Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fde9c1c3-421c-4a06-bf2e-7aaf12c44ee5.roa
File: fde9c1c3-421c-4a06-bf2e-7aaf12c44ee5.roa (raw, json)
Hash identifier: Qwtm+lERXNe4euvuxhBuoaI/8TxWRlN3XZOs1wNpWI0=
Subject key identifier: 92:FF:59:26:C6:21:72:97:3D:6C:41:C8:D4:F8:22:6D:02:14:FD:B7
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 1F052A7D64FF84F94AF3F92FE5C6CE4BD51856B7
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fde9c1c3-421c-4a06-bf2e-7aaf12c44ee5.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff7:8000::/39 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:05:2a:7d:64:ff:84:f9:4a:f3:f9:2f:e5:c6:ce:4b:d5:18:56:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: serialNumber=5dc8fd4c80689a1b6593b0b02ec7e7e307837c60c616fc4a88d53f275e4ae775, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0b:19:71:2f:72:be:64:44:13:76:8c:c5:ef:
d5:d0:a9:34:5d:d5:c2:75:b5:7e:b6:3f:5e:8f:f0:
a8:e0:35:a5:9f:f4:11:c6:1b:ee:c2:0d:ee:da:a1:
28:01:91:9e:80:a4:1b:a9:28:41:41:dc:04:23:e1:
db:3a:8c:93:32:a6:81:d8:7b:10:09:45:ab:d4:63:
d7:06:40:44:13:2f:83:a7:e7:86:c4:12:d6:ad:1a:
8a:37:d3:ba:49:94:17:c1:7b:51:7e:71:d7:a9:4d:
a6:c5:0f:72:73:33:f5:b8:e1:dd:c2:65:6d:b0:f2:
02:33:ef:b1:5d:89:79:b8:8b:56:ee:a2:df:aa:6d:
95:bf:83:40:6e:b0:4e:d1:b1:eb:be:77:bb:2c:92:
9f:bb:bf:a6:eb:3c:c6:e7:64:47:e7:2e:ff:7d:48:
07:00:66:34:29:a1:09:ad:d5:37:fd:c3:8a:fe:cc:
d8:1b:32:20:d2:16:22:93:3f:a8:05:cd:92:0c:6f:
dd:49:a3:52:bf:85:3e:4a:43:75:d7:46:87:44:4a:
49:5c:e0:f8:73:ee:e5:01:e7:b5:bd:f7:9c:f8:2e:
2e:99:67:ab:f5:cc:2c:1b:74:38:05:71:84:c6:60:
97:6b:cf:5d:8f:99:c8:57:a3:62:cc:8e:89:f4:d7:
08:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:FF:59:26:C6:21:72:97:3D:6C:41:C8:D4:F8:22:6D:02:14:FD:B7
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fde9c1c3-421c-4a06-bf2e-7aaf12c44ee5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff7:8000::/39
Signature Algorithm: sha256WithRSAEncryption
d4:55:6d:42:4c:83:24:2a:fd:ea:f5:2f:43:2c:c7:90:06:71:
94:73:06:0e:e5:6d:60:28:89:e5:77:5b:35:fc:e9:3d:0a:35:
1a:bf:cb:ca:68:c9:74:f9:9d:3a:93:85:68:93:70:9f:d5:94:
ba:3f:91:84:dc:8d:ac:6b:f5:d3:1a:9f:d3:10:3e:1e:d6:6c:
11:ba:08:7a:62:b2:fb:71:15:ae:ce:3e:bd:ce:e7:2c:18:78:
d8:ca:8f:3a:ed:4b:3a:05:05:fb:e2:a4:ae:95:13:e3:4a:38:
52:d7:1f:e7:9f:c1:f4:85:96:db:c7:0c:f0:4d:54:e0:c5:c4:
b3:ad:77:3d:d8:8a:0c:0d:48:cd:ee:10:04:24:17:0a:2d:88:
a9:68:90:64:11:c8:66:35:2c:36:8d:a4:e8:05:7d:8d:f9:5f:
94:0b:6a:b3:0a:04:cd:f4:10:1f:81:2a:c4:03:a8:a7:e5:47:
7a:46:d1:59:b4:34:9c:41:81:8a:e0:67:9f:11:37:91:bc:3e:
c4:30:02:4b:a5:fc:25:c5:53:13:4f:0d:e7:ab:22:fe:41:fa:
3a:25:9b:dd:92:38:ef:24:aa:9e:6e:ba:f3:45:49:22:d4:64:
5b:6e:87:a0:c8:66:cf:5e:88:a0:0f:80:93:2e:2f:1e:b9:53:
40:c2:77:56
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Apr 16 16:40:03 2025 by rpki-client