Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/0a20f589-b730-4f17-ae25-5ed8e28f9161.roa
File: 0a20f589-b730-4f17-ae25-5ed8e28f9161.roa (raw, json)
Hash identifier: mTuL1yFXySOEDuiM8KKiz/tvyDKxtr+u9tBjFsvbiaw=
Subject key identifier: 3B:92:10:11:B2:A6:0B:41:D3:88:97:87:96:CA:CE:0E:C6:BD:3A:41
Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5
Certificate serial: 14D4D8B1F7E055BF4C365C56A9BAE4601C2FEB89
Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/0a20f589-b730-4f17-ae25-5ed8e28f9161.roa
Signing time: Mon 30 Dec 2024 00:00:00 +0000
ROA not before: Mon 30 Dec 2024 00:00:00 +0000
ROA not after: Mon 03 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 206.55.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:d4:d8:b1:f7:e0:55:bf:4c:36:5c:56:a9:ba:e4:60:1c:2f:eb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5
Validity
Not Before: Dec 30 00:00:00 2024 GMT
Not After : Feb 3 23:59:59 2025 GMT
Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:69:c5:93:c7:de:74:63:4e:35:6f:a2:19:
a9:a3:64:eb:f9:d5:10:04:f4:a3:74:49:97:98:bf:
d5:a7:4c:91:22:01:a8:68:f1:a6:fb:eb:9a:50:88:
2a:81:f3:63:bf:7a:8a:cf:c0:ab:d3:45:bf:be:d5:
01:83:79:4d:41:30:58:82:fb:c1:5f:f6:8f:1d:00:
c6:99:1e:a8:dc:11:77:ed:da:f1:3a:47:92:5d:e5:
d1:34:cb:96:35:57:07:96:e2:d2:a3:c4:da:b7:66:
9f:35:40:ff:7e:23:f9:f9:e0:8c:25:7c:3d:b0:10:
68:a1:2f:7a:16:66:4e:70:85:5e:a4:b5:4e:f2:71:
9a:a4:17:0f:07:59:92:be:4f:07:8c:d1:4d:ae:7f:
eb:53:bb:8b:0d:4e:5e:92:2d:f1:23:59:4f:1f:a0:
43:e3:34:13:a1:de:2d:0f:70:49:f8:29:44:5d:1b:
bf:7e:3f:94:03:3a:ca:a3:08:0c:d3:b5:7c:85:a0:
87:c9:b2:f5:18:90:91:16:98:93:0d:2f:a0:18:81:
d8:d5:c9:35:be:61:00:53:a1:cf:34:13:cd:61:20:
d0:a1:cd:47:5f:b0:41:7b:a7:b1:9d:f3:29:2d:97:
b2:36:59:45:c1:56:02:49:4b:99:a4:62:2c:55:52:
da:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:92:10:11:B2:A6:0B:41:D3:88:97:87:96:CA:CE:0E:C6:BD:3A:41
X509v3 Authority Key Identifier:
keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/0a20f589-b730-4f17-ae25-5ed8e28f9161.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.55.128.0/24
Signature Algorithm: sha256WithRSAEncryption
13:30:50:86:08:02:a8:8c:b0:49:60:dc:ce:7a:eb:f8:8d:b4:
4d:d1:9a:ad:a0:57:37:4e:b8:81:02:2e:51:c5:d6:17:7e:c6:
69:c1:42:ec:e9:d9:57:88:ad:3f:cf:d1:56:6a:ab:0f:1e:51:
ce:5f:25:26:71:b0:e6:f1:28:1d:1d:3e:22:4a:04:09:3a:31:
01:81:7b:24:fe:22:f9:e2:78:06:63:1a:4f:44:76:be:3b:ae:
49:85:1e:ce:fd:5f:6b:15:5f:a7:e4:dc:68:81:6a:fb:64:fd:
ba:80:1e:42:a7:23:01:df:9a:bd:e4:93:76:2c:fb:7f:72:15:
fc:0c:2c:4c:16:c8:db:aa:8f:f6:86:7b:62:70:2b:7a:73:8c:
74:fc:15:8f:d0:71:db:72:65:d5:07:78:b0:24:49:e3:1c:d8:
1e:89:8b:80:43:a4:1f:93:ba:12:81:8a:ac:45:b9:bb:60:04:
ac:ed:6c:ea:19:34:c2:6c:46:48:1e:04:74:ad:11:14:73:e0:
d4:a5:96:54:79:87:76:14:2b:1c:37:c2:69:4a:ca:b2:d5:ed:
9f:1d:99:67:49:67:2d:77:44:c9:27:a6:ed:0d:92:a5:ec:4c:
2a:e7:af:4e:56:f8:e2:a3:f9:ff:dd:a3:7d:59:13:46:a0:33:
a8:60:1a:6f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUFNTYsffgVb9MNlxWqbrkYBwv64kwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm
MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjQxMjMwMDAwMDAwWhcNMjUwMjAzMjM1OTU5
WjB6MUkwRwYDVQQFE0BiYTlkYzIwNGU3ZTg0N2JlYjA5YjM0M2U3NTc3YWFhODk5
NTEwY2YzMGViYjgwYTVmZmJkZWQ5NTc3ZThmN2ExMS0wKwYDVQQDEyQ0MjUxOWVi
OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDHtmnFk8fedGNONW+iGamjZOv51RAE9KN0SZeYv9WnTJEi
Aaho8ab765pQiCqB82O/eorPwKvTRb++1QGDeU1BMFiC+8Ff9o8dAMaZHqjcEXft
2vE6R5Jd5dE0y5Y1VweW4tKjxNq3Zp81QP9+I/n54IwlfD2wEGihL3oWZk5whV6k
tU7ycZqkFw8HWZK+TweM0U2uf+tTu4sNTl6SLfEjWU8foEPjNBOh3i0PcEn4KURd
G79+P5QDOsqjCAzTtXyFoIfJsvUYkJEWmJMNL6AYgdjVyTW+YQBToc80E81hINCh
zUdfsEF7p7Gd8yktl7I2WUXBVgJJS5mkYixVUtqlAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUO5IQEbKmC0HTiJeHlsrODsa9OkEwHwYDVR0jBBgwFoAUvJOucQ+vFCI2
CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04
NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2
ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1
NTUxNGQ5YzdkLzBhMjBmNTg5LWI3MzAtNGYxNy1hZTI1LTVlZDhlMjhmOTE2MS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx
LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADON4AwDQYJKoZIhvcNAQELBQADggEBABMwUIYIAqiMsElg3M566/iNtE3R
mq2gVzdOuIECLlHF1hd+xmnBQuzp2VeIrT/P0VZqqw8eUc5fJSZxsObxKB0dPiJK
BAk6MQGBeyT+IvnieAZjGk9Edr47rkmFHs79X2sVX6fk3GiBavtk/bqAHkKnIwHf
mr3kk3Ys+39yFfwMLEwWyNuqj/aGe2JwK3pzjHT8FY/QcdtyZdUHeLAkSeMc2B6J
i4BDpB+TuhKBiqxFubtgBKztbOoZNMJsRkgeBHStERRz4NSlllR5h3YUKxw3wmlK
yrLV7Z8dmWdJZy13RMknpu0NkqXsTCrnr05W+OKj+f/do31ZE0agM6hgGm8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:38:53 2025 by rpki-client