Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa
File: 0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa (raw, json)
Hash identifier: X7LIzz8XsJqimUeeelyuBjqnpjHsd1vIlwmtDOSIm0U=
Subject key identifier: 34:EA:4B:72:65:48:EB:CB:AF:D1:9F:51:6D:A5:76:E1:08:0B:A9:E8
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 3E236E5263B8481E45145B3FF4F23F4B9D2512F8
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa
Signing time: Mon 10 Mar 2025 15:12:01 +0000
ROA not before: Mon 10 Mar 2025 15:12:01 +0000
ROA not after: Mon 14 Apr 2025 23:59:59 +0000
asID: 19047
IP address blocks: 70.130.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:23:6e:52:63:b8:48:1e:45:14:5b:3f:f4:f2:3f:4b:9d:25:12:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Mar 10 15:12:01 2025 GMT
Not After : Apr 14 23:59:59 2025 GMT
Subject: serialNumber=63ee8e1bf261129827e3f56e27272ff4c032a01673d792b0ac4bab552a5d0b45, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6c:3a:20:6f:ea:a0:e8:a6:07:82:91:34:21:
06:3e:d4:ab:e8:9c:3b:47:df:b9:a4:24:71:8d:0d:
d6:40:62:b0:65:2f:6c:50:8b:6b:d8:86:2d:44:2d:
8d:07:a0:49:55:fc:83:75:21:2b:92:f2:f6:8b:cd:
18:9d:5c:2f:3c:45:23:ce:9c:c5:e4:c6:96:ec:48:
53:ad:8b:52:c9:9d:79:76:64:72:69:6f:50:9d:73:
f8:56:d2:13:1a:d9:59:0a:97:51:1e:84:97:17:54:
c6:cd:d5:e8:5b:7e:d8:e0:7f:11:1d:4a:d0:42:b1:
d7:c3:a4:5a:be:b4:a5:e7:48:e5:61:b5:f4:fe:ce:
fa:4f:e5:d6:a0:dd:04:47:2e:61:96:cc:d2:3e:81:
20:26:bd:88:2e:f1:5a:10:4a:1a:a7:1e:f9:f9:f6:
dd:5e:30:d1:a5:d5:c4:6e:c3:04:de:74:15:56:51:
b6:4b:45:5b:4d:f6:eb:a1:b0:7b:66:8e:54:96:da:
ad:f6:65:c0:0c:a8:ee:f9:e8:c6:39:6c:9d:9e:82:
63:3a:1e:1b:8b:2a:9d:9f:e0:75:d2:3d:c0:50:31:
bc:dd:4b:a1:01:3c:ac:9a:dc:3e:d3:49:9a:c8:17:
4d:96:f6:dd:97:af:89:42:d0:87:63:3b:d8:1e:8e:
59:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EA:4B:72:65:48:EB:CB:AF:D1:9F:51:6D:A5:76:E1:08:0B:A9:E8
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d11215b-7a3d-4d28-b06b-d5e3ea095007.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
70.130.205.0/24
Signature Algorithm: sha256WithRSAEncryption
91:26:6d:f9:eb:f3:51:b9:44:9c:ef:3b:93:15:65:d8:d5:b9:
de:7b:9c:14:3d:79:71:37:6f:bf:cb:4d:4a:80:c7:52:64:8d:
dc:eb:1f:6f:b2:2c:ee:ad:de:fa:39:f7:52:a1:d2:44:f7:6c:
61:63:52:11:54:3f:92:0d:4d:c9:77:5d:3b:00:39:fd:c1:c4:
2e:b3:51:e7:16:e2:f4:93:ab:9c:a7:19:49:47:75:37:2b:d4:
19:26:f1:13:0a:4a:b1:cc:26:f7:0e:18:04:bb:9f:eb:a1:05:
d2:02:af:86:46:b8:91:b0:64:4e:f2:17:14:07:4e:67:5f:09:
01:3d:d1:58:c3:1c:c7:7e:0b:fa:90:88:b4:ea:e1:09:e2:ab:
dc:b3:b5:8e:bd:44:fb:b2:95:ba:2a:14:6d:5c:ab:5f:2a:6a:
6f:ea:ae:53:b7:be:2b:51:51:d9:a2:de:f5:dc:0f:17:21:d3:
12:05:35:5d:4f:4f:ee:8f:7b:03:93:3e:1f:10:29:ed:a2:a3:
b2:01:9c:a0:55:27:da:0d:80:2e:5f:f4:aa:a8:9e:1b:6b:85:
3f:38:42:58:69:5d:ed:14:9e:8c:3f:2d:12:f0:e4:8e:ed:93:
a8:d0:ad:5d:92:47:ac:50:17:4a:5d:4c:24:6d:d2:0f:42:a0:
cd:5b:11:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:19:20 2025 by rpki-client