Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b17d003-7ff4-40e8-a4c6-e083c45ba5c4.roa
File: 3b17d003-7ff4-40e8-a4c6-e083c45ba5c4.roa (raw, json)
Hash identifier: 3R0oZJ9P2+lfOz65M+MNNrRpO70a/A7yTXmWyoPewzc=
Subject key identifier: 27:82:AC:0F:86:7F:37:07:18:9C:34:EB:E3:9A:28:C9:66:AC:EE:79
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 7AE8E19D768522368DBB8C154FB8FA22DFDBABEF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b17d003-7ff4-40e8-a4c6-e083c45ba5c4.roa
Signing time: Thu 26 Dec 2024 00:00:00 +0000
ROA not before: Thu 26 Dec 2024 00:00:00 +0000
ROA not after: Thu 30 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 74.180.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:e8:e1:9d:76:85:22:36:8d:bb:8c:15:4f:b8:fa:22:df:db:ab:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 26 00:00:00 2024 GMT
Not After : Jan 30 23:59:59 2025 GMT
Subject: serialNumber=73b69ec87e3ce8bac8af84180d4ed237f86b0c71d23986cf2e2af24068eb3ed3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9b:80:63:42:c0:da:92:56:4d:fd:23:df:2e:
ee:cc:95:7e:13:63:3e:98:c9:fd:ed:1c:d9:df:77:
ee:13:e9:1a:8c:03:db:57:61:91:30:3d:5c:bc:e0:
cd:65:04:c8:7d:de:8e:ed:bc:12:72:ea:17:a4:ff:
03:dd:36:79:6b:1c:31:1e:09:71:46:10:6b:f8:17:
c2:3f:fa:d9:51:22:c3:c1:73:11:87:3c:f8:96:e7:
84:d0:64:69:53:b1:25:02:bb:e6:5c:ef:2e:6d:01:
7a:70:d3:9e:99:04:c6:f9:9e:6a:ae:20:80:4f:f2:
c2:ba:7b:7b:bd:0b:d6:18:6b:bd:79:5b:5e:91:a0:
3f:e6:01:c7:06:f7:2d:85:10:e5:6d:f3:16:08:94:
89:12:95:84:40:89:ad:7a:8a:26:5e:b8:74:d2:bf:
e3:57:57:a8:fe:55:96:b7:3a:9a:da:5e:8d:c3:ce:
5f:f2:2d:12:38:ce:b1:08:92:ee:d3:5e:d2:09:de:
95:ce:dc:8e:69:90:70:8c:21:f8:3e:e2:40:5f:87:
4f:a3:8b:74:21:f7:89:f6:c0:fb:bc:e1:51:e9:f9:
cc:c7:c7:f1:dd:b1:ef:6b:4f:07:08:cf:a1:d8:4f:
7d:49:a7:8d:02:89:2f:25:fe:df:ec:38:dd:90:0e:
d5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:82:AC:0F:86:7F:37:07:18:9C:34:EB:E3:9A:28:C9:66:AC:EE:79
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b17d003-7ff4-40e8-a4c6-e083c45ba5c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.180.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1e:43:43:6a:2b:69:58:e4:48:af:4f:3a:a5:7c:1b:f0:c0:a8:
7f:f8:86:f2:45:92:2e:1b:9e:bc:33:b7:e6:38:59:47:b8:9b:
b4:49:8a:e4:09:0e:e4:3c:8b:ea:3a:88:f2:d6:f5:2f:b8:f9:
58:8e:19:c6:2b:c5:d9:12:fc:79:8b:07:11:ed:d7:6b:91:2b:
3e:e9:80:3f:9b:87:b9:67:33:3e:09:a7:aa:5e:a4:24:b9:31:
72:d0:b0:98:90:69:b4:eb:d8:34:8b:40:fb:0c:e6:8a:25:b9:
20:76:de:71:15:6c:59:96:bf:fc:ba:c7:8e:fd:74:39:ae:6a:
30:18:b9:10:03:79:5b:a6:48:59:0b:27:aa:72:42:d5:1a:7a:
5e:85:5f:64:c2:0c:b0:a9:88:f3:92:b2:c6:b9:3b:b2:7e:49:
fa:12:48:69:e5:87:52:6a:b9:57:c9:ee:7b:ec:7b:07:b0:cb:
47:45:af:9f:27:26:c6:ae:8e:41:48:f8:98:0f:93:e2:98:1a:
32:55:39:b1:8d:13:92:e7:a6:cb:8a:e0:45:0c:b3:a1:98:45:
af:a9:91:51:af:9d:18:74:5b:d6:fc:b5:b8:a3:2a:07:fb:df:
42:eb:cf:5d:00:7a:94:5e:2c:1f:bf:de:55:69:28:43:4f:b5:
52:e6:e2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:12:44 2025 by rpki-client