Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7715b0bf-30df-4697-9ca1-ba1e0267d3e1.roa
File: 7715b0bf-30df-4697-9ca1-ba1e0267d3e1.roa (raw, json)
Hash identifier: aVZ1DvNpSQvDQL3ptAHaX4QqEezBVRyLyZlDuswvEE8=
Subject key identifier: C0:12:BF:6F:87:B5:3E:94:F9:2B:52:BA:FE:98:DF:64:BA:AD:16:DC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 517270BB8948B50BCF7840EEA0B493597CD8854D
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7715b0bf-30df-4697-9ca1-ba1e0267d3e1.roa
Signing time: Sat 28 Dec 2024 00:00:00 +0000
ROA not before: Sat 28 Dec 2024 00:00:00 +0000
ROA not after: Sat 01 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 108.175.48.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:72:70:bb:89:48:b5:0b:cf:78:40:ee:a0:b4:93:59:7c:d8:85:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 28 00:00:00 2024 GMT
Not After : Feb 1 23:59:59 2025 GMT
Subject: serialNumber=fd2da271decb83492981234530bf7f8af64d2f4337c3059cc0deb0a0d4b42c3a, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5a:bc:35:cf:4f:15:2c:70:c6:1c:d1:a2:42:
c5:75:dc:a4:42:57:28:67:5e:8d:b9:80:f1:7e:ef:
ef:13:cf:55:a9:db:8c:64:81:e4:f8:5b:bc:32:75:
09:9b:8e:10:5f:8b:01:a1:c1:0b:df:9f:81:79:30:
21:0d:89:5d:b1:d5:10:f7:56:d6:65:dd:00:7e:a0:
1a:96:16:70:38:4e:66:5c:bf:6f:16:72:3b:7c:5e:
80:6c:4a:ac:62:8e:d0:b5:f7:87:66:35:d0:b2:a7:
8d:b1:ef:97:fc:1d:6f:59:1b:98:f8:52:f9:9d:b1:
7c:76:90:f5:f0:52:09:23:1e:55:1f:2e:21:25:75:
a9:a2:fc:2d:87:19:2d:ef:52:1e:26:60:14:8c:66:
19:75:1b:2f:d7:6a:13:e0:f1:e8:f0:7b:c2:d7:4a:
9a:45:fc:cb:90:af:ad:32:98:5b:f6:7a:7b:e3:ab:
4c:51:26:22:97:11:35:24:29:01:e2:11:16:77:b0:
44:56:23:dc:34:bb:ad:d1:aa:d7:db:24:b3:01:fe:
72:30:bf:fe:7d:bf:15:37:ed:2f:d4:e6:a5:f2:0c:
5f:e8:0f:3e:6c:c2:a5:4a:64:c4:96:13:9e:62:68:
59:ec:c4:f1:51:cf:00:c2:bf:ae:b1:23:d9:7d:53:
a7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:12:BF:6F:87:B5:3E:94:F9:2B:52:BA:FE:98:DF:64:BA:AD:16:DC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7715b0bf-30df-4697-9ca1-ba1e0267d3e1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
108.175.48.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:ad:d0:b4:dd:32:6a:e0:14:1d:d1:3d:27:36:ba:5d:b8:ba:
63:e8:ec:ff:77:a3:71:08:b6:9a:3a:db:b0:9f:44:d8:a5:7f:
34:73:65:e5:ad:21:8b:de:77:f7:3e:c8:2c:e2:c4:30:59:ae:
a4:bc:0b:f9:f4:c7:2f:cd:52:89:15:6c:65:fe:ed:2d:3e:94:
7d:85:1e:d2:13:53:44:1c:ff:ba:c7:93:41:e0:ae:6a:9a:12:
90:f7:67:e0:cf:d2:73:27:94:d9:76:b5:cd:2d:4c:a6:ed:3c:
1f:55:df:c1:53:63:b2:95:b7:ad:3a:e5:1b:98:cb:03:2c:aa:
37:d5:d6:3e:85:6c:09:c8:f0:85:e4:b3:1e:c8:ba:50:50:6d:
0f:93:95:60:52:36:cf:d5:e6:64:7e:4c:bb:ef:c6:af:50:09:
62:b1:3b:86:da:4b:82:fd:45:81:23:df:c0:72:82:7f:ce:5a:
d8:ce:5d:65:5f:89:2a:4b:71:9a:c7:32:dd:4e:46:10:54:34:
f6:ae:4a:6e:eb:d5:69:b6:be:84:97:03:9d:f2:0e:53:4b:aa:
cf:51:57:aa:8b:0c:30:51:b9:a6:12:67:6a:14:28:01:68:d5:
3e:1b:86:ea:e4:6f:c0:04:ca:71:fd:01:ec:48:42:f5:d0:aa:
d0:8a:6d:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:52:00 2025 by rpki-client