Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc5ab3f-c0af-4e2f-a690-fb5572bc26c8.roa
File: 5fc5ab3f-c0af-4e2f-a690-fb5572bc26c8.roa (raw, json)
Hash identifier: ma21nqsqc+JGQleyoQbrp4jz7JRdoFx+1w2SMyoVFvQ=
Subject key identifier: FA:30:D7:C1:EE:79:40:9B:87:2C:CB:3A:FB:F8:BF:53:96:24:A2:20
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4BA93A70C6E95E11E74BF73E8EA7B2956DDF102D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc5ab3f-c0af-4e2f-a690-fb5572bc26c8.roa
Signing time: Mon 02 Dec 2024 00:00:00 +0000
ROA not before: Mon 02 Dec 2024 00:00:00 +0000
ROA not after: Mon 06 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 54.116.0.0/15 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:a9:3a:70:c6:e9:5e:11:e7:4b:f7:3e:8e:a7:b2:95:6d:df:10:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 2 00:00:00 2024 GMT
Not After : Jan 6 23:59:59 2025 GMT
Subject: serialNumber=2b53bb732f9fe705634a7ebf631730a2c47496afac9b5cb2e8b7d5f19724b2da, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5c:8a:33:ff:ed:61:cb:3c:f7:bc:40:d8:4c:
1b:ff:23:8c:eb:5a:ac:de:3c:69:e2:20:93:01:00:
0b:38:df:48:3a:e8:bc:af:a0:a1:f5:95:1a:b3:65:
b2:34:5a:cc:39:72:9c:3c:4d:69:d9:3c:1a:05:47:
bf:55:92:bb:f2:79:e1:0e:ad:09:6d:9e:7e:3b:80:
36:83:ea:a5:5a:b9:40:42:93:fb:18:d8:6d:20:6c:
a5:84:97:cd:35:01:86:75:9b:cc:b8:70:38:a8:f0:
1a:04:26:69:6b:5e:6f:e2:a5:4b:ec:57:c6:cc:25:
8e:04:6e:ae:43:27:b8:74:0d:a2:ef:7b:30:83:db:
8f:e9:52:e2:38:72:84:8d:83:1e:94:3f:ec:a3:0e:
eb:bc:c1:2d:a0:88:dd:cc:94:86:c1:8c:fd:81:cd:
d0:9e:bb:a3:95:ae:26:84:cb:55:fd:bd:68:cf:00:
20:e7:46:6b:e5:ef:95:10:34:62:23:f6:46:f2:b6:
20:98:4c:0f:8e:9f:98:e9:b0:f9:52:83:2a:9e:27:
6a:7e:64:76:48:80:b8:a0:31:66:95:29:fd:a9:03:
e2:29:e4:4a:31:b6:60:50:46:bd:25:ca:ec:d4:e3:
25:31:35:a5:75:57:83:77:8c:d3:fa:61:03:48:3f:
a2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:30:D7:C1:EE:79:40:9B:87:2C:CB:3A:FB:F8:BF:53:96:24:A2:20
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fc5ab3f-c0af-4e2f-a690-fb5572bc26c8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.116.0.0/15
Signature Algorithm: sha256WithRSAEncryption
92:16:2e:12:fa:31:5b:43:e2:21:13:cf:33:4a:f3:b3:78:c7:
00:12:40:98:0f:aa:12:1a:d4:3c:98:49:27:eb:e5:78:94:ac:
9d:56:99:82:3a:b8:9b:33:19:d7:32:bd:82:12:ae:b9:89:a9:
d6:2d:16:d0:b1:36:a9:22:4e:46:98:b9:86:e2:b3:d3:f8:cd:
c7:d6:dc:ad:7e:a9:4f:8d:4c:6e:6f:37:fb:88:f7:2a:c8:78:
aa:8c:f9:57:d4:37:25:50:01:83:7c:e9:ca:96:7c:6b:73:b8:
13:09:ba:08:cc:3e:ba:e6:1e:42:4d:9e:bd:c3:ae:15:bb:61:
a8:0e:ba:56:52:6e:6d:bd:db:2a:49:9d:77:d0:72:b3:07:e3:
a3:8b:9a:0e:73:30:86:ad:ae:d2:4c:e2:bb:f5:8b:a7:24:01:
18:c8:ee:4c:73:d0:0f:7c:bb:fb:91:62:1f:1d:2d:0e:05:8a:
ea:a5:02:11:45:ee:46:79:2f:48:ad:fd:b8:37:fb:6c:09:fb:
e3:72:35:e6:dd:70:d4:ba:21:15:98:f5:5e:54:12:44:ca:81:
69:da:13:51:0e:82:2e:1e:69:ad:52:d2:0c:c1:c5:b6:2a:95:
c0:24:81:2c:f3:2b:a8:af:d4:10:41:d2:f7:6f:3a:4b:2d:77:
7a:9a:e9:85
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUS6k6cMbpXhHnS/c+jqeylW3fEC0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjAyMDAwMDAwWhcNMjUwMTA2MjM1OTU5
WjB6MUkwRwYDVQQFE0AyYjUzYmI3MzJmOWZlNzA1NjM0YTdlYmY2MzE3MzBhMmM0
NzQ5NmFmYWM5YjVjYjJlOGI3ZDVmMTk3MjRiMmRhMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCwXIoz/+1hyzz3vEDYTBv/I4zrWqzePGniIJMBAAs430g6
6LyvoKH1lRqzZbI0Wsw5cpw8TWnZPBoFR79VkrvyeeEOrQltnn47gDaD6qVauUBC
k/sY2G0gbKWEl801AYZ1m8y4cDio8BoEJmlrXm/ipUvsV8bMJY4Ebq5DJ7h0DaLv
ezCD24/pUuI4coSNgx6UP+yjDuu8wS2giN3MlIbBjP2BzdCeu6OVriaEy1X9vWjP
ACDnRmvl75UQNGIj9kbytiCYTA+On5jpsPlSgyqeJ2p+ZHZIgLigMWaVKf2pA+Ip
5EoxtmBQRr0lyuzU4yUxNaV1V4N3jNP6YQNIP6IFAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQU+jDXwe55QJuHLMs6+/i/U5YkoiAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzVmYzVhYjNmLWMwYWYtNGUyZi1hNjkwLWZiNTU3MmJjMjZjOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwE2dDANBgkqhkiG9w0BAQsFAAOCAQEAkhYuEvoxW0PiIRPPM0rzs3jHABJA
mA+qEhrUPJhJJ+vleJSsnVaZgjq4mzMZ1zK9ghKuuYmp1i0W0LE2qSJORpi5huKz
0/jNx9bcrX6pT41Mbm83+4j3Ksh4qoz5V9Q3JVABg3zpypZ8a3O4Ewm6CMw+uuYe
Qk2evcOuFbthqA66VlJubb3bKkmdd9Byswfjo4uaDnMwhq2u0kziu/WLpyQBGMju
THPQD3y7+5FiHx0tDgWK6qUCEUXuRnkvSK39uDf7bAn743I15t1w1LohFZj1XlQS
RMqBadoTUQ6CLh5prVLSDMHFtiqVwCSBLPMrqK/UEEHS9286Sy13eprphQ==
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:26:36 2025 by rpki-client