Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b137e4-504d-4153-b358-07af94b82637.roa
File: 61b137e4-504d-4153-b358-07af94b82637.roa (raw, json)
Hash identifier: hn8KGnS85EgWwr9fGHf0CSCbxRsip6siG4q4lt7Evlk=
Subject key identifier: 9C:9F:EF:DE:0F:F4:B3:64:B4:6A:D2:44:F8:D7:1A:06:E1:FD:06:6D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5BB50BB8A8516F885F6F372510BA98794064E5AA
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b137e4-504d-4153-b358-07af94b82637.roa
Signing time: Tue 31 Dec 2024 00:00:00 +0000
ROA not before: Tue 31 Dec 2024 00:00:00 +0000
ROA not after: Tue 04 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1f70:3400::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:b5:0b:b8:a8:51:6f:88:5f:6f:37:25:10:ba:98:79:40:64:e5:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 31 00:00:00 2024 GMT
Not After : Feb 4 23:59:59 2025 GMT
Subject: serialNumber=a5a38b260aff2998f91fe21fd83261baf6855428d0b871b9d62d45447dc1ebe5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:e0:63:55:ff:2a:cd:f0:01:e0:45:1d:9f:69:
76:c9:e5:50:b0:4c:ca:29:ad:b6:ca:9c:5e:cf:8e:
89:7f:eb:db:b5:90:77:b2:17:84:dc:80:54:16:38:
63:08:f8:cf:57:68:76:a8:d3:e8:2d:78:67:b3:97:
a0:0c:93:4d:f9:a9:46:57:9d:6e:87:2d:c6:24:b3:
30:c8:82:f3:4a:98:4f:7a:ee:cc:c6:f5:a6:bf:1a:
f9:6f:9e:14:8f:24:69:cc:83:91:d5:a0:03:3c:e4:
8d:55:b2:cd:23:16:f5:98:c2:a3:f2:3c:c1:ca:15:
fd:d3:31:8c:ae:66:65:dd:46:48:ea:c8:67:53:d6:
0e:37:31:06:01:34:42:8b:02:d9:ce:87:28:90:e8:
8a:10:72:b4:04:74:b7:a4:02:d8:64:0d:3c:ed:99:
b8:6a:3c:39:6d:48:e7:fa:52:ce:2c:53:e2:6e:e2:
d9:1a:52:1b:c4:ed:81:c7:01:19:4c:12:c7:f1:54:
f3:08:8f:8b:de:c6:d1:b5:8e:0c:e9:8d:5e:43:dc:
1e:e7:0f:73:d8:d4:d1:60:51:a0:66:d8:e2:38:20:
7a:cb:7d:8b:6e:e8:65:a1:2b:9a:9f:8f:07:ee:1c:
99:3c:f8:1f:60:92:5e:fb:4d:73:85:c2:76:0c:c5:
bf:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9F:EF:DE:0F:F4:B3:64:B4:6A:D2:44:F8:D7:1A:06:E1:FD:06:6D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61b137e4-504d-4153-b358-07af94b82637.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f70:3400::/40
Signature Algorithm: sha256WithRSAEncryption
19:97:99:9e:59:0d:11:20:60:89:64:99:55:1b:61:95:65:37:
c7:22:2e:43:7c:02:e3:a7:0f:30:08:9c:ef:ea:43:65:9c:cf:
09:fa:51:7b:a9:f0:28:2e:91:49:01:8a:d4:3b:f0:0a:73:90:
fa:2f:a9:40:a1:e1:04:b0:b9:5d:f9:2e:c3:b8:8f:25:60:82:
66:f9:49:06:b6:6c:0c:b9:93:a3:f7:3f:de:5e:66:dd:aa:ff:
2c:e1:c9:fd:e0:79:d2:aa:3f:42:06:70:a9:4f:24:3d:78:58:
52:41:91:1c:a7:21:01:a7:44:40:67:73:0c:a6:8f:cd:4f:9b:
55:8c:37:b4:c8:09:51:e0:30:93:dd:d4:82:25:38:6e:b9:f8:
8a:ce:f0:bf:75:62:e3:a2:01:a1:4c:4c:a2:27:06:47:29:05:
be:bb:37:9a:83:37:bf:b1:32:15:66:6c:3d:37:1e:82:19:85:
c8:05:fd:03:9c:3c:ea:6d:bb:ec:ea:02:43:51:09:84:9a:8a:
c8:1b:ad:0b:68:e2:7b:26:a8:1a:84:d4:da:3d:3f:ea:8d:98:
65:3d:39:6a:e6:b1:d2:0a:a5:bb:02:bd:f4:ec:90:88:6f:e5:
81:d6:32:9b:b2:08:b1:c4:2e:3e:35:f3:8d:54:6c:2a:6a:17:
e5:18:7a:da
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:52:28 2025 by rpki-client