Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4564d2f-04ba-44fc-9fa4-fa2b81601b69.roa
File: f4564d2f-04ba-44fc-9fa4-fa2b81601b69.roa (raw, json)
Hash identifier: kKZe4ZOmVJON2oigJyyWWcvNYiEfTO+03WwkqDv1jhk=
Subject key identifier: 85:25:88:BB:91:88:53:C6:08:41:52:F8:4F:58:35:16:24:8F:4C:E0
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 76FA9A3BBEF9A32BF69C35AE6AA0128659765BA4
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4564d2f-04ba-44fc-9fa4-fa2b81601b69.roa
Signing time: Fri 27 Dec 2024 00:00:00 +0000
ROA not before: Fri 27 Dec 2024 00:00:00 +0000
ROA not after: Fri 31 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 75.79.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:fa:9a:3b:be:f9:a3:2b:f6:9c:35:ae:6a:a0:12:86:59:76:5b:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Dec 27 00:00:00 2024 GMT
Not After : Jan 31 23:59:59 2025 GMT
Subject: serialNumber=51d11a84edfd94201c6f94f549da1e119bdf99c12e245165b5756e086e77f777, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c9:aa:81:c7:be:c4:fa:4c:d8:2c:48:39:46:
ee:f2:4e:e3:cb:d4:49:be:18:6f:d5:05:ba:95:98:
b0:5e:67:ab:53:5e:3b:7a:eb:0c:ee:77:79:14:b9:
fc:7a:f1:d8:16:34:a6:4c:4c:ce:ee:fb:35:cb:27:
b7:d9:55:8e:49:12:cc:4f:98:b6:c5:6b:9d:c2:11:
8d:1d:42:96:1e:2c:37:5c:4e:a7:fd:09:65:22:84:
86:31:fb:08:10:80:06:26:27:70:e3:a6:c7:c9:0f:
b8:31:7d:f7:4c:6c:7c:96:d0:7b:d8:5a:da:af:e6:
ea:95:16:c9:1d:22:29:42:60:f2:94:28:b8:1b:d6:
6a:67:f4:87:ac:d8:0b:71:76:dd:02:76:64:82:c8:
8e:ac:1b:6f:d7:98:04:f6:8d:91:93:86:a4:c2:4a:
1b:09:17:6c:63:4e:e2:96:13:63:ea:23:2d:4e:05:
34:32:cd:a5:bd:ad:13:38:6a:b2:4e:d0:61:9d:dd:
ec:91:2d:75:6d:1d:b1:5a:4d:3e:68:a7:dd:e4:c2:
ca:97:72:fb:52:af:dd:6e:c3:83:d1:59:d8:56:2e:
80:89:cc:15:ff:7c:3a:3c:b7:ed:86:28:f3:e7:e3:
3d:31:2d:36:6b:f8:82:75:b8:7a:d1:16:89:8d:a6:
9e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:25:88:BB:91:88:53:C6:08:41:52:F8:4F:58:35:16:24:8F:4C:E0
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4564d2f-04ba-44fc-9fa4-fa2b81601b69.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
75.79.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ae:8e:a6:2a:50:83:42:33:80:55:3f:13:f6:27:47:09:df:c0:
45:12:88:7e:b0:31:69:dc:10:90:5d:3a:96:6d:21:5d:19:d0:
a6:88:57:33:ea:73:18:0d:2f:a1:a1:df:ab:ea:a4:bc:cf:26:
40:d9:4c:1d:59:c9:6f:67:42:0a:8a:dc:a8:c6:fc:28:8a:0d:
c1:c6:a9:6b:62:8e:82:0d:e9:05:b7:1e:e1:9d:60:e3:46:5e:
12:3b:a6:46:e7:46:b9:ce:da:d1:fe:3a:4b:5b:ed:3a:af:8c:
60:47:03:7e:7d:c9:ca:a0:1c:87:f0:0d:59:40:fc:72:ff:29:
ab:9f:bf:4e:4a:ad:96:2d:3e:f7:d2:16:b8:0c:eb:69:c5:00:
02:07:06:16:a4:2e:2d:6a:1c:15:26:ef:5c:b4:29:fd:3d:67:
6a:f6:ac:17:38:3d:ce:c3:39:7c:45:c7:e5:c4:61:71:33:b3:
10:0a:57:9b:56:72:39:ee:b3:4b:2f:04:7c:e6:b9:0c:90:07:
d8:3b:b6:42:ee:c0:d4:75:a2:9a:ef:6b:2f:77:06:47:b4:da:
fc:0d:a8:59:60:27:65:46:be:d8:c3:67:b2:14:0b:ec:2b:3a:
f4:42:af:75:53:19:cc:01:51:de:24:86:f7:a2:aa:8b:16:b0:
15:32:d8:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 20:52:15 2025 by rpki-client