Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0db0b14c-a7aa-428b-966f-3b4091f7f54b.roa
File: 0db0b14c-a7aa-428b-966f-3b4091f7f54b.roa (raw, json)
Hash identifier: Cix1VAAS8DAgkdmIdtyA1JCi35t9m2ACbOzTch5CfME=
Subject key identifier: 01:B5:08:37:67:BA:87:B7:8E:6D:F4:F5:93:BC:05:32:08:40:15:74
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 25EEF54A90F207B26DD5388FB887B785F1DE58A0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0db0b14c-a7aa-428b-966f-3b4091f7f54b.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 16.185.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:ee:f5:4a:90:f2:07:b2:6d:d5:38:8f:b8:87:b7:85:f1:de:58:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: serialNumber=70b12b48010ee7654cd1f24e26be0827f5d09e9b510cc08de73f3c0a8c7f0649, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b6:42:26:e8:9e:3e:41:27:71:a4:59:4f:00:
18:36:d9:23:9a:a8:24:11:6a:53:61:56:95:83:d0:
1d:7c:12:89:6b:1a:0f:99:51:2d:ed:a5:81:8e:e0:
58:5b:02:04:1b:8a:7b:bc:ba:50:a5:2a:3e:f0:e6:
a4:62:5d:cb:34:9e:17:f6:34:47:35:07:de:5e:b4:
ce:2d:0d:a8:1e:30:8b:88:be:d3:a5:53:ce:1b:be:
70:ac:41:88:60:67:53:a6:ae:d0:de:c5:0d:e6:ee:
67:00:2f:46:6a:b4:04:ee:75:2d:47:69:ff:1e:1c:
e4:97:24:6b:55:cf:06:e4:a1:4c:6f:ed:43:26:1c:
03:a1:d4:f6:1e:ed:92:5c:7a:a8:e7:81:00:4d:b0:
c9:f6:ce:ef:6b:1e:3c:c9:b7:32:0d:4f:75:5b:ee:
e1:a5:8a:b9:c6:78:94:e1:31:3d:46:bb:b8:09:c7:
2a:11:a6:d1:a9:5f:20:a1:c5:ba:61:9d:40:39:85:
29:30:2a:14:8f:df:2f:e0:31:41:7a:97:9e:5c:30:
68:bf:47:d1:71:c5:57:e0:8f:2c:ba:84:99:52:7b:
cf:b9:b1:8f:8c:28:97:cc:bb:e4:77:d3:d1:8c:42:
ba:18:ad:45:88:69:bc:99:a1:6a:91:27:44:ba:3f:
38:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:B5:08:37:67:BA:87:B7:8E:6D:F4:F5:93:BC:05:32:08:40:15:74
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0db0b14c-a7aa-428b-966f-3b4091f7f54b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.185.0.0/16
Signature Algorithm: sha256WithRSAEncryption
72:56:73:97:67:4d:18:3e:9b:58:3c:f3:62:4f:14:9b:bb:13:
61:18:d0:34:28:d6:17:7f:e1:4b:2d:38:e0:51:27:95:ed:ad:
9c:2a:9f:e2:43:98:e0:fd:55:62:e3:66:66:0a:15:e7:6b:f5:
f5:90:79:83:4b:5e:b8:b8:04:a0:d5:16:84:e2:04:62:fb:c9:
eb:6d:1c:b0:e6:41:2d:59:6a:a6:f6:73:27:13:7e:8a:3a:99:
e8:e3:2b:2a:d4:57:35:3b:bd:65:9c:9d:5e:8b:ee:b2:80:b4:
8b:1b:15:3c:db:1c:9e:03:b7:9a:2e:01:6d:5f:a9:e7:8d:cc:
26:8f:23:08:c3:6a:5c:09:c9:43:e0:a9:96:fd:bd:9d:fb:65:
76:03:27:14:fd:8d:39:6f:78:fd:3a:ce:f2:9c:1b:f5:f4:d7:
18:e4:5c:34:6a:a1:6a:75:d4:f5:20:4e:e2:f6:41:67:c1:1f:
11:af:be:13:ae:39:ca:96:6a:56:c3:e9:0b:39:03:3c:de:1c:
da:4a:b5:35:fe:0b:33:44:c6:53:8e:88:4b:dd:53:b4:65:65:
5f:5a:31:88:d5:c1:09:73:58:1c:41:85:5a:3e:ef:60:cf:6a:
20:da:8c:99:0a:fa:70:e0:59:a6:6b:7c:be:d0:39:dd:13:72:
1d:42:44:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:43:29 2025 by rpki-client