Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88f7af7c-8c5f-4a1f-aeb3-e5a493a15e8f.roa
File: 88f7af7c-8c5f-4a1f-aeb3-e5a493a15e8f.roa (raw, json)
Hash identifier: RodrjvMyOrC9/DLtToNJbY3O8WzTbVj4VZj2LXKya6o=
Subject key identifier: 4E:7F:58:29:25:08:B9:D8:D8:E1:81:31:45:85:12:8D:03:B7:E3:E3
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 57D352FEE7FE28B2DEA2092B2C50EE5D51BD518C
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88f7af7c-8c5f-4a1f-aeb3-e5a493a15e8f.roa
Signing time: Tue 07 Jan 2025 00:00:00 +0000
ROA not before: Tue 07 Jan 2025 00:00:00 +0000
ROA not after: Tue 11 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:1f60:2040::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:d3:52:fe:e7:fe:28:b2:de:a2:09:2b:2c:50:ee:5d:51:bd:51:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 7 00:00:00 2025 GMT
Not After : Feb 11 23:59:59 2025 GMT
Subject: serialNumber=f3a9c1ac38cb38a20cd1a48ea220870a986044107b788c9693d19226becc54a2, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4f:00:a9:03:26:d9:dd:bf:13:87:4e:6a:7e:
ce:30:01:20:d0:82:83:21:8a:9c:20:f0:a4:8e:83:
c4:cc:a2:23:4a:66:14:fe:04:2f:23:a9:4a:7d:32:
7a:56:ed:60:25:1e:19:56:71:ce:aa:f3:da:b9:71:
a5:f8:a8:bf:ce:17:18:12:99:60:6c:3e:fa:0e:d4:
e8:48:25:27:f4:99:37:34:39:46:b0:40:be:7a:71:
34:31:f2:bb:e5:ba:84:18:69:3c:9c:ee:a8:c4:a5:
f3:06:39:9d:58:75:45:34:f1:31:6f:fd:37:6a:fc:
59:bf:79:35:ef:d6:4a:cc:ef:75:39:dd:91:95:0f:
a0:55:58:d1:8a:02:27:a9:ef:5c:25:57:d9:03:4c:
ab:55:df:fa:03:66:20:17:77:52:00:7f:57:f9:fa:
66:ff:33:93:fc:73:b0:7d:cd:51:c3:ef:51:5e:87:
c0:f8:0f:fe:89:71:34:b2:19:c3:e0:d5:7f:72:49:
23:59:b7:56:d7:7d:54:58:4d:b3:9d:da:25:f2:b2:
45:de:5c:23:76:30:ac:8b:da:51:87:80:2e:23:ac:
31:d7:ca:f8:ee:45:f8:2e:4d:fe:cb:cc:5c:9e:0a:
44:e6:cf:3f:57:c6:76:02:c0:7d:33:46:3c:e7:7e:
34:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7F:58:29:25:08:B9:D8:D8:E1:81:31:45:85:12:8D:03:B7:E3:E3
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88f7af7c-8c5f-4a1f-aeb3-e5a493a15e8f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1f60:2040::/46
Signature Algorithm: sha256WithRSAEncryption
73:bb:7f:0f:14:48:51:4b:cb:6c:d5:b0:2e:bc:08:57:59:5f:
a4:87:b8:87:d4:cf:6b:41:e5:09:e6:12:2f:45:d0:ae:f9:b9:
34:0c:c0:df:d8:0c:77:e0:de:b3:02:4a:3a:9d:e6:49:59:52:
67:e2:be:c1:cb:b2:54:fa:b1:9d:cf:33:b2:58:e6:6f:31:9c:
92:81:c9:f3:38:90:ea:e4:40:09:e3:74:73:60:62:31:32:a8:
34:25:c0:0c:48:05:1d:4c:0a:b2:e2:1c:ee:fe:d3:27:76:97:
f3:be:bd:0a:03:2f:5e:b9:66:08:e2:11:84:18:fd:72:18:c6:
af:b2:53:52:32:4c:1f:d2:37:dc:c4:26:2c:73:35:9d:c1:35:
a7:60:bf:61:72:ca:1f:b3:26:da:d5:52:43:b3:f3:34:8b:b2:
49:24:6a:1e:a1:02:99:eb:88:5b:1e:d5:db:67:60:e4:64:6c:
77:f9:ab:20:c7:4c:7b:72:5d:02:54:66:aa:7e:33:4f:5f:54:
f4:ec:83:f4:ca:39:1b:4d:d4:47:f7:ce:95:5b:71:49:b8:7d:
3a:eb:88:80:6c:52:ea:cd:07:da:b0:db:e4:44:0f:ee:ca:93:
56:04:a8:a6:2d:9b:52:58:e0:87:31:3f:ec:b7:c3:41:de:3e:
f9:9b:1e:24
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 26 18:32:07 2025 by rpki-client