Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2d72c754-61b6-49c2-bcfe-7df26eb1a6d6.roa
File: 2d72c754-61b6-49c2-bcfe-7df26eb1a6d6.roa (raw, json)
Hash identifier: wwi0PjdMy1nJpsKi6XZxFpHXeG/bBfHOR+dND+UMvQE=
Subject key identifier: 39:2D:70:80:82:9C:12:F5:E1:17:DC:FA:0D:36:08:63:9F:56:F1:1B
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 4E7487D985E73117DED41AF4AF9E8F648959F561
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2d72c754-61b6-49c2-bcfe-7df26eb1a6d6.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d077:a000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:74:87:d9:85:e7:31:17:de:d4:1a:f4:af:9e:8f:64:89:59:f5:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:d7:3f:cb:31:c4:45:d9:01:8b:08:0b:2f:
4f:9c:ff:b2:61:29:06:6c:ab:0c:a0:52:90:9b:12:
9c:67:9a:52:d2:03:cf:00:7c:6c:c1:1d:c5:c6:d2:
8c:71:8d:d8:c7:49:23:94:c2:33:09:d9:49:71:8b:
32:ee:09:1c:85:47:f6:f6:e7:05:f4:12:80:d9:04:
47:a8:39:1b:73:5e:96:cf:9f:4c:f7:b4:78:3b:9a:
d3:7c:92:c4:a7:b8:21:0b:43:02:cf:52:b8:1d:51:
bc:13:82:4c:d9:52:0f:2f:cd:57:6b:12:1d:dd:78:
58:74:f9:39:d5:23:b8:81:6f:96:b4:2b:10:05:58:
bc:fa:92:e0:80:b6:42:92:2c:fe:28:31:d0:02:ba:
28:cb:51:f8:33:f7:8c:77:a6:e9:29:4d:9b:2b:68:
ff:65:68:72:22:56:b4:ca:e1:ab:6b:2d:f4:73:b0:
1d:b2:eb:da:c5:28:aa:98:75:3a:f0:17:b1:7a:84:
0f:ae:62:8c:43:e9:18:a5:f6:66:8e:9e:3b:f4:5d:
fe:18:b3:79:a3:fa:fe:10:17:5e:14:5d:2b:40:41:
a7:3a:67:9f:01:97:0c:49:0c:23:c1:74:18:89:12:
4b:15:23:ff:85:f1:bf:85:35:83:fe:8b:70:73:80:
ca:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2D:70:80:82:9C:12:F5:E1:17:DC:FA:0D:36:08:63:9F:56:F1:1B
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/2d72c754-61b6-49c2-bcfe-7df26eb1a6d6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d077:a000::/40
Signature Algorithm: sha256WithRSAEncryption
95:77:31:87:dc:4d:f7:ea:03:e1:c2:cb:12:6a:6e:ed:85:50:
dd:0d:b8:ee:05:33:db:51:29:72:48:10:ad:cf:b3:1b:ec:ed:
8b:af:9d:38:4c:62:2e:95:11:ae:34:24:b1:c3:10:e7:0c:4e:
87:4e:5c:1e:f5:b1:4f:a2:ab:f2:a7:d9:4c:c5:dd:51:e2:7e:
33:14:91:b0:79:bd:af:5f:b1:0f:98:8a:b2:41:fb:00:8f:33:
26:a4:06:ed:c6:3f:60:5e:2d:96:19:dc:55:f8:93:ba:db:ac:
b1:4d:af:1f:dd:2c:d9:9c:a2:6c:f2:83:7d:0c:36:0f:ad:15:
95:9e:c1:83:9c:80:01:90:be:9e:33:d9:32:ba:cb:3f:84:7d:
bf:41:b4:f0:b6:68:be:b3:92:3b:6b:42:cf:eb:2d:9c:20:d0:
63:75:19:da:47:11:04:d9:c1:23:ce:3b:2d:c9:77:40:45:04:
5d:be:6c:45:72:07:74:91:62:c0:86:f4:84:11:e2:0d:4b:9b:
69:c8:c9:e7:dd:ab:ca:bd:78:ac:70:13:50:b6:76:58:99:9f:
f5:10:43:ff:c0:31:16:a9:54:25:53:06:bd:db:bd:81:17:e8:
98:b5:e6:10:f0:df:1f:90:f9:d5:14:20:1e:be:30:a4:3e:2f:
dc:84:39:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:37:50 2025 by rpki-client