Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef954178-8b32-4b7a-b911-5225584a66d2.roa
File: ef954178-8b32-4b7a-b911-5225584a66d2.roa (raw, json)
Hash identifier: 4MxbjYA7egQCV/KtNwg8JzjVSEFmX2Qg9AhFYgVFbv4=
Subject key identifier: B0:3F:15:C6:71:2A:0C:1E:E2:B5:79:60:5D:9D:43:F0:0F:E6:BC:B4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6AA60C22BFA1542488B27A5467E9AD27C427A917
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef954178-8b32-4b7a-b911-5225584a66d2.roa
Signing time: Sat 21 Dec 2024 00:00:00 +0000
ROA not before: Sat 21 Dec 2024 00:00:00 +0000
ROA not after: Sat 25 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 148.94.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:a6:0c:22:bf:a1:54:24:88:b2:7a:54:67:e9:ad:27:c4:27:a9:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 21 00:00:00 2024 GMT
Not After : Jan 25 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ce:f2:28:17:65:9a:e4:2d:bf:e4:38:23:f4:
cb:0c:da:2d:dc:37:2b:77:8a:b7:de:ca:ba:6d:bb:
c0:6a:dc:d7:af:01:37:a3:c2:0b:54:f8:f2:07:fa:
c6:bb:1a:18:63:bd:7c:10:e7:5a:b3:73:37:a3:0e:
5e:62:f0:5f:6b:32:a3:5b:3d:f2:e7:65:92:14:b2:
73:c7:5e:2d:3f:77:e2:40:aa:88:8f:5e:fa:9c:f3:
59:8b:ea:30:f3:3b:4e:41:3b:b1:90:19:cc:71:86:
4f:a2:ad:ed:3f:83:c8:af:30:50:c6:ed:be:47:ac:
70:18:51:54:fa:a6:66:02:e9:93:6c:79:ca:dd:dc:
16:5d:bf:ae:c7:b8:ea:cb:b7:1b:24:2c:66:1c:02:
e2:11:c6:a0:80:e9:0d:97:df:c9:95:93:57:36:36:
55:36:66:b8:06:9f:59:8d:20:a4:71:58:9b:d0:aa:
be:10:0f:75:29:95:41:bb:17:a0:12:e2:12:84:c3:
8a:3e:5b:79:31:07:a7:4d:f5:38:0b:a7:88:3e:50:
ee:18:19:9b:54:b4:67:b6:0b:db:2a:a0:50:17:aa:
02:61:db:58:91:3e:d1:52:ef:97:73:ba:37:05:b3:
d0:68:55:0c:7f:56:a7:0f:a2:1f:ec:aa:41:d9:25:
3e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:3F:15:C6:71:2A:0C:1E:E2:B5:79:60:5D:9D:43:F0:0F:E6:BC:B4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef954178-8b32-4b7a-b911-5225584a66d2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.94.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3a:58:10:39:0f:f9:9e:7e:23:d4:7a:76:79:e5:5b:93:db:66:
92:e4:a4:6e:b8:79:99:f3:75:39:15:05:64:a8:4e:32:05:19:
61:70:cf:1d:53:43:9a:c6:22:b4:d7:d2:3d:e1:b6:55:04:92:
e8:be:bc:85:78:94:eb:6f:83:a8:6b:69:19:40:a9:66:19:21:
cf:ea:df:ea:55:1d:64:84:61:8c:ca:98:37:d5:97:18:30:fb:
41:d6:fa:79:8b:5e:9d:14:b2:f0:c7:99:ec:9c:ab:b1:38:5a:
5e:54:15:27:d2:65:2a:ed:ae:58:1b:54:33:0f:c4:7f:66:b0:
67:ba:35:a7:b7:80:0e:96:09:c0:91:b7:5c:b5:8c:46:a6:c7:
4b:f5:ac:5f:28:5e:90:48:cf:73:c6:a4:94:e6:14:76:50:8b:
a7:be:ad:94:57:74:fe:d8:8a:36:a1:e7:22:40:82:ff:cb:b9:
16:62:4a:62:3a:13:cd:82:76:8b:45:05:9f:4e:34:c0:bd:78:
d6:b9:14:ab:aa:7c:a1:61:7a:f9:fb:fb:1b:27:05:98:3b:64:
a7:f5:5a:0a:8e:58:32:d2:07:58:55:dd:76:cf:05:23:66:5f:
88:d7:52:79:14:d8:18:51:52:e5:5b:9d:5a:35:49:44:ad:84:
be:d6:c6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:10:52 2025 by rpki-client