Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c70b55a-adce-41fe-9141-1b6ded59f93e.roa
File: 4c70b55a-adce-41fe-9141-1b6ded59f93e.roa (raw, json)
Hash identifier: GEUeO5GUQDB37A4eFUJj0qpix4SmW7lBc2fCs/agSBk=
Subject key identifier: 00:C9:F7:B0:88:A6:76:54:8C:6E:A9:95:0E:EE:10:9D:8B:0E:0A:5D
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 0E037993C92FDAF101A79AAF32BD00B188F21B35
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c70b55a-adce-41fe-9141-1b6ded59f93e.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:f0fb:ec00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:03:79:93:c9:2f:da:f1:01:a7:9a:af:32:bd:00:b1:88:f2:1b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:99:a6:d4:22:bd:50:4c:66:16:ac:a6:24:a1:
df:07:97:af:11:e0:f7:88:1f:c3:f8:52:db:7e:84:
2b:8d:9b:4d:4b:f8:43:0d:1b:ce:36:c6:98:43:23:
df:25:75:8b:da:17:a8:85:2e:2a:d0:ea:b1:59:a7:
7b:2f:29:e4:d1:8f:45:fd:fd:33:a3:ce:ca:ff:91:
04:20:c2:df:a5:6a:6d:db:73:23:36:31:bf:80:5e:
68:04:87:77:56:d3:88:9f:bb:ed:f2:0b:4e:a8:41:
06:ac:68:a6:f2:5c:5f:44:dd:55:1c:03:74:99:5c:
87:d8:6c:de:56:fb:3b:29:29:5d:67:ea:ff:d3:f7:
03:91:a2:4a:a3:43:82:b6:eb:9f:4d:cf:43:82:25:
1b:5e:47:54:ea:98:b8:8f:44:f7:12:c3:81:85:40:
93:f6:9e:88:44:ed:d9:3c:9d:51:b0:1c:a8:9e:cd:
c9:60:80:30:29:f3:13:0f:0f:83:c9:c9:93:5d:fd:
77:69:93:ac:7b:f7:cc:7c:3d:39:a5:aa:2c:d1:52:
ef:1b:82:e4:78:78:40:ef:e0:24:b8:75:f0:75:e4:
81:d8:9a:14:af:ee:7f:7b:52:ac:ec:74:e3:a0:f5:
81:43:6d:d5:82:5c:28:0f:1f:4d:f7:1a:96:9a:74:
bd:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C9:F7:B0:88:A6:76:54:8C:6E:A9:95:0E:EE:10:9D:8B:0E:0A:5D
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c70b55a-adce-41fe-9141-1b6ded59f93e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:ec00::/40
Signature Algorithm: sha256WithRSAEncryption
2c:39:ba:55:ff:e4:9c:98:49:19:f2:8d:39:01:f1:23:aa:3a:
e8:fd:25:6b:22:aa:34:95:b9:a5:6e:4b:51:ce:47:1d:38:80:
13:e9:13:15:7b:59:28:02:d2:08:f3:2c:18:a9:a9:1b:cd:b6:
02:e1:74:b0:e9:8c:bf:2b:bf:a0:b5:81:f0:b5:8b:fd:0d:ae:
4f:55:96:66:9e:88:12:a9:ff:e7:db:22:5d:a3:92:5b:e5:f4:
8f:f7:16:12:0e:90:e0:ef:3d:2e:6c:cf:f9:c9:3c:5f:68:22:
d9:b2:5d:57:fc:db:f8:60:51:c4:76:c2:80:57:bc:a7:26:d3:
c0:d3:70:df:da:2a:a6:32:29:d1:9e:bc:ee:3a:c4:bc:ec:e5:
93:38:d5:da:cc:9c:5b:a9:ca:29:30:2b:d1:f1:05:19:b7:52:
75:47:ff:c8:49:b8:3d:70:3d:a4:72:5b:e8:93:ce:8a:40:c5:
5b:7a:d4:4a:40:dd:b9:3f:d5:40:b7:a8:9b:c8:19:d6:de:fc:
f2:bc:8c:e7:70:da:c6:fe:3a:79:39:45:2b:f5:73:75:5f:fb:
39:c9:74:54:fd:b1:20:76:34:e6:74:71:b5:5a:60:35:90:2e:
71:03:68:20:44:42:7a:8e:29:f9:16:dd:18:57:da:f2:80:a2:
15:a1:f6:5f
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUDgN5k8kv2vEBp5qvMr0AsYjyGzUwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi
MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTAzMDAwMDAwWhcNMjUwMjA3MjM1OTU5
WjB6MUkwRwYDVQQFE0BlM2ZlMjEzODc1YzIzZTlkMmQ4ZDNkYWMxZGYwOGI3ZTQ3
NDU3NmVkYjYyODM3ZWU1MjU1MjBiOGFhMzg2NTJkMS0wKwYDVQQDEyRmYmIyNzU3
Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCMmabUIr1QTGYWrKYkod8Hl68R4PeIH8P4Utt+hCuNm01L
+EMNG842xphDI98ldYvaF6iFLirQ6rFZp3svKeTRj0X9/TOjzsr/kQQgwt+lam3b
cyM2Mb+AXmgEh3dW04ifu+3yC06oQQasaKbyXF9E3VUcA3SZXIfYbN5W+zspKV1n
6v/T9wORokqjQ4K2659Nz0OCJRteR1TqmLiPRPcSw4GFQJP2nohE7dk8nVGwHKie
zclggDAp8xMPD4PJyZNd/Xdpk6x798x8PTmlqizRUu8bguR4eEDv4CS4dfB15IHY
mhSv7n97UqzsdOOg9YFDbdWCXCgPH033GpaadL2xAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUAMn3sIimdlSMbqmVDu4QnYsOCl0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ
fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h
Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4
YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk
NjJlNDhmMDU2LzRjNzBiNTVhLWFkY2UtNDFmZS05MTQxLTFiNmRlZDU5ZjkzZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3
LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEALDm6Vf/knJhJGfKNOQHxI6o6
6P0layKqNJW5pW5LUc5HHTiAE+kTFXtZKALSCPMsGKmpG822AuF0sOmMvyu/oLWB
8LWL/Q2uT1WWZp6IEqn/59siXaOSW+X0j/cWEg6Q4O89LmzP+ck8X2gi2bJdV/zb
+GBRxHbCgFe8pybTwNNw39oqpjIp0Z687jrEvOzlkzjV2sycW6nKKTAr0fEFGbdS
dUf/yEm4PXA9pHJb6JPOikDFW3rUSkDduT/VQLeom8gZ1t788ryM53Daxv46eTlF
K/VzdV/7Ocl0VP2xIHY05nRxtVpgNZAucQNoIERCeo4p+RbdGFfa8oCiFaH2Xw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:50 2025 by rpki-client