Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa
File: e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa (raw, json)
Hash identifier: NovkxUcljftIS274yXTzy3INPXR83E44DFoovmC1q5E=
Subject key identifier: 02:FE:70:2F:CD:E0:50:53:2C:D5:D6:65:EB:58:DD:9D:02:D5:54:5C
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 582B72C82E2880A37D5DA0584248D0AD1E118EE4
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d07c:c000::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:2b:72:c8:2e:28:80:a3:7d:5d:a0:58:42:48:d0:ad:1e:11:8e:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d6:46:f9:c4:52:64:b6:b1:10:98:16:66:9d:
a5:2b:68:4c:65:ad:40:8d:e4:ce:55:80:f4:aa:4a:
87:cd:8a:ad:c6:af:c7:9e:f4:87:99:46:ba:4b:66:
20:8a:16:08:2e:6a:38:45:98:bb:a8:ca:11:4e:99:
88:e2:67:00:ea:2a:97:34:9d:59:75:db:c7:23:4c:
8c:f5:bd:01:18:95:80:cc:b0:21:c8:26:3a:da:78:
76:3d:4f:24:5b:31:f0:3b:62:6e:d8:e3:b4:22:a5:
78:77:09:e3:a4:cf:e3:6b:a4:91:fb:4c:5a:28:03:
73:ba:0a:92:ff:82:bc:fa:9c:75:cf:ea:91:43:2d:
57:66:1e:40:4c:56:da:41:66:78:71:36:f0:c6:3e:
dd:94:08:88:41:22:98:99:2e:fe:1b:19:54:23:83:
aa:eb:ee:75:71:44:82:b5:32:f3:6b:52:22:ef:81:
69:a5:1e:c9:b3:aa:45:9d:14:0c:1f:ab:5e:e4:5b:
b8:47:32:56:1a:4e:bf:18:1c:fc:5e:15:86:f7:61:
20:8a:f3:e1:1f:50:5f:87:21:0e:32:3c:cb:bf:6f:
61:06:a7:72:94:7e:f0:7f:ec:e1:a1:b7:6f:a5:e1:
fe:75:38:40:72:92:cd:fe:bb:ef:8f:77:89:ba:33:
de:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:FE:70:2F:CD:E0:50:53:2C:D5:D6:65:EB:58:DD:9D:02:D5:54:5C
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e02b574a-4acd-4629-94f4-7fe8ac12a1aa.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d07c:c000::/40
Signature Algorithm: sha256WithRSAEncryption
77:73:f4:13:29:06:7f:81:ba:8a:b0:da:69:ff:f3:4d:3a:67:
fa:2b:86:b8:a9:32:88:6b:5e:d2:6d:d8:c4:e1:37:74:2c:6f:
85:a1:25:fd:c9:00:d1:94:dc:14:94:26:bd:32:65:69:2e:1d:
4e:b3:62:df:49:7c:45:06:d8:37:c8:db:29:9f:09:02:d7:c1:
bb:c9:05:e5:8d:94:f8:5b:5b:a6:56:4d:2a:c1:b3:1f:5a:c3:
92:2c:bd:e8:44:33:09:ac:68:fd:2c:67:e8:ad:cf:a0:b7:fb:
64:68:ac:4f:f2:d7:1f:3e:8f:33:d2:1d:2d:7e:e9:11:6f:77:
f8:8a:15:c3:6e:f0:fa:66:c3:ad:04:9b:d5:61:a2:5f:8b:47:
a6:88:81:89:a4:d3:d7:1b:ce:10:b3:dc:1a:c3:ec:68:8f:e1:
38:54:27:c5:98:d9:f2:6a:d1:15:04:7d:40:13:8b:89:b0:b1:
ce:78:8c:fb:d1:2c:d5:98:37:4c:c3:a6:99:83:6c:da:c4:29:
b3:e4:58:52:88:8a:93:48:eb:63:70:df:c7:b1:ac:11:28:3e:
46:96:1b:fa:8e:30:b2:0e:3f:93:6e:01:cb:98:c9:c1:98:89:
43:60:93:33:ca:37:81:85:11:39:4a:40:20:5d:44:b9:21:b2:
f6:55:ec:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:38:22 2025 by rpki-client