Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd458259-464f-472c-a506-596afda5be62.roa
File: bd458259-464f-472c-a506-596afda5be62.roa (raw, json)
Hash identifier: IIoEtVLT3FqB+dCHicmG5hPdeyEXw6J/ueQIRU5VfJo=
Subject key identifier: 72:8E:24:F8:C1:FA:CA:AE:DB:5C:56:41:A0:F0:F8:6B:57:5A:24:88
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 4B896AD0CF7791743BC1EB7252255F9054672D21
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd458259-464f-472c-a506-596afda5be62.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 56.96.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:89:6a:d0:cf:77:91:74:3b:c1:eb:72:52:25:5f:90:54:67:2d:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: serialNumber=fd9447a847b8fb43fee4f25b8774c6d4a4a72b4d9f6b2e4eecd4025f23b017d5, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:12:39:9e:c2:fa:dc:96:8a:3d:ac:13:a7:
8f:64:29:30:02:7b:2e:ed:99:04:b8:21:ac:34:4e:
e5:2d:a9:3b:ef:65:48:44:d1:73:83:70:a3:4d:df:
3a:a5:66:f2:dd:94:1f:a1:80:b2:67:b4:89:cf:bc:
04:47:55:3c:82:55:75:fc:9a:06:b0:f2:40:79:d0:
24:d3:a7:a1:7f:48:37:10:3a:76:99:6e:e6:ec:71:
c6:8d:12:ad:52:19:62:b3:50:99:17:ca:8f:22:b0:
7e:11:4f:ed:06:e3:f7:fc:d9:bd:70:3d:c0:bb:06:
91:ed:c0:25:f6:4b:6d:65:1c:b8:0f:50:e8:b4:35:
6b:43:5e:de:8f:d0:2a:51:47:d1:16:c6:91:6a:79:
96:ad:4c:43:e6:88:71:fd:ee:49:81:c4:22:e2:a5:
9a:70:32:42:10:ac:4b:1d:75:f9:8c:84:ee:a1:1c:
76:49:be:25:43:70:6f:41:a9:00:9c:1c:43:97:6c:
82:b1:6a:d1:e3:6f:95:9d:ab:90:a7:e9:74:36:83:
91:19:53:ad:f4:17:51:91:ab:f6:e1:f1:7d:73:65:
08:29:2c:77:63:38:9f:07:bb:9b:79:62:8a:4d:1b:
3a:32:38:15:6f:40:f7:01:cb:be:4d:bb:22:63:86:
fe:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8E:24:F8:C1:FA:CA:AE:DB:5C:56:41:A0:F0:F8:6B:57:5A:24:88
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd458259-464f-472c-a506-596afda5be62.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
56.96.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3b:d9:ae:50:49:8e:5f:09:a4:67:73:43:43:fe:67:f4:00:33:
db:50:42:d4:3d:85:e0:69:41:f7:db:02:0e:4d:de:46:29:3d:
f3:ea:55:00:5e:c6:66:ce:ec:41:1f:82:6c:8d:3e:77:c6:3c:
ab:1d:43:60:ea:3f:3b:27:27:2d:ee:a6:c4:8f:6c:4d:e5:ec:
c7:42:15:ad:d0:06:a8:f4:2a:33:e5:ea:c1:c1:96:63:3d:3a:
e5:19:51:2a:58:e6:f4:50:1c:3f:64:41:51:81:5b:eb:68:ea:
70:90:fa:45:c7:2f:0e:4f:3a:db:bd:5f:58:f6:bd:de:db:1c:
71:ad:f6:8f:a9:55:0c:31:c2:23:bd:02:bd:9d:eb:cb:0a:e7:
74:40:0b:82:f9:47:98:1d:77:23:cd:b4:34:9c:2e:ee:7e:29:
a5:3c:b3:06:34:8e:a4:61:07:32:10:ca:be:13:0c:40:3e:af:
21:4c:48:f4:80:be:22:a1:bd:c2:cc:70:ec:01:e4:74:6b:06:
0b:11:e1:2a:ac:89:db:3c:f3:61:b4:12:f1:ea:ca:51:50:85:
ab:29:c4:eb:aa:55:97:b4:a2:e2:8f:6e:fd:35:c7:4e:db:3c:
da:96:fc:67:b5:cb:bf:ba:c5:2c:28:fe:ad:66:45:c0:90:27:
05:c5:b6:a1
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUS4lq0M93kXQ7wetyUiVfkFRnLSEwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi
MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMjI3MDAwMDAwWhcNMjUwMTMxMjM1OTU5
WjB6MUkwRwYDVQQFE0BmZDk0NDdhODQ3YjhmYjQzZmVlNGYyNWI4Nzc0YzZkNGE0
YTcyYjRkOWY2YjJlNGVlY2Q0MDI1ZjIzYjAxN2Q1MS0wKwYDVQQDEyRiMjVjOTcw
Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCaPhI5nsL63JaKPawTp49kKTACey7tmQS4Iaw0TuUtqTvv
ZUhE0XODcKNN3zqlZvLdlB+hgLJntInPvARHVTyCVXX8mgaw8kB50CTTp6F/SDcQ
OnaZbubsccaNEq1SGWKzUJkXyo8isH4RT+0G4/f82b1wPcC7BpHtwCX2S21lHLgP
UOi0NWtDXt6P0CpRR9EWxpFqeZatTEPmiHH97kmBxCLipZpwMkIQrEsddfmMhO6h
HHZJviVDcG9BqQCcHEOXbIKxatHjb5Wdq5Cn6XQ2g5EZU630F1GRq/bh8X1zZQgp
LHdjOJ8Hu5t5YopNGzoyOBVvQPcBy75NuyJjhv4fAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUco4k+MH6yq7bXFZBoPD4a1daJIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD
Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04
ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw
MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3
MjVjMDQyOTQyL2JkNDU4MjU5LTQ2NGYtNDcyYy1hNTA2LTU5NmFmZGE1YmU2Mi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz
LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwA4YDANBgkqhkiG9w0BAQsFAAOCAQEAO9muUEmOXwmkZ3NDQ/5n9AAz21BC
1D2F4GlB99sCDk3eRik98+pVAF7GZs7sQR+CbI0+d8Y8qx1DYOo/OycnLe6mxI9s
TeXsx0IVrdAGqPQqM+XqwcGWYz065RlRKljm9FAcP2RBUYFb62jqcJD6RccvDk86
271fWPa93tscca32j6lVDDHCI70CvZ3rywrndEALgvlHmB13I820NJwu7n4ppTyz
BjSOpGEHMhDKvhMMQD6vIUxI9IC+IqG9wsxw7AHkdGsGCxHhKqyJ2zzzYbQS8erK
UVCFqynE66pVl7Si4o9u/TXHTts82pb8Z7XLv7rFLCj+rWZFwJAnBcW2oQ==
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:37:22 2025 by rpki-client