Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f55a696c-5566-4e29-b605-56a2907b24df.roa
File: f55a696c-5566-4e29-b605-56a2907b24df.roa (raw, json)
Hash identifier: Su0F2Lr6Jntyefa7bOgLhQzVtI8Jl8oUFlDEAP44pYg=
Subject key identifier: 1C:7F:13:7C:6E:55:31:B8:E6:C3:00:34:49:6A:7D:B0:49:C6:F3:74
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 40E26CC1DC44A14BE56B8CED7486BAB46CCD052B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f55a696c-5566-4e29-b605-56a2907b24df.roa
Signing time: Fri 29 Nov 2024 00:00:00 +0000
ROA not before: Fri 29 Nov 2024 00:00:00 +0000
ROA not after: Fri 03 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 98.80.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:e2:6c:c1:dc:44:a1:4b:e5:6b:8c:ed:74:86:ba:b4:6c:cd:05:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Nov 29 00:00:00 2024 GMT
Not After : Jan 3 23:59:59 2025 GMT
Subject: serialNumber=7936746d5cce403ced9854fd3e2397476909eab587decc6d40d96e1ba452de40, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:19:b0:00:ba:81:4d:02:14:db:03:5f:0e:2c:
29:c8:00:01:1c:ff:91:b2:b6:d8:c3:b6:57:2c:1d:
9a:e3:4c:80:34:e3:80:de:23:1b:60:c1:c3:00:fa:
c7:fd:e1:d3:e9:0a:bf:38:bc:45:18:6e:8b:ed:04:
40:a8:1f:b2:6e:4d:ee:20:3c:94:b1:89:14:db:a7:
fe:ba:fc:3a:e2:8f:37:62:64:97:03:60:a6:f1:46:
26:72:80:5d:9f:49:12:71:8f:45:8b:b3:b9:47:03:
7c:30:30:d1:8e:82:de:3f:c9:c9:b8:28:8e:a8:1d:
a5:c1:7d:d3:e1:7e:df:7e:52:b2:99:34:16:c4:49:
29:50:fe:4b:a1:a1:89:a2:b0:3f:6b:2e:d5:6e:87:
59:8e:5f:6e:db:74:5a:97:5c:65:bc:23:cc:29:77:
0c:0e:8d:d3:57:90:62:e4:8a:54:ed:d2:72:dc:4c:
f1:74:d7:e7:6d:2f:b1:14:a9:36:3d:84:7c:42:d8:
1f:71:21:58:8d:9d:b9:cd:d5:f3:9a:3f:c4:8b:93:
79:d6:ef:9d:fa:63:02:cb:3d:6a:8d:39:bd:86:5e:
ea:a8:e6:49:1c:f6:ac:6c:20:65:8e:44:d8:04:28:
22:f9:19:4b:65:81:06:a5:3a:c1:b3:ec:78:19:b5:
93:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:7F:13:7C:6E:55:31:B8:E6:C3:00:34:49:6A:7D:B0:49:C6:F3:74
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f55a696c-5566-4e29-b605-56a2907b24df.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
98.80.0.0/13
Signature Algorithm: sha256WithRSAEncryption
14:84:16:61:63:4a:86:55:97:b9:cb:ae:43:b4:82:3a:e4:45:
1d:81:8e:6a:01:d9:64:4a:ac:b3:1e:61:62:9d:fd:8d:92:a5:
55:db:1b:61:4c:44:32:94:a2:11:01:f6:58:4c:8a:f9:d8:af:
e8:de:bf:a6:a2:93:56:c2:3c:08:0a:5f:60:59:ff:fc:d3:50:
68:88:d9:b9:36:3c:6e:c0:32:a4:8a:7f:cb:5c:63:6e:30:5c:
40:a5:a4:d3:1b:52:e9:9b:86:18:c7:dd:b6:10:a2:b6:70:6f:
d2:b9:f3:34:39:f7:55:ad:ff:06:ef:49:85:da:bd:0c:0d:d9:
a3:e7:e2:01:d5:11:2d:4f:b5:f2:9b:da:75:84:5a:ba:cd:1e:
72:1c:54:3e:0f:20:ba:03:e3:f3:23:0a:66:82:6a:d5:93:03:
8f:ac:83:74:a6:4c:e2:a5:29:68:3b:03:69:1c:da:65:5f:aa:
58:1d:61:67:b6:83:b6:be:1d:4b:83:9d:52:a6:df:e5:18:86:
df:1d:e0:b7:e8:a8:88:a9:8d:d0:c7:63:2c:2e:cb:63:9d:72:
19:a7:57:2b:4a:64:02:d2:ff:fd:36:2d:81:06:18:93:93:ab:
16:bb:ed:43:63:1a:c9:6f:b3:39:67:63:61:e4:d5:aa:ae:8d:
5c:23:68:42
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUQOJswdxEoUvla4ztdIa6tGzNBSswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTI5MDAwMDAwWhcNMjUwMTAzMjM1OTU5
WjB6MUkwRwYDVQQFE0A3OTM2NzQ2ZDVjY2U0MDNjZWQ5ODU0ZmQzZTIzOTc0NzY5
MDllYWI1ODdkZWNjNmQ0MGQ5NmUxYmE0NTJkZTQwMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCYGbAAuoFNAhTbA18OLCnIAAEc/5GyttjDtlcsHZrjTIA0
44DeIxtgwcMA+sf94dPpCr84vEUYbovtBECoH7JuTe4gPJSxiRTbp/66/Drijzdi
ZJcDYKbxRiZygF2fSRJxj0WLs7lHA3wwMNGOgt4/ycm4KI6oHaXBfdPhft9+UrKZ
NBbESSlQ/kuhoYmisD9rLtVuh1mOX27bdFqXXGW8I8wpdwwOjdNXkGLkilTt0nLc
TPF01+dtL7EUqTY9hHxC2B9xIViNnbnN1fOaP8SLk3nW7536YwLLPWqNOb2GXuqo
5kkc9qxsIGWORNgEKCL5GUtlgQalOsGz7HgZtZP7AgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUHH8TfG5VMbjmwwA0SWp9sEnG83QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2Y1NWE2OTZjLTU1NjYtNGUyOS1iNjA1LTU2YTI5MDdiMjRkZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwNiUDANBgkqhkiG9w0BAQsFAAOCAQEAFIQWYWNKhlWXucuuQ7SCOuRFHYGO
agHZZEqssx5hYp39jZKlVdsbYUxEMpSiEQH2WEyK+div6N6/pqKTVsI8CApfYFn/
/NNQaIjZuTY8bsAypIp/y1xjbjBcQKWk0xtS6ZuGGMfdthCitnBv0rnzNDn3Va3/
Bu9Jhdq9DA3Zo+fiAdURLU+18pvadYRaus0echxUPg8gugPj8yMKZoJq1ZMDj6yD
dKZM4qUpaDsDaRzaZV+qWB1hZ7aDtr4dS4OdUqbf5RiG3x3gt+ioiKmN0MdjLC7L
Y51yGadXK0pkAtL//TYtgQYYk5OrFrvtQ2MayW+zOWdjYeTVqq6NXCNoQg==
-----END CERTIFICATE-----
Generated at Wed Apr 16 16:54:44 2025 by rpki-client