Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a0bbc81-c72e-4bc3-aa05-9e9aee8f319e.roa
File: 1a0bbc81-c72e-4bc3-aa05-9e9aee8f319e.roa (raw, json)
Hash identifier: UOeC4v0DT86hxZhEXA1NfaWPRfftlO6J1BEZN98Gy3Q=
Subject key identifier: 7C:87:E6:5C:E6:F3:EA:70:E7:E9:7C:9E:67:6C:95:F6:58:80:7D:51
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 40402ED76DC2892A1C240FE0EB415399AD7BB024
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a0bbc81-c72e-4bc3-aa05-9e9aee8f319e.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d000:e000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:40:2e:d7:6d:c2:89:2a:1c:24:0f:e0:eb:41:53:99:ad:7b:b0:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:06:cf:81:46:eb:c3:68:d7:97:d6:ba:8e:45:
f6:dc:13:a1:0a:6e:18:0a:5f:d6:e1:e9:b9:c3:d7:
dd:c2:65:e1:6d:7d:16:8f:94:64:a4:6f:f1:8a:31:
92:b3:7f:39:7a:a0:98:b8:cb:3b:ca:1d:2b:39:77:
08:38:60:5f:f5:4e:d6:ba:3e:19:7a:c0:70:aa:fc:
a6:a0:55:a7:2c:7a:5e:16:be:28:0b:aa:76:4b:4f:
8a:1d:67:a1:3e:78:03:2f:58:91:1f:78:97:2f:28:
3b:2d:33:b1:98:be:96:89:34:8b:b6:f4:97:a1:1c:
f2:2e:2c:37:6c:f6:fd:62:cd:30:d7:92:12:15:17:
83:db:9c:16:a7:39:4e:c8:cf:b0:fc:73:21:23:bb:
37:da:77:ec:75:c7:ef:bc:8e:a6:c1:cf:1f:a3:00:
7a:1a:c9:5a:e4:d8:5b:49:81:37:b4:f3:0d:5e:b3:
a1:00:27:bc:5d:5d:b1:f7:64:5f:98:09:a0:65:84:
18:74:0a:29:da:ca:86:d8:3c:84:71:1a:53:74:b6:
62:13:74:92:62:65:0a:eb:8c:0c:dd:cc:13:fb:91:
c6:27:ba:f7:cf:f3:1f:48:ed:71:18:fe:3a:6b:e6:
54:d2:94:c4:d4:5f:11:79:95:05:62:97:10:8d:62:
9e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:87:E6:5C:E6:F3:EA:70:E7:E9:7C:9E:67:6C:95:F6:58:80:7D:51
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/1a0bbc81-c72e-4bc3-aa05-9e9aee8f319e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d000:e000::/40
Signature Algorithm: sha256WithRSAEncryption
39:a3:4d:26:68:71:45:a1:ac:66:38:fa:56:b1:89:31:b6:46:
eb:50:01:06:bc:bd:b5:58:79:36:2d:06:fb:03:f8:7b:9d:9d:
d8:4f:3d:f7:44:c3:14:6f:c9:56:ad:b7:10:05:b7:6d:79:3a:
38:bc:00:d7:0d:93:e4:96:1f:ee:7b:6d:09:fc:d8:c6:b4:24:
f5:9d:1d:2b:bd:75:85:e3:64:37:ae:42:c8:e6:49:7a:90:c1:
7c:d0:a1:5a:44:38:f8:61:60:3d:a8:e1:3f:cb:f6:3e:5a:b5:
80:1d:61:64:60:a3:7f:d3:7c:24:d9:1e:99:19:bb:11:ca:d7:
ee:a5:56:2a:b6:92:b2:81:c3:02:93:18:1a:f4:0b:58:08:bc:
78:db:3e:02:9b:b7:0a:d6:c3:24:0a:b8:04:0f:cb:21:42:2d:
b0:bc:a0:0d:87:fa:ac:93:f8:16:9b:6f:82:05:12:3f:f4:52:
f7:f3:34:45:e4:69:b6:61:3d:dd:4e:bc:d5:89:c5:17:e4:2d:
37:c2:79:cb:d5:0f:93:cc:3c:f5:ac:fa:7f:10:b8:12:23:c6:
8b:ad:3a:fd:c1:c6:a1:be:18:df:9f:75:43:65:02:a3:42:db:
fb:a0:8b:92:46:5c:35:42:25:73:d7:46:49:82:f4:74:83:28:
3a:66:17:cb
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUQEAu123CiSocJA/g60FTma17sCQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDEyMTYwMDAwMDBaFw0yNTAxMjAyMzU5NTlaMHoxSTBHBgNV
BAUTQDg2Y2RjMmI0ODVhNmFjNDU1ZDVmYjBjNjk0YWExOWJmMmNhNWNkNzQ4NDIx
NmFhZTY3ZDlmM2Q2MmY3ZjViMDExLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJcGz4FG68No15fWuo5F9twToQpuGApf1uHpucPX3cJl4W19Fo+UZKRv8Yox
krN/OXqgmLjLO8odKzl3CDhgX/VO1ro+GXrAcKr8pqBVpyx6Xha+KAuqdktPih1n
oT54Ay9YkR94ly8oOy0zsZi+lok0i7b0l6Ec8i4sN2z2/WLNMNeSEhUXg9ucFqc5
TsjPsPxzISO7N9p37HXH77yOpsHPH6MAehrJWuTYW0mBN7TzDV6zoQAnvF1dsfdk
X5gJoGWEGHQKKdrKhtg8hHEaU3S2YhN0kmJlCuuMDN3ME/uRxie698/zH0jtcRj+
OmvmVNKUxNRfEXmVBWKXEI1insECAwEAAaOCAiMwggIfMB0GA1UdDgQWBBR8h+Zc
5vPqcOfpfJ5nbJX2WIB9UTAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
MWEwYmJjODEtYzcyZS00YmMzLWFhMDUtOWU5YWVlOGYzMTllLnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0ADg
MA0GCSqGSIb3DQEBCwUAA4IBAQA5o00maHFFoaxmOPpWsYkxtkbrUAEGvL21WHk2
LQb7A/h7nZ3YTz33RMMUb8lWrbcQBbdteTo4vADXDZPklh/ue20J/NjGtCT1nR0r
vXWF42Q3rkLI5kl6kMF80KFaRDj4YWA9qOE/y/Y+WrWAHWFkYKN/03wk2R6ZGbsR
ytfupVYqtpKygcMCkxga9AtYCLx42z4Cm7cK1sMkCrgED8shQi2wvKANh/qsk/gW
m2+CBRI/9FL38zRF5Gm2YT3dTrzVicUX5C03wnnL1Q+TzDz1rPp/ELgSI8aLrTr9
wcahvhjfn3VDZQKjQtv7oIuSRlw1QiVz10ZJgvR0gyg6ZhfL
-----END CERTIFICATE-----
Generated at Thu Mar 13 23:53:05 2025 by rpki-client