Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92816db3-d6af-478e-a926-c3af5ece1efb.roa
File: 92816db3-d6af-478e-a926-c3af5ece1efb.roa (raw, json)
Hash identifier: /ib62MxhoQuYG4h9L+dTofbLZSBbGXdSZD4DdKitCLY=
Subject key identifier: 60:1B:5D:A9:31:2A:A4:C9:47:56:88:2D:3F:4A:B0:3F:52:46:29:37
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 317523528F3B32A020661C43D9DE1792C9B86808
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92816db3-d6af-478e-a926-c3af5ece1efb.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 46.137.0.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:75:23:52:8f:3b:32:a0:20:66:1c:43:d9:de:17:92:c9:b8:68:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:97:63:10:8d:92:70:cb:f8:78:af:e1:ff:1c:
cd:28:ca:40:b6:52:2b:7b:d1:08:73:77:a3:ae:12:
79:83:1c:8d:77:73:f2:0d:4a:72:de:4f:39:bd:43:
6d:1b:73:82:ec:90:1f:df:a9:38:a0:67:e1:4e:14:
8f:e9:6c:c5:84:9c:0d:99:49:be:5d:2c:60:b9:4e:
77:86:f0:b6:3c:2f:61:7f:87:fb:6e:ff:23:73:bc:
ac:34:42:b8:28:df:62:fb:0e:6b:94:6f:da:29:db:
76:0a:ac:da:cf:e7:24:34:ca:73:56:be:ba:66:48:
46:1c:96:27:03:bb:77:58:95:e0:d1:ea:e6:df:df:
f4:68:37:be:2c:a1:0f:4b:57:75:4d:ff:53:2b:52:
93:6c:4e:e8:85:db:6e:bb:22:85:c8:47:3e:f9:52:
8c:1e:91:63:eb:d6:7f:10:67:56:1b:ba:90:59:64:
09:34:8e:3d:9e:07:82:c0:ce:c7:e8:b4:a8:74:49:
0b:18:ad:59:e7:ee:d7:44:1b:fa:87:11:2b:3f:37:
d0:e0:7d:dd:59:ce:fa:a1:de:32:84:5b:0a:1d:22:
e9:43:27:09:a2:7a:0c:ec:91:77:0d:4f:18:64:4c:
d2:cd:47:87:a7:8f:98:65:94:0b:e8:ee:be:fb:a5:
47:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:1B:5D:A9:31:2A:A4:C9:47:56:88:2D:3F:4A:B0:3F:52:46:29:37
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/92816db3-d6af-478e-a926-c3af5ece1efb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.137.0.0/17
Signature Algorithm: sha256WithRSAEncryption
5a:73:bf:52:91:e3:84:4d:e0:b2:ec:5a:69:f1:94:48:6a:38:
b0:25:76:b4:9f:5c:b8:7b:e3:38:56:f0:b7:d9:37:a9:5d:b2:
44:82:a3:0d:c3:84:46:07:66:3d:b4:9e:bf:2d:c3:b4:8f:20:
fd:1a:03:75:11:4a:dc:5f:5a:ef:c0:cb:35:fa:be:93:f4:5a:
c2:c0:a2:d9:8c:f6:da:08:d2:56:53:f7:45:11:cc:bd:30:f3:
97:27:20:78:bc:ee:15:46:52:cf:57:22:6a:79:66:1d:d5:84:
98:a4:ef:f8:ad:44:0a:45:b2:e9:8a:df:ee:7c:79:76:af:ff:
94:9c:f9:46:3e:86:53:10:3a:7f:1e:3f:02:2d:30:ca:69:5a:
93:37:c5:e6:2b:ad:c0:fc:c3:c4:69:4d:d7:d9:0e:af:06:79:
00:35:35:35:10:58:e8:17:82:51:39:93:c4:af:78:e9:5e:fc:
1c:89:e7:c3:7a:13:d0:74:22:ec:4b:ba:95:92:d9:f0:3e:7e:
19:19:6e:01:a8:d6:e3:e0:81:ea:e2:3b:79:49:10:48:76:33:
00:37:bc:0e:23:0f:e9:6f:e2:a1:20:67:df:49:28:ff:cd:26:
3c:8e:88:30:8f:9e:cd:59:f3:62:3a:97:be:c5:dd:3b:3e:79:
f8:27:73:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:05:54 2025 by rpki-client