Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/77c213c9-3b66-46e1-83cf-28455169b969.roa
File: 77c213c9-3b66-46e1-83cf-28455169b969.roa (raw, json)
Hash identifier: cw9fUrzA5SgAWVkcd0WXu+r4hf3ODWBsgzvS81TAWGI=
Subject key identifier: 3F:5E:C9:DF:89:14:04:A1:4C:9B:05:70:CC:4B:25:39:09:88:16:85
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 14E8AFFDA0D6BA3FFB63A784DE7BDF49E9171E73
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/77c213c9-3b66-46e1-83cf-28455169b969.roa
Signing time: Mon 10 Jun 2024 00:00:00 +0000
ROA not before: Mon 10 Jun 2024 00:00:00 +0000
ROA not after: Mon 15 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2605:9cc0:f032::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jun 2024 19:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:e8:af:fd:a0:d6:ba:3f:fb:63:a7:84:de:7b:df:49:e9:17:1e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Jun 10 00:00:00 2024 GMT
Not After : Jul 15 23:59:59 2024 GMT
Subject: serialNumber=1f85540e2ea2b14ac1c40803d448137b0014f21423429a7f18f7487661b72518, CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:dd:df:7d:b8:79:45:eb:82:9b:36:ec:0d:01:
7b:4f:1e:8c:6a:03:9f:65:94:05:b0:89:e1:0f:ca:
3e:33:4a:17:18:37:fd:c1:97:2a:0e:b1:98:38:ce:
45:c2:47:80:20:7a:a7:b0:7d:9b:96:de:05:fc:a4:
42:fd:35:ff:08:b9:96:1e:9a:1e:38:a1:e8:70:92:
4a:ae:cc:42:2f:24:c2:4a:14:be:9f:49:cc:7a:1f:
69:ec:1b:25:6f:e6:eb:8f:77:36:05:73:a7:29:43:
ce:45:0b:d3:98:5a:b1:f8:74:f1:dd:b6:8d:6c:a3:
6f:77:4a:c9:66:6d:81:2a:ab:47:58:21:e5:7d:10:
e9:38:1b:3a:62:33:6b:ef:1a:24:ba:32:da:9b:bb:
7b:34:fe:c1:54:75:f0:45:76:d1:a4:59:cc:96:4b:
6e:5a:3f:90:d9:46:22:96:d0:c0:bf:61:e6:81:19:
2d:18:55:a2:bc:a5:eb:fd:ff:8d:a4:71:ff:69:fe:
f2:b5:d1:44:fa:7e:2e:15:28:e5:a5:25:32:ff:a1:
31:78:1c:e3:36:4a:cd:ea:f5:eb:17:a4:12:23:97:
a5:47:c5:ff:e2:14:51:ea:25:52:5f:d9:d6:ca:09:
cc:cc:b9:4c:b1:82:e9:4b:5b:08:d5:02:2c:f0:a8:
47:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:5E:C9:DF:89:14:04:A1:4C:9B:05:70:CC:4B:25:39:09:88:16:85
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/77c213c9-3b66-46e1-83cf-28455169b969.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:f032::/48
Signature Algorithm: sha256WithRSAEncryption
70:ca:55:a9:04:9b:01:7c:35:ff:1b:a2:e3:ca:5d:df:18:34:
c8:ae:cc:a3:5c:ad:b1:5c:a0:36:bb:07:1e:85:b7:d5:61:d0:
3b:8e:b8:e6:15:a8:74:e1:f7:db:7b:62:08:b7:bc:ab:0b:c3:
e0:2c:3a:d6:16:f4:36:52:67:8e:7c:47:34:eb:da:c1:0a:40:
d9:79:cd:10:94:00:82:94:51:2b:e5:05:f2:3c:b3:f0:a9:41:
b7:8e:4d:12:76:b2:0d:15:9b:77:a8:dc:48:3c:b7:0f:9b:44:
f8:21:0d:99:03:bd:ea:69:57:e7:05:79:fa:d1:c6:29:bf:a8:
e9:9b:5c:aa:ca:15:d4:7b:f5:54:4f:fe:79:a8:dc:70:c1:63:
f5:2c:d5:ca:e4:33:ed:30:3d:ca:02:f2:e3:99:dc:70:31:d1:
aa:ec:5c:00:da:0b:13:69:e5:74:38:a9:a8:ca:f1:2c:1f:33:
12:b8:ef:f0:0f:ab:ad:0f:51:18:40:cc:08:eb:91:65:0b:2c:
73:c2:82:02:6b:51:07:d9:c6:80:51:bb:a0:90:c7:0c:28:ec:
5a:95:27:cc:49:ca:1d:75:f0:bf:ef:61:34:7d:90:4e:6e:97:
13:3a:34:d6:5d:5f:94:cf:96:22:dd:75:3d:7c:56:d4:02:2c:
42:8f:d1:a1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jun 11 20:46:50 2024 by rpki-client on console-fra.rpki-client.org