Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
File: c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa (raw, json)
Hash identifier: /qafPfUWODk1jZRysOzi0gU3d0g9+swGUZqRcQsHtE0=
Subject key identifier: 5C:24:A2:A8:3E:F3:B1:8E:B0:6E:26:B2:37:8B:64:A7:FA:D0:68:B3
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 20436333C3005A45AC9D073D28263FD9F346E77B
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
Signing time: Mon 16 Dec 2024 00:00:00 +0000
ROA not before: Mon 16 Dec 2024 00:00:00 +0000
ROA not after: Mon 20 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07f:6000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:43:63:33:c3:00:5a:45:ac:9d:07:3d:28:26:3f:d9:f3:46:e7:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Dec 16 00:00:00 2024 GMT
Not After : Jan 20 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2b:ff:cf:4c:53:8f:3f:d2:51:88:81:dc:cf:
45:ba:a6:5c:a1:8a:f9:d1:52:15:20:62:30:66:ae:
f1:0b:44:96:7d:6c:38:42:6c:d2:f0:65:b9:52:bb:
9a:88:fd:a4:8a:de:6c:8d:8a:e4:f5:68:d4:28:60:
b8:1c:1e:b5:0e:22:3b:19:41:4f:86:e6:8d:66:e7:
92:1e:e8:33:0b:a5:03:c3:b5:5d:29:64:4b:3f:2b:
fc:c7:6a:f3:8e:87:98:62:ac:18:12:dd:fe:05:bd:
72:68:12:b2:ff:47:b3:dd:2f:f6:39:19:da:58:49:
97:b6:98:c5:c3:4b:ee:c8:9e:18:ae:7f:44:2d:95:
17:b8:45:7b:ba:34:29:3e:64:d7:97:5f:20:f5:11:
0a:c7:55:4e:d8:32:63:41:54:82:56:89:ab:f5:75:
39:07:a8:fc:55:e5:1b:0c:93:8f:d8:8d:82:33:a6:
73:39:61:49:26:ee:9e:e7:e9:be:a1:74:2f:d5:ec:
ad:cb:95:f5:72:46:60:dc:d9:ec:72:89:36:81:9f:
ba:1f:c9:8a:2d:a8:19:ce:d4:2e:0f:23:71:a9:0d:
03:3a:f2:0d:61:e6:80:0f:83:fc:d9:c4:4d:46:bf:
88:d5:0b:c1:4d:04:0b:12:13:92:1c:68:13:01:82:
9b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:24:A2:A8:3E:F3:B1:8E:B0:6E:26:B2:37:8B:64:A7:FA:D0:68:B3
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/c9a8b3ef-477f-4e5e-abfc-7ed9a7d6c194.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07f:6000::/40
Signature Algorithm: sha256WithRSAEncryption
94:18:5b:8b:8d:79:aa:ec:e9:c4:23:06:c6:6b:6b:06:b7:27:
31:5e:13:28:33:c1:64:b0:b9:f9:41:56:04:19:30:55:8c:40:
7f:24:47:5c:e1:27:02:2a:2b:5a:ca:55:a6:65:41:98:ef:81:
93:a2:fd:0b:de:ff:cb:9d:df:d4:e7:96:88:b8:0d:6e:42:13:
3b:fb:e2:2a:58:80:e6:f8:c0:3e:b0:26:b0:24:08:b9:85:02:
6a:e2:05:57:25:4f:c9:bb:27:ed:76:0c:4d:a6:ff:5b:e6:51:
fb:73:e6:69:ac:94:72:26:26:c8:0a:7b:cd:8c:8f:86:0e:de:
