaeoJsL5V/MLinvjmiu6Ap8sSxVZJJ/PaHkTi4nc+V/bIs46py908ZX5ERQTCZ8
fXZxPXyLa04roOjjGfu9hGeukNW6VqVq901doJotDX4at12j/RLYsOoeQFk=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:24:01 2025 by rpki-client