Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa
File: fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa (raw, json)
Hash identifier: zL39jtHHDE5C9q8fCY5be4rhui5XdWWYGuf3rpHq1mI=
Subject key identifier: 32:DA:50:19:D7:ED:00:21:11:52:45:10:5C:1E:67:BD:37:A8:0E:40
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 159D5C1B807C362F1553DF27AE9B9874ABE8A991
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa
Signing time: Mon 09 Dec 2024 00:00:00 +0000
ROA not before: Mon 09 Dec 2024 00:00:00 +0000
ROA not after: Mon 13 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 16.56.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:9d:5c:1b:80:7c:36:2f:15:53:df:27:ae:9b:98:74:ab:e8:a9:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 9 00:00:00 2024 GMT
Not After : Jan 13 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:22:ea:87:28:ee:0a:9e:0d:70:cc:69:e5:37:
72:d1:48:21:24:0a:2a:cd:78:5e:1e:5c:64:71:96:
b7:02:6b:f5:8c:9e:8b:41:d1:9a:78:08:87:be:f9:
08:e3:4a:10:ce:c6:6f:48:bd:79:e6:46:dd:45:6c:
4e:7d:cb:f5:9d:d2:03:cd:1b:09:17:8a:cb:fe:ca:
52:9d:7e:ec:63:3b:cc:7d:37:fc:21:48:c9:c2:dd:
91:43:9f:e1:16:95:d0:fd:4c:14:9d:5c:b7:98:e0:
a9:ec:59:02:3f:0f:b3:f9:23:c5:f1:aa:79:88:e9:
a6:42:12:14:82:d8:02:8e:fa:37:03:3e:54:21:35:
d1:f2:db:fd:de:61:22:a7:e5:76:ae:cb:df:fd:ec:
7b:14:1b:4e:02:18:37:8b:73:9e:b8:68:b4:5d:4e:
99:16:4a:e9:8a:ab:5b:67:e9:c0:d5:39:af:ef:2b:
b7:cc:10:41:78:32:3a:1a:15:44:5f:2a:b0:f5:24:
95:07:8d:43:e5:d6:fb:b2:1b:19:70:fb:25:6e:79:
bd:35:3a:b9:68:2e:8b:83:08:c3:aa:fd:30:f0:11:
ea:d1:b4:81:cd:ea:91:08:81:59:b0:14:36:c2:64:
c3:5c:26:be:4d:59:d5:7f:2c:9e:98:01:d8:d6:f3:
8e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:DA:50:19:D7:ED:00:21:11:52:45:10:5C:1E:67:BD:37:A8:0E:40
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd06f39a-c396-42be-a7ec-5e30ccf1c98d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.56.0.0/16
Signature Algorithm: sha256WithRSAEncryption
36:3a:1f:1c:23:ed:fe:85:16:2b:a5:e1:34:16:2c:80:d9:b5:
09:8e:4e:f6:29:91:d1:71:34:50:12:49:4f:97:67:96:5f:70:
ac:21:73:5e:ea:12:00:ba:73:a9:0e:a3:84:aa:6a:d1:17:09:
72:5b:72:99:22:dc:9f:52:f4:7a:5c:69:c4:ff:b3:b5:ab:1e:
65:f7:5b:0c:6a:c6:1e:56:69:8e:d7:10:00:3b:e2:9e:62:f9:
3a:da:11:12:e4:74:03:0f:86:c9:05:73:c9:0a:12:13:18:9d:
d3:2d:c0:24:41:8b:ff:9b:82:4b:19:8a:89:a3:49:cb:f1:5c:
71:c3:c6:2b:87:36:ff:6c:bd:d7:e0:3b:97:b1:b3:4c:e9:d6:
b2:11:12:eb:73:cf:99:56:b6:45:ba:ea:1b:91:6c:d1:17:23:
1f:c6:69:57:6e:be:fe:59:53:27:06:60:b2:57:ea:d7:97:6f:
3a:c2:97:dc:d3:e4:6e:88:9f:e2:e7:0b:eb:c4:b4:a4:a0:d6:
f8:3c:ea:95:68:c6:1d:28:51:0d:10:a9:73:ea:eb:e8:3a:e4:
77:f2:0a:2a:44:19:0c:0e:fe:b0:a9:14:96:86:58:92:18:9b:
45:89:e4:37:6a:65:59:70:9d:44:93:a9:03:f0:ff:66:9a:85:
a2:61:0a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:13:14 2025 by rpki-client