d7:d7:35:6d:4a:1c:5d:7a:74:38:a2:28:b0:1d:ef:b8:08:a9:
1a:29:66:13:08:d4:8e:04:8d:47:a5:ac:5a:cf:d8:a8:0b:28:
b4:f3:14:57:24:51:38:90:b4:8f:28:35:22:47:78:cc:ef:d0:
51:e0:f1:96:71:e7:d9:35:56:71:3a:52:8b:c5:f0:d8:b5:57:
00:9b:bf:15:0b:ec:15:e7:4e:56:82:ae:68:fe:34:ac:e3:4c:
5e:41:6b:3c:b0:43:c8:86:37:55:82:4d:99:40:3c:0b:de:07:
77:fc:a7:13:6b:a3:d6:bf:41:d6:7b:6f:c9:b1:a3:39:5a:00:
f0:d9:cf:b2
-----BEGIN CERTIFICATE-----
MIIFYDCCBEigAwIBAgIUIENjM8MAWkWsnQc9KCY/2fNG53swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOGI2MjYzZGJlOTc5OWRkNjc5M2UwZTg4MmFkMjFjYjQ4
NDk5NzBiYzAeFw0yNDEyMTYwMDAwMDBaFw0yNTAxMjAyMzU5NTlaMHoxSTBHBgNV
BAUTQDgyYzA0NzJkMzI0NzY2MjZjMTA3ZDRlYTJjZWMwMzczZjQ0ZmUxZTQxNGZm
ODk2MTcyNWUxOTdmNTM1MmRhZWUxLTArBgNVBAMTJDY2MTVhMzhiLTNhZDctNDdi
Ny04ZmIyLTY4NWMzOGQwMDkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJgr/89MU48/0lGIgdzPRbqmXKGK+dFSFSBiMGau8QtEln1sOEJs0vBluVK7
moj9pIrebI2K5PVo1ChguBwetQ4iOxlBT4bmjWbnkh7oMwulA8O1XSlkSz8r/Mdq
846HmGKsGBLd/gW9cmgSsv9Hs90v9jkZ2lhJl7aYxcNL7sieGK5/RC2VF7hFe7o0
KT5k15dfIPURCsdVTtgyY0FUglaJq/V1OQeo/FXlGwyTj9iNgjOmczlhSSbunufp
vqF0L9XsrcuV9XJGYNzZ7HKJNoGfuh/Jii2oGc7ULg8jcakNAzryDWHmgA+D/NnE
TUa/iNULwU0ECxITkhxoEwGCm00CAwEAAaOCAiMwggIfMB0GA1UdDgQWBBRcJKKo
PvOxjrBuJrI3i2Sn+tBoszAfBgNVHSMEGDAWgBSLYmPb6Xmd1nk+Dogq0hy0hJlw
vDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2kySmoyLWw1
bmRaNVBnNklLdEljdElTWmNMdy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggr
BgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25hd3Mu
Y29tL3ZvbHVtZS9kYmE4ZjAxYy05NjY5LTQ0YTMtYWM2ZS1kYjJlZGIwOTliODQv
YzlhOGIzZWYtNDc3Zi00ZTVlLWFiZmMtN2VkOWE3ZDZjMTk0LnJvYTCBiAYDVR0f
BIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9u
YXdzLmNvbS92b2x1bWUvZGJhOGYwMWMtOTY2OS00NGEzLWFjNmUtZGIyZWRiMDk5
Yjg0L3VPRGF0ZHRZYzFIcmh0VVFWUXlyREswOEdlSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoF0H9g
MA0GCSqGSIb3DQEBCwUAA4IBAQCUGFuLjXmq7OnEIwbGa2sGtycxXhMoM8FksLn5
QVYEGTBVjEB/JEdc4ScCKitaylWmZUGY74GTov0L3v/Lnd/U55aIuA1uQhM7++Iq
WIDm+MA+sCawJAi5hQJq4gVXJU/JuyftdgxNpv9b5lH7c+ZprJRyJibICnvNjI+G
Dt7X1zVtShxdenQ4oiiwHe+4CKkaKWYTCNSOBI1Hpaxaz9ioCyi08xRXJFE4kLSP
KDUiR3jM79BR4PGWcefZNVZxOlKLxfDYtVcAm78VC+wV505Wgq5o/jSs40xeQWs8
sEPIhjdVgk2ZQDwL3gd3/KcTa6PWv0HWe2/JsaM5WgDw2c+y
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:10:24 2025 by rpki-client