Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7de0bde-2698-400a-8a72-e7c26f1e32c1.roa
File: e7de0bde-2698-400a-8a72-e7c26f1e32c1.roa (raw, json)
Hash identifier: SJWDi+d27Ym+2shljGX5Ar4XQi3c/2Nnm7HK2K3DsWE=
Subject key identifier: 10:12:B0:D3:37:F9:64:BF:55:02:BE:14:1B:D3:EB:74:B2:4D:00:33
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2922D9F3F5BBF84D44C826D4EB5C0363931F458B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7de0bde-2698-400a-8a72-e7c26f1e32c1.roa
Signing time: Tue 31 Dec 2024 00:00:00 +0000
ROA not before: Tue 31 Dec 2024 00:00:00 +0000
ROA not after: Tue 04 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 16.192.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:22:d9:f3:f5:bb:f8:4d:44:c8:26:d4:eb:5c:03:63:93:1f:45:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 31 00:00:00 2024 GMT
Not After : Feb 4 23:59:59 2025 GMT
Subject: serialNumber=7e6f817a3e02079a4facb5f45ec9feeee64ecb23a648be44ae8d076e4485bb81, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:54:21:95:f2:3d:44:94:ba:50:a7:df:e2:8f:
fa:b7:a1:cc:eb:52:ae:a6:1c:ab:07:c3:61:0f:23:
df:f3:bf:33:bf:41:f7:c3:cd:63:38:49:a8:10:3e:
0c:78:3a:14:e7:1b:06:6f:36:c0:70:97:3b:a1:31:
12:9e:5f:a7:a4:20:d3:bb:03:33:55:76:8a:53:ec:
51:b7:20:4c:d1:13:a3:dd:61:0f:d4:3c:b8:48:dc:
dd:68:e4:98:4e:79:39:cf:2f:9d:27:f7:d1:27:d6:
b9:46:29:bd:3b:7f:25:ab:05:97:3e:7c:d2:c2:61:
c3:cd:d2:07:81:5a:a0:ea:19:11:0c:3b:26:8d:ca:
b6:ff:c2:6f:12:38:eb:64:2a:b0:78:60:b2:cb:a4:
ed:c4:ab:d1:10:fb:1b:29:e8:7d:de:0b:ad:d7:93:
ed:50:64:59:6a:e8:85:10:88:d5:a5:f7:34:49:ce:
fb:41:4d:00:a6:7b:bc:e1:84:a2:93:54:9f:b8:07:
cb:e6:c4:06:e4:ae:37:e0:cc:5b:37:a4:66:42:16:
9d:8d:5d:5f:e2:1f:f2:fc:c1:1b:be:96:48:9e:82:
63:03:2f:fc:fe:6a:05:03:91:ef:86:35:37:fd:cf:
0a:54:16:ee:92:76:8d:bf:38:15:6b:c1:78:40:7d:
54:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:12:B0:D3:37:F9:64:BF:55:02:BE:14:1B:D3:EB:74:B2:4D:00:33
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e7de0bde-2698-400a-8a72-e7c26f1e32c1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
16.192.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b6:5a:15:1d:3b:2c:52:e2:9a:b5:9a:14:9e:3b:8d:aa:4f:93:
ca:0b:c6:ca:70:cb:6c:b1:0a:d3:e5:8b:9d:0d:bc:e9:18:18:
06:97:db:a6:34:bc:dc:49:1a:68:1e:47:a0:7e:a6:50:16:fe:
b5:79:a0:dc:df:f4:4b:0e:eb:b8:7b:0e:d6:ff:c5:93:8b:7b:
cc:d3:11:d6:23:81:03:50:26:d3:32:95:d8:13:a2:4d:3b:96:
da:e9:35:4d:17:2f:b5:5a:b6:dc:77:a8:16:d2:26:e5:b4:c1:
8f:57:6c:38:f1:5c:69:dc:11:80:78:32:51:74:7d:0c:f6:4d:
78:1f:e6:95:e5:7c:10:f7:c6:97:0f:9f:60:3b:6f:67:e0:a3:
04:3b:d0:11:ba:0a:d8:52:44:16:a2:05:8b:c3:f4:c4:9d:33:
0d:f9:16:c7:6b:6b:a7:a9:15:16:e1:4e:cd:66:2c:09:9c:f3:
68:dc:f5:c7:1f:32:05:5e:07:38:a8:af:e1:74:2c:1e:bc:47:
3c:6f:f0:c8:16:94:22:a3:7e:21:71:12:3b:61:8b:33:84:52:
6e:0a:d5:2b:2a:a9:33:00:82:a5:c3:2d:e7:b9:36:14:15:42:
24:3c:09:a2:d4:5d:b5:c7:f8:5c:b8:d4:9d:66:84:31:a2:5a:
89:99:56:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:30:17 2025 by rpki-client