Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa
File: b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa (raw, json)
Hash identifier: OXBNuB3ELA3Gs3VhBy72W5d7RWSkrRoBWaPNpp/xAbw=
Subject key identifier: 84:FD:1E:CE:F2:00:1E:B9:46:A6:1D:0A:30:EB:C2:DD:0B:D2:1B:36
Certificate issuer: /CN=A918806F0000/serialNumber=E7CADA5F0881D77BEA48B0768A3766B50065AF08
Certificate serial: 190E9702D199576EB9BDD9A3C59B5CE0B5DB3AC7
Authority key identifier: E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2403:b300:10fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:0e:97:02:d1:99:57:6e:b9:bd:d9:a3:c5:9b:5c:e0:b5:db:3a:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918806F0000
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: CN=bb9a9116-f615-462e-a680-5266b327e0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0a:80:a5:39:15:dc:5e:44:64:90:c7:35:eb:
df:ac:52:be:cc:1a:f5:79:8a:8a:2d:5d:30:30:20:
07:a9:ba:8a:c0:8a:1f:65:39:b5:1b:9e:0a:4d:38:
5d:88:11:b2:22:6e:fe:c2:36:a7:01:4a:d3:af:d7:
bb:3d:fe:f4:05:06:09:b0:4c:0f:75:f0:bc:a7:93:
04:d6:7b:7b:ec:8f:28:12:9c:9f:20:30:9e:d0:7b:
de:ed:4d:7c:5b:83:26:37:1b:a9:19:fa:b0:e0:2f:
6d:83:6f:44:5b:99:71:0f:ae:dc:e4:c5:e2:4a:bd:
94:3e:c1:b8:0c:80:a3:71:1d:74:63:3e:60:7e:16:
93:fb:73:66:ad:4f:bc:85:dd:d4:41:58:26:99:75:
84:15:13:ce:dc:a5:25:0e:9b:2e:04:d2:54:9f:99:
28:07:4a:9f:8c:5e:e9:d5:c8:9d:4e:74:9d:0e:55:
fc:5b:28:28:86:fa:48:f9:29:bc:7d:7b:02:92:e4:
f9:5a:36:04:76:7c:a9:dd:90:05:5b:9c:68:1e:36:
66:75:6c:0f:57:7a:00:84:93:8f:55:e1:79:68:86:
a3:1e:53:5f:a5:6d:03:11:ef:28:3c:a8:89:37:de:
5e:0e:fb:04:63:9d:7e:19:83:d1:02:6b:bc:00:32:
e0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FD:1E:CE:F2:00:1E:B9:46:A6:1D:0A:30:EB:C2:DD:0B:D2:1B:36
X509v3 Authority Key Identifier:
keyid:E7:CA:DA:5F:08:81:D7:7B:EA:48:B0:76:8A:37:66:B5:00:65:AF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/58raXwiB13vqSLB2ijdmtQBlrwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/b3d57ffd-cfff-4f0f-9a34-bd001a900e9e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/708aafaf-00b4-485b-854c-0b32ca30f57b/12e59001-35ac-4abf-858f-37b955a24b3f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:b300:10fc::/48
Signature Algorithm: sha256WithRSAEncryption
6b:f8:d7:bd:39:91:ed:9c:dd:0b:43:32:56:91:4a:96:b3:46:
76:7b:67:1e:d8:59:bc:f7:dd:42:eb:6c:e6:a7:25:35:dd:0f:
63:b7:46:7d:c6:31:34:5f:bc:ec:21:2d:3d:9e:dc:0f:39:05:
36:d1:6c:05:3e:ad:bc:dd:c8:ab:87:e8:77:f0:b4:10:14:95:
6b:5c:ca:bf:71:6d:44:9c:81:93:d7:50:5d:3f:eb:ff:61:2f:
b5:45:0d:6b:7e:fa:da:c4:97:2c:33:ac:cc:29:b9:98:80:fd:
b6:2b:92:27:17:f8:0c:23:d4:94:74:1d:5f:43:03:8b:4f:8b:
5e:08:6f:89:df:25:13:0c:16:89:f6:ac:08:2e:d2:0c:b3:76:
1d:a6:da:3b:00:94:b3:a5:a7:83:89:3e:72:24:f7:1d:5c:d6:
53:8b:1b:bd:05:d1:44:dd:51:58:12:78:ce:fa:5c:66:9d:16:
64:14:66:f7:4d:34:0f:2e:4a:b2:97:99:c0:f2:9c:ec:04:5b:
2f:37:1b:45:75:f4:ca:68:fd:5f:cc:92:74:d8:01:e3:db:fc:
4a:12:07:08:aa:52:6b:28:a9:51:b2:17:01:65:3a:83:d6:99:
b5:48:e5:f9:12:b4:aa:6b:8a:49:30:fb:c1:36:df:eb:a6:da:
2d:ed:b3:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:43:17 2025 by rpki-client