Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/182bb1db-9058-4744-b73a-73568471b556.roa
File: 182bb1db-9058-4744-b73a-73568471b556.roa (raw, json)
Hash identifier: p6Xn9ehokDUzf6oIf7syVCqjEfaKvVO0IOzt5YA9KM0=
Subject key identifier: 4F:AF:00:EB:9F:89:98:0B:C9:F2:EE:A1:5C:A6:9C:A1:83:A6:13:D8
Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5
Certificate serial: 088CFFA18B5164B927497298A4F4D48B8BEF8621
Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/182bb1db-9058-4744-b73a-73568471b556.roa
Signing time: Fri 06 Dec 2024 00:00:00 +0000
ROA not before: Fri 06 Dec 2024 00:00:00 +0000
ROA not after: Fri 10 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 76.223.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:8c:ff:a1:8b:51:64:b9:27:49:72:98:a4:f4:d4:8b:8b:ef:86:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5
Validity
Not Before: Dec 6 00:00:00 2024 GMT
Not After : Jan 10 23:59:59 2025 GMT
Subject: CN=42519eb9-9579-4979-bdaf-164abd0e290e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0c:01:ca:9d:f5:67:ac:63:e3:11:5f:5a:03:
8c:1e:bc:37:f0:5b:0d:bc:bb:87:a4:ea:e9:d9:ff:
01:d0:c5:b5:d0:96:5a:1d:a4:b5:21:88:e0:a6:30:
66:34:83:5e:03:69:76:67:74:5a:27:3b:fe:da:c7:
de:e5:2c:7d:32:4e:3a:cd:ce:8a:cf:80:da:11:4e:
a1:89:e8:70:a4:c1:f8:66:28:85:07:30:d8:ff:cd:
1b:b3:b7:53:4d:df:d8:1b:bc:14:fa:c5:a7:80:82:
14:11:0c:ff:90:b7:5c:77:0f:81:d9:e4:79:2b:d7:
98:8e:36:77:8c:d6:44:4e:13:61:56:85:be:14:67:
09:69:7c:f1:42:9e:cf:35:33:b1:23:9d:12:47:2f:
5e:42:a0:56:2a:8d:47:5f:d9:11:d1:36:83:7e:28:
c8:40:3a:be:63:c5:9e:cd:56:e7:6a:ca:a2:37:fa:
fd:ec:36:24:e6:80:1d:a4:20:ff:57:b0:87:89:4d:
38:7c:d0:71:cb:bd:68:46:23:ca:df:e3:5c:4d:81:
5f:ee:e8:78:e1:59:fe:c3:84:a2:d4:d5:90:ce:16:
b6:a5:22:ab:e4:f2:3d:18:81:61:fb:5f:f9:ce:03:
eb:1e:fd:fd:25:2f:25:24:18:13:ef:a4:e6:95:d1:
04:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:AF:00:EB:9F:89:98:0B:C9:F2:EE:A1:5C:A6:9C:A1:83:A6:13:D8
X509v3 Authority Key Identifier:
keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/182bb1db-9058-4744-b73a-73568471b556.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
76.223.180.0/23
Signature Algorithm: sha256WithRSAEncryption
43:d6:84:cc:bc:f5:81:86:dc:fb:00:bf:9a:fc:36:b4:9e:d1:
f9:30:94:d4:d6:ac:85:74:84:bc:23:3d:b5:46:7b:91:b9:6f:
5e:4d:2e:1e:4d:b3:07:e0:a2:6c:5e:c9:e6:bc:12:1b:1e:8c:
32:33:d0:a4:24:b6:ff:1a:01:5a:69:17:83:69:6f:fb:84:e0:
a0:98:59:34:1a:55:3c:05:10:83:d2:46:d7:bf:25:a7:65:95:
2c:bb:ce:6b:08:39:06:9e:c5:a2:82:14:d8:8a:5b:90:8a:dd:
b7:e4:20:83:9b:1d:44:f4:a2:10:4a:e4:cc:55:c9:c6:12:c6:
1a:41:98:4c:9d:88:cb:89:ce:e2:ba:f6:6c:46:1a:a4:00:92:
80:74:e6:5a:48:96:10:bd:ad:68:a0:23:56:0d:13:cf:cc:9d:
aa:fa:60:c8:2d:9f:1d:42:19:0e:ee:ff:13:1c:85:32:a7:29:
12:0b:b4:b9:a1:0f:b1:29:02:07:97:4b:ed:39:84:c2:7c:44:
4c:fc:15:4d:da:39:6d:f8:a9:44:43:cd:b3:6a:28:52:0f:bc:
5d:4c:9d:bf:fe:31:f7:86:ea:d2:fd:2d:4b:26:89:22:a6:a9:
6d:59:bd:49:a5:2e:e1:80:b1:0b:20:dd:88:69:df:da:0a:41:
09:3e:ac:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:27:55 2025 by rpki-client