Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eeb4e139-07d4-4b16-9c03-b2b9c4c970e3.roa
File: eeb4e139-07d4-4b16-9c03-b2b9c4c970e3.roa (raw, json)
Hash identifier: Fpeenjp+ddNLm0GELSgaITYiTCHGfS5OBtDO/K9npM8=
Subject key identifier: 50:77:3A:3C:1C:FE:D8:0A:1C:61:6C:F5:0A:BE:9F:87:89:99:03:73
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 060D0CC44434FC64F5EA666839735361F8D13847
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eeb4e139-07d4-4b16-9c03-b2b9c4c970e3.roa
Signing time: Wed 08 Jan 2025 00:00:00 +0000
ROA not before: Wed 08 Jan 2025 00:00:00 +0000
ROA not after: Wed 12 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d030:9040::/46 maxlen: 46
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:0d:0c:c4:44:34:fc:64:f5:ea:66:68:39:73:53:61:f8:d1:38:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: Jan 8 00:00:00 2025 GMT
Not After : Feb 12 23:59:59 2025 GMT
Subject: serialNumber=c2d6fab7e66b7fc02a7579b45a29072a11087574e3747a22a4c5deded760057e, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:cc:52:49:6e:6e:5b:69:f6:9d:f1:87:26:c9:
8c:2c:d3:b2:47:31:9d:1f:05:8d:dc:64:6c:fc:ed:
c4:b2:ff:86:2b:9a:8f:ab:d7:2b:2b:72:19:1e:5e:
20:8c:6f:40:35:78:ec:8b:ee:7c:e4:2c:64:ba:46:
51:07:76:8f:9b:c2:51:dd:8f:42:7f:14:11:cd:86:
a2:aa:7b:5c:6e:7e:3f:99:11:6d:a4:b3:b6:0e:e7:
7f:40:8c:da:aa:81:b2:f3:ce:25:72:5c:9c:be:d8:
6c:6f:a4:cd:4b:7e:09:62:7a:25:41:c0:c6:2d:79:
e7:c2:63:13:dd:96:0a:e9:45:60:da:24:06:19:af:
d1:01:85:ea:7e:b6:29:84:d4:a6:19:1f:6a:91:93:
5f:75:c5:8a:19:57:4d:df:0c:34:8d:1d:8f:e3:ac:
1a:94:6e:ff:e3:6c:87:7a:5f:e3:6b:88:e7:df:b6:
87:ac:a7:d0:a6:18:f9:d7:94:6d:cf:c2:7a:c7:e8:
7b:4e:ff:11:70:27:3f:ad:57:13:c6:a0:a1:01:cf:
e5:f6:c9:e5:cc:53:fc:94:c4:23:3e:c5:25:da:57:
28:32:63:26:f1:13:92:7c:7f:81:bb:38:cc:76:4f:
0b:0c:84:07:e1:42:bf:fd:52:90:be:95:a3:7d:da:
fc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:77:3A:3C:1C:FE:D8:0A:1C:61:6C:F5:0A:BE:9F:87:89:99:03:73
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/eeb4e139-07d4-4b16-9c03-b2b9c4c970e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d030:9040::/46
Signature Algorithm: sha256WithRSAEncryption
69:15:d7:f9:62:98:de:3a:fe:8f:9a:4d:6c:1b:de:13:eb:fd:
e0:44:a7:18:db:65:a5:23:ee:e3:58:22:8a:78:39:3e:2d:d6:
e3:61:92:ac:26:db:77:ee:08:44:8e:1e:58:1a:65:2e:ed:7c:
ab:19:17:d7:71:b5:e5:0f:f2:8d:93:82:8a:d2:a9:27:d2:10:
db:d5:05:a6:76:5a:3a:53:e4:11:fa:07:89:69:b8:55:cb:60:
9a:7a:08:85:1b:5f:ac:91:d3:f9:54:77:91:28:9a:83:3d:5e:
fa:19:bf:23:05:e6:41:36:6a:0c:4d:3b:0f:e2:da:c7:cf:21:
03:71:3b:d3:8e:4e:be:b5:4b:77:da:43:3f:a7:21:ee:4d:0c:
7c:80:e4:87:8c:64:70:99:ff:0d:a2:b3:07:11:8a:88:5a:e5:
4d:6e:bf:4f:c4:5c:b9:f1:0b:d4:7e:4e:a7:b0:0c:26:88:8e:
b3:5f:28:90:a1:fc:93:93:d9:b6:d5:c0:27:66:22:bf:4e:62:
53:70:50:25:65:0e:bd:6b:b0:54:62:04:75:a2:b3:71:1e:06:
01:ae:f2:15:3b:9e:96:3d:dd:23:ce:24:6c:b2:b8:03:09:23:
86:ca:2a:5e:61:e8:3f:b6:82:30:ac:16:3d:e8:61:c0:aa:8f:
1d:dc:02:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:26:14 2025 by rpki-client