Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc14eed1-8236-4842-9526-26b0265b42a1.roa
File: fc14eed1-8236-4842-9526-26b0265b42a1.roa (raw, json)
Hash identifier: 2qGttwmp5p4I3j4697RC4THVj4ZIMQp2k7b8rQNrung=
Subject key identifier: 3E:62:12:01:E2:08:A1:36:F0:80:EC:00:E2:BE:36:F2:17:B5:20:9E
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 746D2D23C17C9790AB6540BEA18D279F94C5B37A
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc14eed1-8236-4842-9526-26b0265b42a1.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.82.184.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:6d:2d:23:c1:7c:97:90:ab:65:40:be:a1:8d:27:9f:94:c5:b3:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e8:10:5a:df:85:36:0b:90:8f:4d:8f:52:05:
50:db:aa:6c:e8:91:64:40:21:df:52:00:90:c6:de:
6d:d1:0c:b8:e5:99:5b:1c:05:88:00:2f:77:d4:44:
26:f6:21:f8:eb:17:f0:cf:f2:c7:19:80:94:a2:42:
31:42:d2:fa:75:69:35:42:80:87:b8:3c:e4:94:a1:
64:9d:15:21:7c:d5:5c:37:da:e1:b3:4d:e1:a2:90:
ed:8d:49:fb:2a:dd:f4:da:c6:5f:db:e0:5c:35:11:
72:b6:eb:69:ab:36:fe:f2:cb:6b:08:87:a4:1c:2c:
22:bd:b8:2f:82:0a:58:b7:ec:e6:71:08:7f:19:11:
77:ca:93:52:f4:ec:b0:a0:ff:51:46:4b:dd:87:fd:
c7:7f:e3:3a:fa:87:df:51:f4:8f:c6:77:73:e3:30:
28:b3:b6:eb:df:b2:4c:9f:9c:c5:8b:49:f3:50:4e:
94:43:a4:fe:09:4a:31:8d:61:9d:46:a9:61:d5:e0:
b0:89:43:91:9c:91:8c:49:4c:67:18:f0:a6:92:22:
25:3b:5d:f1:63:d0:6c:9a:50:f9:3c:4b:8e:0f:a9:
66:0b:0f:e4:28:4f:34:68:5d:2e:bc:80:71:b9:8b:
76:71:e8:00:4c:20:28:57:70:cd:db:82:0d:eb:8a:
40:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:62:12:01:E2:08:A1:36:F0:80:EC:00:E2:BE:36:F2:17:B5:20:9E
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fc14eed1-8236-4842-9526-26b0265b42a1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.82.184.0/22
Signature Algorithm: sha256WithRSAEncryption
29:13:37:16:b8:c0:6e:f5:78:77:05:6f:8a:c0:ac:c3:1a:4e:
75:01:a2:63:16:48:de:91:05:75:a8:2a:6e:88:04:c3:88:ad:
30:ae:31:5e:99:2f:df:2a:0d:9c:d7:87:0c:66:7b:78:6d:54:
2f:5b:30:7f:fb:2f:f9:b9:92:78:99:bb:ad:e2:e6:d6:05:7f:
dd:cb:57:71:b1:2f:b4:d2:b9:56:b0:5b:58:f5:f9:de:6d:16:
33:f6:43:8e:32:90:a4:c6:1e:30:7e:7d:86:df:02:68:ef:bf:
42:53:28:21:4c:7f:32:d5:1c:60:1c:b2:af:97:71:0a:21:c9:
bf:b1:4b:27:13:b8:46:14:cc:42:db:b7:e2:d3:03:85:ec:04:
c7:ef:d2:c2:89:8f:8d:d9:f5:b0:ff:9d:6c:c6:60:ab:12:a5:
3e:13:b5:38:61:bd:ce:7d:59:a1:0c:1b:60:cc:51:60:52:35:
d5:da:82:5c:fe:ba:f7:4e:73:86:6c:6d:92:83:43:88:5c:a9:
40:b3:00:dd:1d:a5:d1:88:35:cc:cb:f2:17:89:c7:0c:58:c8:
af:6b:dd:01:82:0d:b0:74:84:8e:9a:24:aa:35:b6:3c:33:ef:
c0:56:f7:a3:a8:7b:93:32:e9:2f:06:15:54:66:96:2c:55:ae:
cb:8b:1e:a4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUdG0tI8F8l5CrZUC+oY0nn5TFs3owDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjMwMDAwMDAwWhcNMjUwMjAzMjM1OTU5
WjB6MUkwRwYDVQQFE0BhODAwNGZkMzY0OTA5ZGZlYTRlMjk3YWM1ZGFkOTc5ZmYy
N2I2Y2U3ZTNmYTJiNDNhNWU0YmM5ZDRlNmQ3MzkxMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDr6BBa34U2C5CPTY9SBVDbqmzokWRAId9SAJDG3m3RDLjl
mVscBYgAL3fURCb2IfjrF/DP8scZgJSiQjFC0vp1aTVCgIe4POSUoWSdFSF81Vw3
2uGzTeGikO2NSfsq3fTaxl/b4Fw1EXK262mrNv7yy2sIh6QcLCK9uC+CCli37OZx
CH8ZEXfKk1L07LCg/1FGS92H/cd/4zr6h99R9I/Gd3PjMCiztuvfskyfnMWLSfNQ
TpRDpP4JSjGNYZ1GqWHV4LCJQ5GckYxJTGcY8KaSIiU7XfFj0GyaUPk8S44PqWYL
D+QoTzRoXS68gHG5i3Zx6ABMIChXcM3bgg3rikA7AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUPmISAeIIoTbwgOwA4r428he1IJ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2ZjMTRlZWQxLTgyMzYtNDg0Mi05NTI2LTI2YjAyNjViNDJhMS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAJjUrgwDQYJKoZIhvcNAQELBQADggEBACkTNxa4wG71eHcFb4rArMMaTnUB
omMWSN6RBXWoKm6IBMOIrTCuMV6ZL98qDZzXhwxme3htVC9bMH/7L/m5kniZu63i
5tYFf93LV3GxL7TSuVawW1j1+d5tFjP2Q44ykKTGHjB+fYbfAmjvv0JTKCFMfzLV
HGAcsq+XcQohyb+xSycTuEYUzELbt+LTA4XsBMfv0sKJj43Z9bD/nWzGYKsSpT4T
tThhvc59WaEMG2DMUWBSNdXaglz+uvdOc4ZsbZKDQ4hcqUCzAN0dpdGINczL8heJ
xwxYyK9r3QGCDbB0hI6aJKo1tjwz78BW96Ooe5My6S8GFVRmlixVrsuLHqQ=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:34:22 2025 by rpki-client