Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c002824-06b0-45d3-8e29-bcc68b85dc44.roa
File: 8c002824-06b0-45d3-8e29-bcc68b85dc44.roa (raw, json)
Hash identifier: c15lHJX1a+S0aS6zd77n/KFlTnHrYG9xbQtT7kgoE0k=
Subject key identifier: 59:EE:58:4F:50:2C:E2:77:9B:27:4F:0B:48:C0:31:27:0A:CA:49:02
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 6239BBE8DB2B3F433669AB6F669782FDC0D73269
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c002824-06b0-45d3-8e29-bcc68b85dc44.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 198.13.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:39:bb:e8:db:2b:3f:43:36:69:ab:6f:66:97:82:fd:c0:d7:32:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: serialNumber=373651e3f496200df3bb2ff9a355ad42d3987631f1ecc000e9d3757abb2aac9b, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6e:41:95:00:1e:60:aa:dd:6a:8c:0a:c8:e4:
13:6f:13:7d:f9:4e:17:83:36:79:e6:29:0a:7a:cb:
07:ed:db:27:0e:1d:24:ab:24:19:4e:97:9c:68:f0:
c2:9a:f9:2a:5d:76:80:af:f9:0f:25:79:1d:09:94:
52:15:c3:bf:c5:21:cd:f3:bd:4d:92:62:b7:6f:9a:
f5:30:fe:0c:ae:0c:9f:52:db:05:9c:fa:33:46:5a:
8f:f9:07:b7:6f:5a:28:4b:b1:b3:08:10:9f:fb:22:
1e:81:24:10:30:0c:19:94:8f:54:3a:30:27:e7:03:
4f:e6:b1:55:10:95:5e:3a:49:1e:58:64:27:c7:37:
e9:d7:bc:0e:4f:1d:0c:2d:b4:01:27:5c:ef:60:17:
cb:2f:4b:37:ce:fc:76:05:7c:cf:d0:d4:ad:4e:e1:
63:dc:93:8e:61:5e:a0:68:55:79:ac:d2:a0:1a:6b:
f1:3a:06:0e:e7:96:8f:60:f4:47:a6:12:44:4a:c0:
b9:f6:bd:a8:a4:23:33:48:49:2a:53:a5:6c:5f:31:
e9:d6:ca:47:b4:29:3c:d0:fa:d3:d5:1f:7a:33:72:
57:65:94:cb:d5:51:ca:4c:15:57:f4:de:66:05:08:
89:20:83:0a:3c:8e:66:13:39:a3:47:f1:59:4f:34:
29:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:EE:58:4F:50:2C:E2:77:9B:27:4F:0B:48:C0:31:27:0A:CA:49:02
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c002824-06b0-45d3-8e29-bcc68b85dc44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.13.96.0/19
Signature Algorithm: sha256WithRSAEncryption
17:44:22:40:1e:d5:33:1c:73:53:96:72:7e:92:c7:81:c1:fd:
50:e5:b1:b4:ea:dc:48:55:66:c5:f4:81:57:7c:37:ad:41:83:
a6:ac:6f:c7:35:3e:49:e6:f7:e9:e8:23:38:52:29:bf:5c:37:
a0:4d:59:1d:fb:c0:23:65:38:17:bf:f4:17:0d:5e:0f:cf:10:
b3:ff:84:6f:15:d8:6a:0c:a4:fd:e0:a0:7a:ec:e8:d7:2b:be:
03:9c:02:78:e6:fe:7c:c4:41:49:5f:9e:40:49:99:a8:09:34:
ae:26:ab:5d:c2:2b:27:d1:0b:bb:11:ab:36:f4:23:3c:40:c1:
ed:7f:9d:08:f7:56:65:0c:56:aa:ad:9a:8f:87:25:7b:08:0f:
03:54:51:e6:7a:2e:26:12:6c:4c:4d:12:da:2b:61:76:15:60:
57:54:51:ec:e5:6a:41:c6:10:64:35:63:74:1f:23:12:81:53:
75:ef:5d:aa:ea:53:bc:52:73:63:ce:8c:2f:86:ec:46:a9:1f:
b7:0a:da:48:68:8d:0b:3d:30:c7:49:f4:06:ce:65:b4:15:5c:
92:27:a0:46:29:2b:16:c1:5d:7a:f8:ac:47:69:c2:04:33:3f:
aa:a5:6c:86:19:64:f1:d6:7e:20:f2:00:90:a2:af:94:62:1f:
77:73:f8:40
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUYjm76NsrP0M2aatvZpeC/cDXMmkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMTAzMDAwMDAwWhcNMjUwMjA3MjM1OTU5
WjB6MUkwRwYDVQQFE0AzNzM2NTFlM2Y0OTYyMDBkZjNiYjJmZjlhMzU1YWQ0MmQz
OTg3NjMxZjFlY2MwMDBlOWQzNzU3YWJiMmFhYzliMS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC9bkGVAB5gqt1qjArI5BNvE335TheDNnnmKQp6ywft2ycO
HSSrJBlOl5xo8MKa+SpddoCv+Q8leR0JlFIVw7/FIc3zvU2SYrdvmvUw/gyuDJ9S
2wWc+jNGWo/5B7dvWihLsbMIEJ/7Ih6BJBAwDBmUj1Q6MCfnA0/msVUQlV46SR5Y
ZCfHN+nXvA5PHQwttAEnXO9gF8svSzfO/HYFfM/Q1K1O4WPck45hXqBoVXms0qAa
a/E6Bg7nlo9g9EemEkRKwLn2vaikIzNISSpTpWxfMenWyke0KTzQ+tPVH3ozcldl
lMvVUcpMFVf03mYFCIkggwo8jmYTOaNH8VlPNCkDAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUWe5YT1As4nebJ08LSMAxJwrKSQIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyLzhjMDAyODI0LTA2YjAtNDVkMy04ZTI5LWJjYzY4Yjg1ZGM0NC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAXGDWAwDQYJKoZIhvcNAQELBQADggEBABdEIkAe1TMcc1OWcn6Sx4HB/VDl
sbTq3EhVZsX0gVd8N61Bg6asb8c1Pknm9+noIzhSKb9cN6BNWR37wCNlOBe/9BcN
Xg/PELP/hG8V2GoMpP3goHrs6NcrvgOcAnjm/nzEQUlfnkBJmagJNK4mq13CKyfR
C7sRqzb0IzxAwe1/nQj3VmUMVqqtmo+HJXsIDwNUUeZ6LiYSbExNEtorYXYVYFdU
UezlakHGEGQ1Y3QfIxKBU3XvXarqU7xSc2POjC+G7EapH7cK2khojQs9MMdJ9AbO
ZbQVXJInoEYpKxbBXXr4rEdpwgQzP6qlbIYZZPHWfiDyAJCir5RiH3dz+EA=
-----END CERTIFICATE-----
Generated at Sat Apr 26 19:08:00 2025 by rpki-client