Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25c3b90f-faa1-4a64-a5d9-2a3be34da425.roa
File: 25c3b90f-faa1-4a64-a5d9-2a3be34da425.roa (raw, json)
Hash identifier: ADRVlRD/WhxvFMhKZxUvG15Bt15b2QneeBYY6fnKBlc=
Subject key identifier: 4B:81:CF:EB:5F:CD:8A:70:42:15:FA:82:F2:BA:1E:A3:AE:09:B8:55
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 51B6A65EBD6DDE058979DA915FF1F7EF648B5D0A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25c3b90f-faa1-4a64-a5d9-2a3be34da425.roa
Signing time: Sat 01 Mar 2025 20:53:21 +0000
ROA not before: Sat 01 Mar 2025 20:53:21 +0000
ROA not after: Sat 05 Apr 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Mar 2025 21:13:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:b6:a6:5e:bd:6d:de:05:89:79:da:91:5f:f1:f7:ef:64:8b:5d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 1 20:53:21 2025 GMT
Not After : Apr 5 23:59:59 2025 GMT
Subject: CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cb:18:db:71:d8:da:a7:34:42:48:84:2e:9d:
1a:d8:20:95:99:c1:a6:98:17:90:a0:e2:7d:08:ba:
4d:ae:d5:30:04:1c:3a:03:fc:6b:bf:35:4a:b3:72:
30:0d:ff:00:4f:93:72:3c:ec:7e:44:62:73:05:74:
65:b5:73:fb:42:9e:18:23:f7:64:b3:3f:08:39:b8:
30:a7:4d:da:ef:83:94:55:b5:09:af:ac:ff:e6:32:
22:cc:03:f9:2e:a9:26:47:09:2b:7a:f8:58:b1:35:
84:59:66:79:fa:d5:0d:fd:fe:3e:22:62:0f:49:5f:
1c:84:e8:84:62:7f:7f:90:d5:b9:06:e2:9e:77:40:
be:a4:5e:e7:b6:1b:2d:cc:c6:bc:55:ed:90:8c:3a:
90:d8:09:43:b7:05:43:cf:c2:54:de:08:d0:91:6e:
49:c6:f7:aa:d2:01:7c:ac:c1:5d:36:26:9f:d4:b7:
ee:72:33:d3:e4:b6:9b:f6:4f:81:7f:08:6d:36:12:
3e:75:3e:3d:49:3b:3b:fe:ba:61:aa:07:42:7f:38:
70:a3:d2:75:2a:64:58:a7:c4:7d:35:2f:1e:0c:a2:
f0:09:5e:4c:fa:66:54:85:c3:af:99:a7:d2:27:3f:
de:45:d1:ae:65:5a:69:95:b0:aa:94:3d:0f:f2:68:
6d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:81:CF:EB:5F:CD:8A:70:42:15:FA:82:F2:BA:1E:A3:AE:09:B8:55
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25c3b90f-faa1-4a64-a5d9-2a3be34da425.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:6a:d8:0e:13:e5:88:d3:5c:43:e1:6e:5f:5e:d1:da:0d:cb:
d3:8c:6f:bc:0b:13:78:4d:6e:da:36:cd:06:b0:ae:a7:01:29:
e6:14:8e:e6:60:4b:6b:ff:e1:95:1f:ba:0b:58:93:55:76:56:
c5:ed:d5:3e:8d:f6:f2:21:57:dc:80:a6:40:c1:43:6a:9e:15:
13:f8:76:de:b5:ac:35:a2:23:1b:46:e1:f1:e6:f7:b1:80:15:
f3:2e:a3:ab:25:1b:13:cb:3b:18:f7:ef:25:6f:f6:9d:15:89:
3d:bc:1b:f4:53:72:73:5f:d7:41:9c:15:ed:45:13:b1:ec:41:
6b:53:3d:88:6f:88:28:85:ae:d3:54:6d:fc:c6:1d:16:7b:39:
92:9e:42:b1:c6:5c:73:ea:14:c4:ff:ce:26:51:1a:2d:3d:d2:
26:9c:02:6a:bb:a5:33:b3:42:b8:a3:9f:35:31:1c:b0:2f:f6:
62:14:68:00:74:e3:26:2b:2d:52:98:a6:f0:24:05:78:de:4c:
bf:72:2c:86:6e:a6:d3:f3:6b:de:4e:82:55:f4:dd:01:8b:cb:
f3:f5:24:67:83:96:5f:eb:c6:85:3e:9a:49:28:98:d8:ad:14:
62:a3:73:d5:8d:e1:d3:88:bd:9f:da:66:8d:a8:01:ed:be:73:
c4:b8:f2:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:27:14 2025 by rpki-client