Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa
File: 11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa (raw, json)
Hash identifier: +eRdfpRNIatjnGdb29L+t5/EgrYUi2pJh3ElLsLbpZU=
Subject key identifier: 06:26:0C:AD:14:14:31:BE:25:F3:C2:AC:0C:49:69:A2:6F:B1:E2:69
Certificate issuer: /CN=A91CD28A0000/serialNumber=97EBF348F376B867FC76B2B2B91078C3DD494883
Certificate serial: 7497D0DDAF14E359030E3E5956E980F6AFB4A7FA
Authority key identifier: 97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 43.224.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:97:d0:dd:af:14:e3:59:03:0e:3e:59:56:e9:80:f6:af:b4:a7:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD28A0000
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: CN=4257e925-715f-47a2-893e-0e3f97ec7e22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f6:02:bf:89:1d:81:6e:b5:c4:68:ba:67:9b:
b5:92:93:17:da:db:89:38:cb:ed:59:9b:db:84:ce:
1f:0b:6b:10:32:39:fc:47:69:60:29:39:59:c0:46:
96:7e:39:f2:b5:16:64:65:f5:ba:35:5a:11:c4:c0:
62:bd:5c:7c:5d:72:b2:15:d1:36:f4:6b:7e:8c:f3:
1e:18:27:ee:2e:1d:1c:db:8e:25:63:e3:ba:ff:9c:
12:94:2c:ce:f9:66:f3:b5:f7:4e:a4:de:27:69:77:
6b:ff:8d:a9:25:1f:f3:3d:55:2f:41:8a:57:3c:ab:
c6:65:3c:6d:43:14:98:e3:ac:d8:e2:18:53:3c:50:
26:86:30:ff:32:76:ad:e3:ee:80:6b:89:a9:39:42:
93:8d:86:00:46:56:1e:82:11:a1:de:e2:36:0d:f3:
28:ba:47:f0:3f:94:a6:35:50:ae:55:f9:c4:4f:93:
47:b7:19:99:b3:db:13:8f:0e:00:c0:1d:0a:b7:0b:
8e:7a:79:5d:c8:48:cb:49:82:bc:43:ec:d9:a7:33:
7c:c1:c4:e8:00:3a:fe:3d:bd:43:7c:ea:36:15:39:
6a:29:b5:c3:8e:cc:11:2b:ec:46:5d:0a:b8:fb:7e:
ce:e1:02:8c:88:2a:31:bf:99:7b:76:6b:cc:e5:21:
dc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:26:0C:AD:14:14:31:BE:25:F3:C2:AC:0C:49:69:A2:6F:B1:E2:69
X509v3 Authority Key Identifier:
keyid:97:EB:F3:48:F3:76:B8:67:FC:76:B2:B2:B9:10:78:C3:DD:49:48:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l-vzSPN2uGf8drKyuRB4w91JSIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/11134e5c-49e1-4313-9cf2-7f2e61dd8b0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/c3cd7c24-12cb-4abc-8fd2-5e2bcbb85ae6/90ca90a9-a10a-44e7-82b9-1365746ba55e.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.224.144.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:a8:f0:ec:81:00:9b:93:58:24:42:2c:b7:7b:92:53:a5:fd:
4f:c8:72:bf:30:50:2d:9f:be:73:68:76:38:ba:fb:93:d7:f9:
f5:a8:ec:8b:b6:7b:e5:97:39:c0:cc:54:c7:1e:98:30:df:92:
03:1b:1e:2f:1e:5b:46:6f:c8:27:98:87:23:fb:96:41:e0:da:
73:62:e3:78:f3:57:98:8c:d1:4f:ad:db:4d:6b:35:81:eb:39:
94:2b:7c:fe:da:d7:e7:50:35:f5:27:d9:88:7a:6f:02:12:e5:
e3:a9:ca:6b:db:5b:62:60:bd:8c:37:79:6d:39:db:70:c1:f6:
9d:50:51:03:ea:50:17:83:51:b8:db:f0:33:de:c7:2c:71:fd:
db:ed:3f:01:4d:a3:0d:90:d9:3f:3b:09:a5:56:70:c9:26:e6:
7f:92:a2:00:22:81:f6:ac:60:ec:ea:5a:d1:5b:38:a3:46:69:
11:44:14:ab:4b:ad:ed:a8:41:76:fd:1f:7a:90:a9:b5:d6:d2:
cf:b7:e6:83:1d:0d:6a:12:7e:38:0f:c8:69:a1:33:46:be:50:
39:f5:21:78:82:75:4e:ff:32:95:9f:c7:65:58:de:71:ab:ba:
b5:15:42:88:f6:6b:60:23:c2:4f:f0:0a:63:ba:41:f6:af:69:
8b:10:0f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:17 2025 by rpki-client