Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/621433c8-e66d-4094-9368-914d94240f14.roa
File: 621433c8-e66d-4094-9368-914d94240f14.roa (raw, json)
Hash identifier: 7in2pOn/JsIhcjSEI8INE9IWQ3ov0iY9ijmOdn9Yr0Q=
Subject key identifier: 18:38:76:D2:F0:3F:6B:61:F3:E4:3D:69:C6:3E:00:9D:76:A2:BF:CC
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 7AE98E04C5661259B93077DCAADF5D0B207B8100
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/621433c8-e66d-4094-9368-914d94240f14.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:5516::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:e9:8e:04:c5:66:12:59:b9:30:77:dc:aa:df:5d:0b:20:7b:81:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ac:b5:81:0f:34:2c:07:b0:89:6d:ce:da:31:
e4:d4:ab:fd:ab:56:a3:0b:0f:2e:f5:ed:b3:df:bb:
e5:81:25:94:66:c2:84:06:f6:39:26:bd:fb:6d:63:
fd:58:e2:42:a4:4e:4f:6f:17:66:82:82:e8:7d:48:
3c:70:6e:04:e9:2d:c7:9d:fd:e8:12:53:99:77:f5:
53:aa:35:69:de:46:fc:a2:64:ea:ab:aa:ae:c6:af:
68:bd:25:d5:37:9f:e5:a8:1c:6f:69:f7:f6:c0:44:
ff:c1:e8:27:06:3e:99:c5:3b:6e:5d:9b:93:eb:33:
40:af:65:6c:9d:c4:3b:8d:b2:1d:4f:26:e9:f2:c0:
28:db:42:94:04:08:2b:dd:7f:7b:05:d4:bc:bd:bc:
05:4f:8c:87:69:ea:54:17:94:d1:ac:41:6f:11:01:
32:05:b7:8b:17:c6:c0:21:7d:a6:2f:af:58:9e:07:
52:e5:5c:89:18:f9:ee:be:b3:f4:f3:ab:b4:6b:c3:
be:2d:be:24:87:6d:4d:a0:b2:0f:77:5d:27:18:98:
0e:f0:51:4c:03:a0:71:2b:d4:bd:30:26:a9:7b:4e:
ac:a9:e2:f9:60:61:ed:30:a0:4c:38:18:4a:3b:7e:
90:98:f1:45:34:e1:15:1b:15:fa:aa:ae:17:c2:b5:
18:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:38:76:D2:F0:3F:6B:61:F3:E4:3D:69:C6:3E:00:9D:76:A2:BF:CC
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/621433c8-e66d-4094-9368-914d94240f14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:5516::/48
Signature Algorithm: sha256WithRSAEncryption
8a:47:42:79:93:fc:07:6c:27:4e:9b:2a:44:c2:ed:8d:2a:71:
fd:ef:8e:7f:69:8b:54:ae:8c:36:11:0c:13:8a:93:fc:aa:65:
e3:4c:b7:f7:6a:df:9b:af:0b:78:0e:f7:fb:54:7c:94:c8:f2:
73:02:41:ec:86:9b:f3:85:f1:4b:3e:9c:50:c1:81:bc:92:77:
83:da:f1:aa:17:06:df:22:d7:12:70:52:33:9b:7d:c6:cc:7f:
06:94:44:d1:d2:3f:e1:cb:32:94:d3:45:86:2c:59:67:79:f1:
a4:b3:94:ea:e5:73:b3:b0:ea:c8:72:f1:b2:72:c0:aa:d5:64:
0b:dd:4e:c2:88:f4:5f:38:60:3d:12:2d:18:11:9e:80:dd:ca:
79:c3:28:ab:cd:e8:45:68:e6:35:78:b2:b6:5d:27:2d:8d:6e:
28:03:fe:c3:87:97:da:92:4f:d8:d6:86:99:62:1f:c3:be:5a:
77:12:63:31:bb:2f:ab:7c:c2:bd:d9:18:bc:24:7a:57:60:e0:
91:f8:67:a2:ab:07:76:05:6d:3b:79:8b:c4:e1:96:6a:7e:5c:
7c:23:be:92:34:72:0e:c5:77:d3:7c:c3:18:49:16:74:11:b7:
b3:3b:b3:30:5b:68:46:80:42:2d:e7:cc:34:f3:69:7b:fc:b6:
c6:cf:80:0d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:31 2025 by rpki-client