Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/562f261e-21df-4517-9d2a-00eced567856.roa
File: 562f261e-21df-4517-9d2a-00eced567856.roa (raw, json)
Hash identifier: yFlGHLSdz4ObnHx4Xg4rduuqBX1QOgSRG78e3+72QeY=
Subject key identifier: 47:D2:5B:58:CF:75:DE:A3:B8:B8:42:C6:1C:50:E3:90:EB:DD:3D:55
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4399262F5F4F2CA76D8D7306726F8B140C296801
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/562f261e-21df-4517-9d2a-00eced567856.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 20.131.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:99:26:2f:5f:4f:2c:a7:6d:8d:73:06:72:6f:8b:14:0c:29:68:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: serialNumber=50ff004580b06223cf873a5898e7d9bd29032d5a6f7c04e4c2d93b7c7ef0f23c, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:dc:3d:a7:ea:5f:fa:56:a8:a5:23:40:af:35:
66:27:08:4f:2c:db:27:35:d2:c8:57:2f:96:56:c1:
b4:b7:28:e0:17:5d:00:68:0a:45:b1:20:fb:cb:5c:
c1:30:c4:68:e4:a7:27:a6:19:f6:b5:38:b8:ab:99:
76:62:df:a2:16:df:c3:66:69:bf:73:8f:75:a8:5d:
de:30:8c:0c:2f:55:89:47:d5:48:19:e3:43:5b:0f:
34:db:d0:2f:4d:9b:80:be:a9:e8:1a:c1:91:17:3d:
74:89:be:9c:d6:2b:57:d8:45:3c:3d:55:d2:f6:e1:
32:80:c1:0f:7b:98:ec:b6:79:2f:70:6a:3a:a1:1c:
2a:c9:36:b4:53:00:af:61:59:0f:87:3d:bb:07:d5:
4f:d3:20:3c:03:4d:03:18:91:46:18:0d:e7:aa:05:
4b:09:0a:fa:a3:cd:73:d9:8c:b2:ff:5c:8b:eb:e4:
23:48:7e:0d:76:59:c2:8d:2b:9d:ef:07:27:4a:cc:
96:a8:a1:41:df:05:8f:e3:46:ff:78:ae:4a:7e:49:
ed:cf:95:0f:35:21:ea:95:dd:65:ff:37:af:fe:2d:
73:ad:7f:e2:ab:b9:49:af:23:fd:b3:14:08:2b:94:
8f:6d:43:29:b7:69:43:67:75:80:30:47:6f:61:52:
55:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:D2:5B:58:CF:75:DE:A3:B8:B8:42:C6:1C:50:E3:90:EB:DD:3D:55
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/562f261e-21df-4517-9d2a-00eced567856.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
20.131.0.0/16
Signature Algorithm: sha256WithRSAEncryption
79:49:ae:39:0e:0d:25:14:a9:9f:30:18:5a:57:69:09:da:f8:
23:6c:39:38:0b:a7:ee:9a:d3:5e:e1:3a:dc:6c:b5:81:04:64:
64:d2:36:43:2c:60:5a:49:a1:88:8a:cb:37:f9:f1:a4:6e:09:
9d:58:f1:87:9f:89:3b:4d:fc:69:3a:01:e5:7a:87:78:fb:30:
89:b6:55:02:19:64:1d:1b:8a:6a:22:95:02:08:59:4d:ca:a9:
91:c7:79:35:84:c4:ba:b3:53:b7:4e:2c:0c:8f:dc:6c:bf:70:
12:20:f1:eb:66:13:48:9b:c4:f5:40:4a:ac:81:74:6a:10:c9:
17:cf:8e:77:7b:81:20:ce:b1:dd:62:c7:86:97:51:ac:bf:f3:
f4:9d:03:f3:14:11:b3:fa:d1:5f:e2:38:df:27:e7:6d:4e:06:
10:2d:21:f9:89:fd:7c:2d:31:6a:3f:ee:54:7b:7f:65:59:ac:
cb:b2:63:09:62:c3:fa:f3:ac:62:36:e3:fb:05:c6:55:07:23:
1a:62:45:18:69:ba:d8:30:37:51:88:e3:8b:aa:0a:6a:f7:90:
a6:a1:08:aa:33:c4:df:ce:56:4f:89:21:11:e5:dd:ff:18:8b:
3c:73:f8:68:13:4b:78:50:2a:47:7e:9d:2c:d3:19:57:0f:3b:
d1:78:af:c9
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUQ5kmL19PLKdtjXMGcm+LFAwpaAEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjI3MDAwMDAwWhcNMjUwMTMxMjM1OTU5
WjB6MUkwRwYDVQQFE0A1MGZmMDA0NTgwYjA2MjIzY2Y4NzNhNTg5OGU3ZDliZDI5
MDMyZDVhNmY3YzA0ZTRjMmQ5M2I3YzdlZjBmMjNjMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCi3D2n6l/6VqilI0CvNWYnCE8s2yc10shXL5ZWwbS3KOAX
XQBoCkWxIPvLXMEwxGjkpyemGfa1OLirmXZi36IW38Nmab9zj3WoXd4wjAwvVYlH
1UgZ40NbDzTb0C9Nm4C+qegawZEXPXSJvpzWK1fYRTw9VdL24TKAwQ97mOy2eS9w
ajqhHCrJNrRTAK9hWQ+HPbsH1U/TIDwDTQMYkUYYDeeqBUsJCvqjzXPZjLL/XIvr
5CNIfg12WcKNK53vBydKzJaooUHfBY/jRv94rkp+Se3PlQ81IeqV3WX/N6/+LXOt
f+KruUmvI/2zFAgrlI9tQym3aUNndYAwR29hUlVrAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUR9JbWM913qO4uELGHFDjkOvdPVUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzU2MmYyNjFlLTIxZGYtNDUxNy05ZDJhLTAwZWNlZDU2Nzg1Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwAUgzANBgkqhkiG9w0BAQsFAAOCAQEAeUmuOQ4NJRSpnzAYWldpCdr4I2w5
OAun7prTXuE63Gy1gQRkZNI2QyxgWkmhiIrLN/nxpG4JnVjxh5+JO038aToB5XqH
ePswibZVAhlkHRuKaiKVAghZTcqpkcd5NYTEurNTt04sDI/cbL9wEiDx62YTSJvE
9UBKrIF0ahDJF8+Od3uBIM6x3WLHhpdRrL/z9J0D8xQRs/rRX+I43yfnbU4GEC0h
+Yn9fC0xaj/uVHt/ZVmsy7JjCWLD+vOsYjbj+wXGVQcjGmJFGGm62DA3UYjji6oK
aveQpqEIqjPE385WT4khEeXd/xiLPHP4aBNLeFAqR36dLNMZVw870XivyQ==
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:32:26 2025 by rpki-client