Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/062540e2-2707-433f-b2d6-740d9af21c84.roa
File: 062540e2-2707-433f-b2d6-740d9af21c84.roa (raw, json)
Hash identifier: jdNJZCjPTuxmo174Au2FCqN0UzbNRKcg4AZktE7mdtU=
Subject key identifier: DF:9E:82:1D:72:A9:56:91:6C:99:9E:B0:B7:4A:BA:FB:EF:61:30:3D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6F06CF95AEE4F2CC664FB3E170450E920CA1A4C0
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/062540e2-2707-433f-b2d6-740d9af21c84.roa
Signing time: Fri 28 Mar 2025 23:53:18 +0000
ROA not before: Fri 28 Mar 2025 23:53:18 +0000
ROA not after: Fri 02 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Mar 2025 00:13:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:06:cf:95:ae:e4:f2:cc:66:4f:b3:e1:70:45:0e:92:0c:a1:a4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 28 23:53:18 2025 GMT
Not After : May 2 23:59:59 2025 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d9:c0:3d:39:e8:e8:e0:d7:6f:00:da:cf:9e:
30:56:3b:77:4f:fc:5d:38:10:ab:4f:60:ab:fd:e4:
89:4f:eb:88:af:3a:b3:30:68:9c:95:6c:c1:d9:7f:
03:51:2a:9d:15:50:77:5a:ba:be:0e:39:9e:49:0d:
b8:82:30:ab:71:5c:96:8c:a9:80:94:f7:6c:ab:7a:
cf:e7:c6:72:29:5b:4b:e8:42:7a:d6:6d:1a:56:6f:
d7:9d:ae:7f:18:bd:81:90:73:3b:01:93:38:cb:be:
28:7d:17:ff:ef:f3:1b:15:e1:6f:cb:81:68:10:e6:
da:7a:8e:d7:7a:dd:40:d2:2d:1d:33:c5:cb:ff:eb:
05:a0:fd:7d:79:24:00:4f:1a:43:cc:df:d6:88:d7:
2b:a3:1a:f5:6a:b8:6e:9b:97:a0:19:10:9b:f6:1b:
8f:d2:1a:ec:cf:d2:e0:93:59:4f:3e:10:5d:0a:23:
18:89:76:b6:4a:cb:c6:02:78:62:fb:a4:57:0f:38:
e2:f4:1e:68:27:c8:63:48:15:76:1d:a0:be:13:e7:
45:3f:7d:c6:88:c2:f4:90:15:40:7a:48:cd:45:1c:
13:dc:9d:cb:0c:4a:96:fc:83:8f:7b:d1:e7:e2:c3:
c6:8f:af:e6:81:fb:ff:c2:88:3c:07:0a:e1:44:9e:
6b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9E:82:1D:72:A9:56:91:6C:99:9E:B0:B7:4A:BA:FB:EF:61:30:3D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/062540e2-2707-433f-b2d6-740d9af21c84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
57:8f:7a:24:95:40:3b:bd:89:e8:b5:81:10:50:da:ee:4e:e7:
03:f7:66:95:df:9e:6d:a5:fc:4d:7d:dd:5d:1d:0c:ad:1a:4c:
42:52:70:a7:18:45:36:3b:a9:ce:95:fa:b9:12:be:ae:cb:0d:
7c:dd:be:08:dc:9a:37:f2:3c:7f:a2:48:7c:dc:a5:93:ee:22:
66:db:0c:17:33:3f:b2:82:50:a5:f2:f4:10:d8:c1:18:d4:dc:
02:fe:5c:9a:1b:b5:fb:25:57:50:ff:9a:05:fe:c6:50:69:50:
e7:38:ca:25:7b:d6:21:bd:88:f3:16:06:91:c3:95:33:d8:c8:
25:31:8e:4c:1c:e3:4c:a9:a0:9c:19:ba:ef:4c:b9:33:c7:dc:
4d:1b:32:20:5b:9a:df:55:e7:31:ee:e2:01:bf:94:b4:3a:a6:
63:2d:a8:60:3a:40:a1:06:47:36:0a:6b:77:33:fb:43:9f:64:
9b:a0:5b:96:1a:7b:a3:26:64:1e:3e:7b:b4:91:ee:e7:20:75:
04:c4:87:7c:bb:c0:f8:e3:78:4a:33:16:3d:a7:c4:cb:d3:bf:
5b:0a:ee:b7:25:f1:4b:db:cc:69:9f:7d:d0:be:ec:0e:77:e5:
ba:32:a5:2d:ae:4d:cc:f8:df:0c:d2:62:8f:1f:8e:66:61:82:
e7:6e:1a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:51:05 2025 by rpki-client