Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696eb00c-306c-4ff5-a6d2-84ee5e9a76d8.roa
File: 696eb00c-306c-4ff5-a6d2-84ee5e9a76d8.roa (raw, json)
Hash identifier: 2xagN3BS30r6PEJZFxSeT/dMkUlmD/KRWrfXLCt9QTs=
Subject key identifier: 9E:38:CD:95:FE:FD:D2:CA:94:1F:B4:08:06:7D:AE:01:0F:E1:C6:32
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 16463D23DDC4C544307D6F45ADC6BC3289455BC0
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696eb00c-306c-4ff5-a6d2-84ee5e9a76d8.roa
Signing time: Sat 21 Dec 2024 00:00:00 +0000
ROA not before: Sat 21 Dec 2024 00:00:00 +0000
ROA not after: Sat 25 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 35.34.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:46:3d:23:dd:c4:c5:44:30:7d:6f:45:ad:c6:bc:32:89:45:5b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 21 00:00:00 2024 GMT
Not After : Jan 25 23:59:59 2025 GMT
Subject: serialNumber=7f3021c3e9a8beb715340b2b67cb956912dd5485bdfce8d33178f42bbed7edc9, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:c1:e9:b9:38:3f:6c:39:6d:69:7c:7b:3b:
7a:26:04:b5:2d:30:49:9a:ae:f9:12:79:91:21:fd:
3d:66:1c:38:02:87:43:25:1a:53:93:48:9f:f6:5a:
ff:ee:ab:4c:cc:dc:b0:5f:2d:16:20:23:33:a6:d9:
61:38:a5:a1:2f:fb:72:f6:e8:66:9b:c7:f8:83:73:
04:2e:04:88:92:55:22:6b:d0:dc:c4:e7:e2:16:f6:
bb:0e:7b:b3:d4:19:87:99:24:e6:e1:fe:1d:50:12:
b1:7f:09:be:e6:53:2c:0b:0e:71:fe:00:55:a7:7d:
99:f4:15:78:d3:95:7c:9d:aa:aa:bd:99:99:7d:60:
be:6d:14:e0:95:fa:4b:fe:4b:6a:eb:54:26:0d:fb:
a9:06:04:d0:be:95:06:63:24:26:a8:d4:e5:08:38:
9d:50:ee:cd:b3:42:d4:7d:4e:ce:c7:a4:4f:a9:f8:
4c:69:df:25:cf:91:00:98:11:4f:23:5c:d0:45:1a:
1c:81:b8:34:44:6a:ba:79:15:37:b3:81:80:69:3d:
39:4a:6e:86:b6:01:ad:7c:5a:6a:4b:31:cc:2c:0d:
34:17:e4:5c:c4:0d:2a:13:68:19:8d:d0:52:ab:16:
ec:80:f2:ee:6d:c5:c9:47:36:75:60:9f:ff:3a:4b:
fa:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:38:CD:95:FE:FD:D2:CA:94:1F:B4:08:06:7D:AE:01:0F:E1:C6:32
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696eb00c-306c-4ff5-a6d2-84ee5e9a76d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
35.34.96.0/19
Signature Algorithm: sha256WithRSAEncryption
33:fc:e9:1d:fb:87:12:a2:53:09:9c:79:f7:8b:2e:7e:2c:2d:
44:d8:62:f7:3c:6e:6c:38:95:2e:0d:a0:bb:23:05:eb:f3:c9:
ce:42:45:4a:08:e4:7b:ae:43:41:0d:bf:20:78:be:b5:e1:47:
e7:30:6d:73:e9:ec:ce:60:4a:4e:4a:23:99:75:f8:a3:d7:aa:
6e:31:e1:f3:7e:a4:ed:1a:76:73:c9:f1:77:ec:36:02:53:e6:
6d:ca:36:dc:d7:99:aa:b2:28:d4:c0:c5:b2:a2:7b:85:83:25:
3e:f2:d7:eb:86:ed:f9:30:b5:db:34:ec:53:cd:ce:64:2f:ce:
92:75:26:13:59:24:31:fd:71:89:cb:3b:1d:43:03:0a:ec:d3:
5d:48:7a:0b:0f:ad:94:19:58:54:fa:61:de:a8:74:06:4d:7d:
c1:5a:4f:7e:0f:b3:03:af:43:fb:a5:4c:7b:a4:79:69:bf:7b:
be:f4:2b:c3:8c:a3:ba:21:4f:f6:71:3d:da:53:c4:39:4d:30:
94:fe:54:5d:aa:f1:ad:75:0b:2e:9f:97:81:9a:7b:6b:8d:32:
6b:8c:65:27:3e:48:bc:a7:e1:85:97:9c:5a:4f:0b:66:9a:4b:
59:23:fe:e9:cb:75:50:07:4f:89:3a:0d:63:4c:fd:6c:5f:53:
28:0c:86:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:09:04 2025 by rpki-client