Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdc0bec5-5566-4d7c-90f3-fecba50a5a5f.roa
File: fdc0bec5-5566-4d7c-90f3-fecba50a5a5f.roa (raw, json)
Hash identifier: 7jtzIYRccNWlHpFaD5ZCIJYvlsnm6xTdrarSv5+Lwmg=
Subject key identifier: 0D:8B:72:52:CC:64:86:F5:DB:39:68:B4:4D:91:8E:6B:C2:ED:1E:CE
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 56284FDECB575831578479EBD70D06EF111DD766
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdc0bec5-5566-4d7c-90f3-fecba50a5a5f.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 99.82.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:28:4f:de:cb:57:58:31:57:84:79:eb:d7:0d:06:ef:11:1d:d7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: serialNumber=58fe285ecba4201d1e2a4fc9948e0d82187ce07caa791108da643acb8c5d0390, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:a8:e8:ec:0b:a3:b7:a3:06:52:1c:eb:5a:31:
e4:a9:2c:10:13:06:0d:58:e1:2c:2a:7d:34:56:8a:
f9:55:0a:9f:d2:3e:50:43:fe:ca:8d:c2:cd:78:a5:
b1:73:5e:8b:d5:a0:9c:a5:d5:1c:86:77:1e:cb:16:
25:79:59:ed:86:28:74:9f:f2:38:ed:f2:92:b6:8d:
e2:a4:84:df:4e:10:1a:d8:d1:88:6d:4c:07:99:c8:
86:72:d4:8e:e4:b7:3a:66:b8:e0:c3:2c:0b:0e:74:
3b:fb:74:16:f6:f6:f3:0e:e2:a8:05:ab:81:ba:f4:
c6:ab:37:c8:39:18:9b:4a:3e:f8:4d:c8:75:94:1c:
f2:5f:1d:ce:cb:76:ec:16:0d:98:8e:aa:06:fb:b4:
53:de:a9:16:2c:44:01:f5:45:69:e3:a8:8b:8e:dd:
16:7a:1e:54:e6:22:4b:51:73:ff:ef:41:b1:09:7f:
b8:d4:37:b8:0d:b8:99:92:d8:a0:70:9b:06:c3:fb:
5d:33:ca:80:b1:e6:51:2a:02:00:49:f4:53:c3:87:
cb:a1:6f:11:6b:10:a6:d8:68:24:e2:d3:9a:c8:f1:
c6:e2:f4:c4:e9:15:3f:1f:1a:fa:6e:c3:6c:13:61:
6f:d9:c4:66:5e:04:e1:78:6a:6d:46:9a:9d:24:b0:
0f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8B:72:52:CC:64:86:F5:DB:39:68:B4:4D:91:8E:6B:C2:ED:1E:CE
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdc0bec5-5566-4d7c-90f3-fecba50a5a5f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
99.82.174.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:13:3e:59:e8:7c:fa:e6:fb:c9:58:72:76:db:3e:cd:0d:b3:
a6:a4:9f:a3:78:60:a2:ea:f2:6a:33:95:40:5b:d3:fa:37:cb:
41:65:5e:f6:61:fd:3e:0c:23:dc:8e:68:11:4b:af:dc:02:cf:
26:0d:de:ba:55:db:8c:cc:a1:8e:6e:8e:89:89:3c:d6:23:55:
6c:c5:7d:4b:0d:ea:0e:29:c5:11:11:64:da:07:77:d7:da:11:
69:b0:6d:1e:19:04:1c:36:c9:6d:27:22:7c:dd:22:cd:5e:41:
b0:b7:70:d5:79:2b:9f:04:fa:f3:9a:fd:11:1d:8a:ea:c5:70:
d6:db:2f:25:9b:95:d2:2b:30:82:1a:10:c4:88:49:14:84:0a:
82:33:97:83:1a:48:f5:05:a6:d8:c7:00:2d:d7:63:ae:aa:a9:
11:10:34:f4:c7:4f:87:62:fb:cf:c8:0f:65:be:4b:7b:c0:26:
b7:43:5f:b3:88:68:ab:16:99:e4:7c:ea:75:6f:cb:bb:3c:a4:
a7:82:a0:f4:9f:e6:53:60:a6:d0:0c:ba:33:5b:e4:09:7f:15:
12:d8:b4:3e:0b:60:be:19:18:7d:e4:64:bf:8a:97:16:f9:51:
47:33:40:41:14:68:6f:13:54:c7:87:20:2a:7a:a8:04:dc:69:
51:81:32:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 16:56:10 2025 by rpki-client