Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4243645-7ea0-475f-bd89-ab1ee2efb5c3.roa
File: f4243645-7ea0-475f-bd89-ab1ee2efb5c3.roa (raw, json)
Hash identifier: X5yY+Kv6BUayqsUKzPb4dKkOtuQtO54KRonGs5tNaQc=
Subject key identifier: 0F:60:5E:B6:9E:54:FB:D4:9D:47:1C:26:C7:69:06:51:A0:E4:C4:2A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 54021520FB9A87EF3C8BB17A641BC23B595476BC
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4243645-7ea0-475f-bd89-ab1ee2efb5c3.roa
Signing time: Mon 23 Dec 2024 00:00:00 +0000
ROA not before: Mon 23 Dec 2024 00:00:00 +0000
ROA not after: Mon 27 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 54.137.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:02:15:20:fb:9a:87:ef:3c:8b:b1:7a:64:1b:c2:3b:59:54:76:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 23 00:00:00 2024 GMT
Not After : Jan 27 23:59:59 2025 GMT
Subject: serialNumber=fdd318392c24df94474edcfcc17396f56745d41db8f79e258f5fb357c2b64dfd, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c6:08:36:a3:59:18:07:27:d8:6d:81:e5:9a:
6a:48:93:bf:f9:ac:bf:91:22:ad:b1:83:2d:6a:be:
dc:e2:e5:ee:4a:3d:71:48:62:5d:9b:81:62:33:91:
c1:e8:b9:66:d5:f6:fe:64:e0:f5:e9:28:73:f9:d0:
a0:a4:20:69:61:49:78:35:11:70:2e:59:66:e4:c0:
0b:2b:a4:9f:c0:c0:16:4d:00:c1:26:1f:4d:62:c3:
e9:a3:b7:fb:92:b0:ff:31:38:b7:ed:a2:df:e3:f4:
f0:b0:df:60:6c:39:c3:34:5f:4c:d9:ce:dc:1c:10:
ab:f9:f3:ab:df:56:f0:04:97:bf:23:ff:46:bc:fd:
cd:49:a6:92:c3:7c:48:82:d3:98:40:b5:59:3e:a9:
cf:34:e1:62:93:4d:02:68:82:e5:9d:4a:3b:5c:68:
f0:56:49:9f:52:8f:12:cd:50:9b:6f:ea:7d:7e:d8:
a7:0a:d6:0e:51:06:5e:10:eb:cf:57:35:ef:fe:23:
b8:f8:0a:e8:6c:14:59:9d:ca:b2:e1:12:7e:21:7c:
48:2e:a6:c7:31:cb:d6:d9:f3:e0:e2:f0:9a:6b:a1:
f2:b2:89:dc:a4:e5:13:c5:2d:26:ff:25:3d:99:2c:
0e:4d:1f:d2:af:2a:b7:9f:ba:6a:e3:55:23:e1:13:
0d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:60:5E:B6:9E:54:FB:D4:9D:47:1C:26:C7:69:06:51:A0:E4:C4:2A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4243645-7ea0-475f-bd89-ab1ee2efb5c3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.137.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6b:1d:64:69:e8:f0:11:c1:ea:51:ee:a0:b1:b8:9b:f9:63:29:
61:08:3d:9d:42:1b:83:d3:3c:3b:7a:4f:3f:10:66:8a:ac:ac:
ba:11:65:fc:2c:fe:e0:76:04:ef:a0:07:61:50:df:2b:30:74:
1a:64:4b:90:f4:50:75:8f:a2:f6:6f:d7:ca:36:21:4e:4d:dc:
7c:63:4b:e9:7d:a0:84:0e:14:71:0c:a0:a2:64:ff:42:91:be:
2a:a5:6d:ab:c6:78:d2:5d:78:0a:78:49:26:8d:e1:1c:e7:df:
3e:6d:38:cb:16:75:02:4c:4c:3e:04:49:b3:fc:b0:b3:26:c3:
8f:b9:65:b5:c4:46:e5:53:bc:ef:56:bb:03:da:cb:f7:68:96:
4d:94:99:a2:3b:63:a6:ca:f2:34:ca:e9:82:eb:f5:cd:0f:5d:
f1:ce:c0:64:77:91:f5:27:41:87:77:cc:a6:db:b6:de:fe:42:
ca:0b:db:ef:c2:56:d2:cb:3f:ce:d1:d9:de:28:fe:fb:12:9e:
6f:71:77:0c:f5:d4:41:20:82:03:57:f7:be:8d:83:dc:22:7b:
69:b2:25:4f:8d:70:f3:f6:a6:bd:f3:4f:87:df:74:6e:ca:15:
6a:ee:ce:3c:52:1b:ba:6e:c9:dc:ff:3e:49:18:8d:dd:85:5c:
29:38:52:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 17:00:38 2025 by rpki-client