Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5a1e36bf-b942-4fea-bde9-d6e02f3d43f6.roa
File: 5a1e36bf-b942-4fea-bde9-d6e02f3d43f6.roa (raw, json)
Hash identifier: gZ4ZBGa7IELMy9D4U8n+OKfiufMAnZ4PZkhRQnB1xgQ=
Subject key identifier: E3:24:DB:3F:EF:07:FF:EB:B4:7C:70:4C:C2:43:56:39:32:9D:D5:4E
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 3D9FD5AFAFCD82BAF3927804968E9AE9E1CBCDBF
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5a1e36bf-b942-4fea-bde9-d6e02f3d43f6.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f3:ce40::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:9f:d5:af:af:cd:82:ba:f3:92:78:04:96:8e:9a:e9:e1:cb:cd:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e3:b6:6f:63:21:81:0f:04:7f:36:fe:f9:72:
f5:68:93:72:ac:d2:02:22:34:46:f3:ff:b3:62:4c:
8d:39:41:09:40:5f:1c:07:3a:c7:1b:4d:00:92:ef:
07:00:36:27:53:13:56:63:6d:e2:d4:56:2b:42:ee:
c2:67:b8:e2:a0:3a:92:2c:57:03:84:4c:4a:28:43:
f2:36:43:8e:0b:4e:cd:dd:d7:3c:6c:3b:65:b5:ff:
aa:6e:09:b8:6d:e9:46:f5:f7:63:ff:f6:4d:b5:52:
13:b8:36:6c:9e:f9:d3:7a:b1:a4:98:3b:cb:88:01:
00:a7:52:02:7c:76:75:f9:2d:71:60:cb:fd:65:16:
82:2f:c4:66:c7:22:30:02:66:17:66:2d:58:18:4a:
43:b7:0a:f6:77:4d:8f:d4:c6:67:87:74:fe:8e:1c:
7f:15:27:72:5d:fa:26:09:ca:d0:d3:a6:2e:8c:c5:
c7:aa:55:79:77:4f:cc:d3:d2:64:cc:61:68:7e:56:
58:09:db:da:9c:5c:22:36:9f:98:dd:a8:d3:b7:2d:
54:b0:2f:75:51:31:26:72:cb:a3:96:85:c1:19:8e:
ae:03:fc:fc:c5:14:54:bc:0b:18:d4:5d:fc:f2:41:
11:46:23:06:e6:50:d4:a1:a7:ec:72:22:c7:b3:45:
6d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:24:DB:3F:EF:07:FF:EB:B4:7C:70:4C:C2:43:56:39:32:9D:D5:4E
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5a1e36bf-b942-4fea-bde9-d6e02f3d43f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f3:ce40::/48
Signature Algorithm: sha256WithRSAEncryption
88:1b:62:b7:db:d9:80:14:98:9a:b9:33:fe:19:05:98:09:e6:
19:ad:ff:6c:94:2e:04:25:da:92:30:00:d1:e2:7c:ec:12:b7:
10:95:87:93:f4:c1:e6:0a:1b:a4:16:f3:83:cc:b2:44:1e:22:
94:3f:af:c9:0b:f5:69:a9:74:11:83:94:8c:89:0e:8d:f8:41:
ec:8e:14:91:1a:c5:c8:78:69:ef:4e:2f:21:e2:91:59:c3:3d:
36:b5:d1:8f:46:6d:be:10:f7:75:f2:61:44:4a:73:ea:8c:e8:
7e:91:23:67:fd:47:a5:99:05:01:80:7e:f9:54:b8:1e:ee:ba:
23:89:71:98:ec:29:7b:b1:29:dc:03:8b:cf:de:99:e6:5e:bc:
c1:32:d2:1d:cf:61:23:69:d6:f7:b0:23:0b:49:20:e6:41:d1:
b8:4a:00:de:d0:67:4d:a3:e4:4e:3e:ff:d2:34:fd:05:39:c9:
eb:95:78:c0:7c:02:d9:4c:38:a9:5c:6e:b0:21:fd:80:1f:bf:
8d:10:85:01:0b:96:18:59:96:36:29:e7:b7:9f:a4:06:d8:4e:
cd:99:99:45:f4:b8:26:fa:59:fd:69:bb:d1:59:27:96:2a:93:
ae:7e:09:c4:db:64:bc:28:4d:e6:5f:3c:77:e7:ce:43:aa:2f:
d8:b6:cb:77
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:10:10 2025 by rpki-client