Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/02f3cf81-ee45-4eb9-b7e4-949e80780526.roa
File: 02f3cf81-ee45-4eb9-b7e4-949e80780526.roa (raw, json)
Hash identifier: 93vMVQiwqtcrdyerGKt59DYAmG+AvNYZiZp0JJL2h4M=
Subject key identifier: C7:FF:AB:DD:55:BB:98:11:F1:90:AC:4F:37:B4:57:06:6F:A1:8D:17
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 300886BA2A85681048E45DCA1F00A5DD477B1D4F
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/02f3cf81-ee45-4eb9-b7e4-949e80780526.roa
Signing time: Sat 08 Jun 2024 00:00:00 +0000
ROA not before: Sat 08 Jun 2024 00:00:00 +0000
ROA not after: Sat 13 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2605:9cc0:f023::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jun 2024 19:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:08:86:ba:2a:85:68:10:48:e4:5d:ca:1f:00:a5:dd:47:7b:1d:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Jun 8 00:00:00 2024 GMT
Not After : Jul 13 23:59:59 2024 GMT
Subject: serialNumber=3d4b28c9a144097a33867dea4f7fea1f3f5209f41ab2c50fc8ebaefc1964575a, CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:8e:38:34:40:42:ec:da:cb:1b:a2:a3:9e:
cf:36:14:2e:0d:d7:58:4f:a7:96:a1:ed:63:01:e7:
12:dc:1f:37:2d:99:15:65:ba:0d:2c:1f:11:0c:d9:
53:bc:fe:fc:55:ae:9d:53:e8:26:c3:fc:52:86:6f:
2c:0c:a0:6d:c1:04:1b:11:f5:80:c5:44:ba:9b:99:
d2:3f:b8:38:5b:8e:7f:58:0a:72:80:45:7c:ea:10:
72:a8:c3:3a:9a:d8:74:2a:8f:05:5d:7a:d7:e0:4b:
5f:6c:7e:df:c7:ee:5d:3f:22:16:83:49:fc:f5:9b:
64:fc:5c:11:06:e9:5b:cc:b7:5f:42:82:6b:56:0e:
1d:b0:f5:f7:ce:d7:4d:ab:c5:2d:9e:d8:69:11:24:
62:24:e8:dd:25:95:96:b9:58:6b:60:9a:ad:8d:23:
cd:e3:23:12:1f:a5:ff:5a:e2:7d:02:c5:ae:05:81:
86:bc:aa:07:77:da:f9:a8:ea:52:a7:a0:0c:50:c2:
27:29:6b:56:53:f0:fc:a9:46:52:d0:46:94:bd:7f:
cd:51:e9:39:9c:d0:0c:76:12:c6:e0:a8:53:7a:e8:
2b:5a:ca:02:65:ff:52:cb:ea:95:15:c2:20:ab:a7:
63:f6:05:cd:db:65:6d:9e:f0:cc:94:b1:b2:c0:50:
ff:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:FF:AB:DD:55:BB:98:11:F1:90:AC:4F:37:B4:57:06:6F:A1:8D:17
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/02f3cf81-ee45-4eb9-b7e4-949e80780526.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:f023::/48
Signature Algorithm: sha256WithRSAEncryption
43:c3:02:e3:f0:b6:4a:e5:e8:8f:83:32:95:b0:6a:4b:bc:4c:
b8:3e:d3:69:35:65:b6:a4:a8:f4:a5:be:36:9d:58:14:4e:0d:
1c:95:76:b6:62:b7:00:97:10:22:34:bc:e5:b9:93:bd:62:a0:
1c:fe:b6:d0:f5:09:9a:79:60:64:f0:9d:46:1b:d9:9a:b4:13:
c6:2b:bb:db:dd:24:3f:c5:41:c2:db:04:72:42:d5:83:ba:f1:
91:d6:2b:75:2e:96:8d:77:07:1a:7b:b9:2b:dd:f3:67:ab:7b:
62:73:1a:89:c1:e9:5d:8c:f6:0e:83:22:1e:38:13:48:eb:d9:
4a:36:d5:fa:02:34:38:77:6f:cd:17:52:e2:28:f6:d1:4e:8d:
07:58:23:97:d0:e6:4d:1d:9c:64:f6:ca:f1:01:ea:45:7e:c1:
ac:da:55:93:ba:c7:5a:b6:1d:38:d9:31:c0:fb:65:7c:55:97:
17:b4:72:bf:2c:4d:01:a6:48:30:b4:3c:4d:9f:d3:82:b6:70:
b8:11:16:a6:70:81:5f:96:8e:c9:54:8e:47:25:08:90:61:51:
07:06:e6:9c:36:ea:e3:ad:d4:b9:7f:db:9b:04:d5:b7:65:d2:
9a:7b:1d:29:57:39:2b:14:85:84:3b:76:7a:90:55:e8:3d:4f:
96:85:84:d4
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUMAiGuiqFaBBI5F3KHwCl3Ud7HU8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw
MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNjA4MDAwMDAwWhcNMjQwNzEzMjM1OTU5
WjB6MUkwRwYDVQQFE0AzZDRiMjhjOWExNDQwOTdhMzM4NjdkZWE0ZjdmZWExZjNm
NTIwOWY0MWFiMmM1MGZjOGViYWVmYzE5NjQ1NzVhMS0wKwYDVQQDEyRmNzI0Mzc4
NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC0bY44NEBC7NrLG6Kjns82FC4N11hPp5ah7WMB5xLcHzct
mRVlug0sHxEM2VO8/vxVrp1T6CbD/FKGbywMoG3BBBsR9YDFRLqbmdI/uDhbjn9Y
CnKARXzqEHKowzqa2HQqjwVdetfgS19sft/H7l0/IhaDSfz1m2T8XBEG6VvMt19C
gmtWDh2w9ffO102rxS2e2GkRJGIk6N0llZa5WGtgmq2NI83jIxIfpf9a4n0Cxa4F
gYa8qgd32vmo6lKnoAxQwicpa1ZT8PypRlLQRpS9f81R6Tmc0Ax2EsbgqFN66Cta
ygJl/1LL6pUVwiCrp2P2Bc3bZW2e8MyUsbLAUP9rAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUx/+r3VW7mBHxkKxPN7RXBm+hjRcwHwYDVR0jBBgwFoAUugzhfiM/vHHU
MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m
NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5
YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy
YTEzOWVhOTJiLzAyZjNjZjgxLWVlNDUtNGViOS1iN2U0LTk0OWU4MDc4MDUyNi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh
LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmBZzA8CMwDQYJKoZIhvcNAQELBQADggEBAEPDAuPwtkrl6I+DMpWwaku8
TLg+02k1ZbakqPSlvjadWBRODRyVdrZitwCXECI0vOW5k71ioBz+ttD1CZp5YGTw
nUYb2Zq0E8Yru9vdJD/FQcLbBHJC1YO68ZHWK3Uulo13Bxp7uSvd82ere2JzGonB
6V2M9g6DIh44E0jr2Uo21foCNDh3b80XUuIo9tFOjQdYI5fQ5k0dnGT2yvEB6kV+
wazaVZO6x1q2HTjZMcD7ZXxVlxe0cr8sTQGmSDC0PE2f04K2cLgRFqZwgV+WjslU
jkclCJBhUQcG5pw26uOt1Ll/25sE1bdl0pp7HSlXOSsUhYQ7dnqQVeg9T5aFhNQ=
-----END CERTIFICATE-----
Generated at Tue Jun 11 23:34:11 2024 by rpki-client on console-ams.rpki-client.org