Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa
File: e4e32025-6c2b-424d-92b8-3acaacb55baa.roa (raw, json)
Hash identifier: XI2DQJXy8i4TOrsuzoDqUVL00bWHOk7eiHq/FTVdoIg=
Subject key identifier: 87:6E:A3:12:0E:C5:C4:BD:56:62:D4:34:C8:E6:B0:BA:E8:6E:29:B8
Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
Certificate serial: 36CF86919EADAA3D7E924703C9CCA4880E88D080
Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa
Signing time: Fri 29 Nov 2024 00:00:00 +0000
ROA not before: Fri 29 Nov 2024 00:00:00 +0000
ROA not after: Fri 03 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 175.41.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:cf:86:91:9e:ad:aa:3d:7e:92:47:03:c9:cc:a4:88:0e:88:d0:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91609040001
Validity
Not Before: Nov 29 00:00:00 2024 GMT
Not After : Jan 3 23:59:59 2025 GMT
Subject: CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:9a:52:ef:14:74:c1:84:28:65:47:a3:82:cf:
72:c8:2a:9f:ec:13:fe:e8:0b:72:f7:1f:3e:fa:77:
88:f2:71:02:1e:0d:49:10:a7:07:15:0f:e9:d8:1f:
b6:29:ed:ee:9f:a6:15:28:cb:4d:87:75:28:1a:fe:
1e:1e:49:3c:67:fb:8a:8c:a4:71:48:b4:1e:89:02:
a8:3f:72:2a:8a:76:74:56:4c:af:f2:f1:08:4b:f5:
95:61:a3:65:f0:13:37:18:2b:63:f5:e1:55:01:e6:
0e:b5:38:4e:fc:24:80:d8:69:7e:d4:4e:3b:f9:1b:
ec:10:5c:91:f4:93:2e:d7:06:12:e0:58:be:f9:b7:
99:02:c5:e7:84:43:59:a6:99:14:99:64:29:be:9a:
b3:fe:28:49:44:75:70:c3:54:d1:01:24:5b:dc:86:
5b:6b:91:fc:ad:42:a2:a4:01:ac:ea:a3:5e:af:c9:
9c:37:e2:87:9a:3e:3a:d6:ff:04:c5:36:54:bb:72:
ee:64:66:52:25:88:72:82:6c:82:fe:de:10:19:b0:
6a:af:6c:67:a6:84:9c:51:08:14:9c:ac:ab:63:82:
be:7f:58:8c:13:99:06:ac:db:2b:93:cb:9a:a3:03:
e0:29:4f:1b:4a:5d:c5:21:20:08:08:1d:ec:60:ef:
e2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6E:A3:12:0E:C5:C4:BD:56:62:D4:34:C8:E6:B0:BA:E8:6E:29:B8
X509v3 Authority Key Identifier:
keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/e4e32025-6c2b-424d-92b8-3acaacb55baa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
175.41.128.0/18
Signature Algorithm: sha256WithRSAEncryption
25:29:c1:20:19:5a:14:d9:81:eb:86:1e:90:a0:b2:03:e9:b7:
84:2f:9e:f4:f4:60:40:b5:64:36:5d:aa:4c:5e:f0:58:3f:9f:
37:6f:ac:04:28:57:21:f3:5e:d7:55:ea:b1:8e:9e:d0:1d:88:
4b:23:d3:44:21:46:ba:97:10:23:ba:a7:0b:cc:1e:83:84:06:
87:48:13:77:c8:8d:d8:d9:ef:a7:2d:48:f6:83:2d:fb:5c:d7:
c8:fa:55:bd:ce:e7:73:fa:4c:51:54:89:28:4b:a3:af:0b:5c:
71:29:5b:5b:d8:95:ec:4f:f8:71:bd:06:e5:c7:f0:a2:a3:c9:
65:a3:ce:79:41:8c:26:f2:47:6f:84:2b:98:43:d0:9f:49:90:
ca:ed:3a:c4:75:68:83:01:28:d8:05:80:99:54:a1:8c:32:22:
a5:7c:65:c7:ef:7a:33:02:82:84:ea:0e:db:b2:ae:c4:17:91:
52:eb:d3:39:f8:be:a9:48:04:06:03:21:73:38:68:3d:5c:f3:
7f:89:cb:61:8c:9e:00:e6:0d:61:1b:35:fd:f1:56:c8:f6:f9:
44:10:4e:55:5d:e3:ba:56:7c:ec:b5:f1:34:92:ed:82:48:30:
89:7b:7a:14:93:53:82:9a:04:d9:c1:f2:20:45:f1:c3:c3:25:
f0:c4:b3:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:47:10 2025 by rpki-client