Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5621e7e-f9e7-4c65-9830-8ec14c091fba.roa
File: f5621e7e-f9e7-4c65-9830-8ec14c091fba.roa (raw, json)
Hash identifier: Ud+ShqVIC67B7SwGZHI475GSES3NZi3CmZEJjAIlk+E=
Subject key identifier: B1:9E:9C:F1:C1:FD:08:51:BA:18:86:24:1E:14:B1:76:74:FD:CA:65
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5F6F5FE24488AAEF8F1EFCEBFFAA8779D690D9EA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5621e7e-f9e7-4c65-9830-8ec14c091fba.roa
Signing time: Sat 28 Dec 2024 00:00:00 +0000
ROA not before: Sat 28 Dec 2024 00:00:00 +0000
ROA not after: Sat 01 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 16.209.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:6f:5f:e2:44:88:aa:ef:8f:1e:fc:eb:ff:aa:87:79:d6:90:d9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 28 00:00:00 2024 GMT
Not After : Feb 1 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:44:62:c4:ca:87:84:73:2f:13:e5:60:92:
c8:f0:a7:a2:f7:a7:38:90:35:44:bf:dd:e9:e2:f5:
9a:1d:3b:cf:8f:00:9e:99:74:92:06:8f:9c:4a:a4:
fa:b5:b1:41:46:d2:41:1e:6b:9b:4c:88:a0:66:c4:
09:e6:95:9e:8f:6f:b8:6d:88:d3:b2:6a:3c:21:5e:
42:83:f8:0d:0c:4a:28:7e:14:42:12:ca:c9:27:4e:
41:ad:54:bb:50:62:64:30:6a:2a:9a:a1:76:4c:40:
4f:70:c7:43:65:48:ec:08:cb:a3:bd:6d:4c:53:b4:
c8:9e:3c:a3:3f:b9:aa:93:25:ab:a9:0a:aa:5b:bd:
aa:5c:4c:96:f2:e7:20:de:8c:61:2e:d4:d3:e9:64:
de:f2:13:81:61:57:89:fb:b8:a7:c5:bf:83:a2:8e:
41:64:23:3f:96:2a:65:f1:84:4c:d8:4d:65:9c:6a:
da:b8:52:4d:49:13:e0:68:51:a4:63:31:fc:e4:34:
1b:39:ff:26:f6:89:70:b7:02:59:4b:86:8f:62:3c:
5d:cc:bd:00:05:54:1c:8d:8e:2f:c4:48:0c:2a:fb:
fe:eb:f9:2e:a1:28:fe:85:bc:81:5e:67:f0:02:5f:
c1:f6:be:f7:40:ba:d0:9e:82:34:ac:ba:d3:8a:d8:
00:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9E:9C:F1:C1:FD:08:51:BA:18:86:24:1E:14:B1:76:74:FD:CA:65
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5621e7e-f9e7-4c65-9830-8ec14c091fba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.209.0.0/16
Signature Algorithm: sha256WithRSAEncryption
38:74:85:a0:83:b3:5d:0c:31:3f:f7:ae:29:60:05:98:f7:4d:
02:36:b7:f1:9c:f1:25:9e:fd:df:74:9a:57:e0:9a:4c:a0:76:
2c:fc:fe:84:f2:76:cc:39:fe:1d:b5:d7:e1:c4:5b:8e:7a:6d:
d5:e8:ee:51:bf:0d:d5:c8:9f:3f:82:3f:ab:8d:b7:3a:b1:97:
9f:fd:a8:bf:b1:0a:69:2f:85:66:d0:31:c5:3f:9e:8b:6b:1e:
bd:ac:16:b9:2c:b9:4f:30:cc:7e:6a:44:9f:83:76:af:bc:f5:
68:fd:9c:1d:67:0d:81:68:b9:55:2a:c6:e6:18:f9:c6:81:ae:
0f:5d:8d:41:fc:e9:a9:f8:26:94:6b:c3:60:68:5c:01:55:22:
87:4c:3b:98:41:cd:9d:42:3f:67:4a:48:66:61:31:c0:64:6f:
1c:44:f0:63:82:90:6c:30:e1:b2:87:86:44:ba:c4:bc:44:dc:
d3:45:b6:a6:c9:ec:0a:b3:54:9b:1f:9c:e5:14:32:85:a0:4f:
df:05:80:e7:3e:bf:79:af:e6:de:0e:1b:99:3d:72:1a:e4:4b:
83:d4:6d:30:bf:54:11:92:ad:5d:27:df:28:39:51:16:35:0c:
1f:b2:6c:7d:0a:e3:87:3d:77:ef:c1:33:d0:b5:7e:c9:aa:8c:
3d:1e:c2:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:31 2025 by rpki-client