Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/aca20356-2db7-410d-954c-5a21d0f5e855.roa
File: aca20356-2db7-410d-954c-5a21d0f5e855.roa (raw, json)
Hash identifier: OBmCeSpF+evn5nHRUgMSA0mlj9lBV8ok64h9FuuYzjI=
Subject key identifier: CD:19:EB:29:17:48:69:E8:D2:54:0F:35:CA:D6:A7:B2:CB:6D:64:45
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 0E4F238D987407C9A0DFB13285141E026281F4B5
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/aca20356-2db7-410d-954c-5a21d0f5e855.roa
Signing time: Sat 08 Jun 2024 00:00:00 +0000
ROA not before: Sat 08 Jun 2024 00:00:00 +0000
ROA not after: Sat 13 Jul 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2605:9cc0:f020::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jun 2024 18:59:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:4f:23:8d:98:74:07:c9:a0:df:b1:32:85:14:1e:02:62:81:f4:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Jun 8 00:00:00 2024 GMT
Not After : Jul 13 23:59:59 2024 GMT
Subject: serialNumber=85b170ef95e2a1b552d44feb5e439bfb27bbf1fc3df3b42b382d27bd455f8f82, CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4c:ae:4e:1e:e4:a8:72:f6:07:1e:d7:00:43:
41:84:73:8d:05:9b:7a:9a:b5:00:bb:cc:35:37:20:
8a:39:f0:4d:be:3c:c5:d1:0b:97:85:4d:d4:ea:f9:
72:3d:ed:8d:a6:0c:69:a6:5e:96:2f:b7:b0:45:db:
29:b3:6f:8d:32:b4:a2:47:11:26:8f:30:00:37:0e:
04:ac:a8:23:99:da:c5:2f:05:b7:d7:05:20:6f:24:
f4:14:68:65:ce:7c:50:ec:6c:2b:b0:cc:2a:ab:57:
a5:53:d0:ee:fc:1a:d5:26:c4:01:a8:b7:47:5d:1e:
0f:30:5b:da:44:11:31:34:ae:5a:d1:59:fa:7b:1e:
7e:04:d6:fd:1e:24:13:20:25:6d:10:49:e7:65:c9:
9a:26:f0:bb:f9:f0:30:5b:34:1c:a1:50:ef:06:d3:
98:aa:0a:fe:db:81:45:20:4e:74:21:cd:39:a1:ee:
f0:a4:b1:15:78:8c:cd:40:48:7f:dc:09:44:e1:8e:
1d:7c:86:46:24:ba:ec:cb:65:11:80:50:d4:33:15:
e6:30:e5:f2:d7:ec:81:66:ee:0b:b5:ed:ed:fc:67:
87:00:e6:13:4b:15:96:75:ea:05:2d:59:88:22:3c:
c5:35:c7:23:cb:d1:8a:4f:8c:40:6a:75:e0:be:47:
94:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:19:EB:29:17:48:69:E8:D2:54:0F:35:CA:D6:A7:B2:CB:6D:64:45
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/aca20356-2db7-410d-954c-5a21d0f5e855.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:f020::/48
Signature Algorithm: sha256WithRSAEncryption
6a:8f:15:21:0a:7c:05:ac:a8:26:81:f7:49:ba:52:2f:d7:e0:
73:02:1a:7e:b1:91:58:e2:87:a3:f0:fd:3e:c1:eb:33:60:13:
aa:f5:94:d5:cf:aa:4d:59:e8:9e:d6:ec:9c:79:91:ee:0d:ec:
20:83:df:40:83:e2:7d:36:45:de:48:64:d2:50:b1:11:2c:44:
3a:dc:17:5e:b9:57:52:52:f4:76:09:f0:15:6c:2a:18:79:ba:
b6:1c:c8:ea:51:d9:52:02:5c:ee:85:ff:19:88:ea:93:23:1d:
d1:e5:b1:2b:80:43:2a:8e:ab:c3:d5:f5:a7:1d:25:e2:84:19:
50:9b:fd:55:8e:76:3b:45:3d:d9:69:36:57:a9:b2:51:58:07:
23:05:94:12:70:b9:d4:45:61:49:16:30:66:f2:ba:9b:b3:0a:
7a:85:26:eb:ed:3d:9f:ab:e1:37:08:45:35:7b:57:5c:31:11:
f2:89:33:e7:3b:a4:63:b4:7c:77:d9:39:db:fc:a3:b9:2d:2f:
33:13:79:6f:80:20:d2:fa:6e:e7:cb:5a:db:43:f3:56:fe:d1:
9b:65:fe:28:29:44:fe:0a:9d:0a:97:dd:7f:97:61:c4:bb:e1:
ac:f3:46:79:6e:c4:fd:37:b5:70:ee:8e:a0:3f:3d:4b:fe:87:
13:30:48:cc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jun 11 23:34:13 2024 by rpki-client on console-ams.rpki-client.org