Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e0786c4a-f9ea-484c-b9c5-4dba67f07882.roa
File: e0786c4a-f9ea-484c-b9c5-4dba67f07882.roa (raw, json)
Hash identifier: 1ZzjUqC9Zk/NNz3bc29gyAqxFuX/3F4l/Wm2WMI6q/c=
Subject key identifier: 63:11:FB:FE:22:45:A7:89:E7:75:26:4F:49:31:45:72:2B:DF:0A:BA
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 27C8E2609EEC8974C22A70E13352FED66740DBA3
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e0786c4a-f9ea-484c-b9c5-4dba67f07882.roa
Signing time: Mon 10 Jun 2024 00:00:00 +0000
ROA not before: Mon 10 Jun 2024 00:00:00 +0000
ROA not after: Mon 15 Jul 2024 23:59:59 +0000
asID: 8987
IP address blocks: 2605:9cc0:f028::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 11 Jun 2024 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:c8:e2:60:9e:ec:89:74:c2:2a:70:e1:33:52:fe:d6:67:40:db:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Jun 10 00:00:00 2024 GMT
Not After : Jul 15 23:59:59 2024 GMT
Subject: serialNumber=3e46269395ea0ee66dc51eca5bbe5e1e34d77a84407c6669f79e123aa3cabc55, CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e1:ed:e5:c1:c8:71:e1:89:71:08:c2:24:ad:
f7:ad:c3:05:3a:87:8b:2a:94:d6:bd:7d:9a:c1:a6:
72:4d:8e:62:5d:5c:1b:cc:49:3d:67:cb:5c:14:04:
8e:3b:59:81:1f:96:cc:8c:58:84:81:99:ed:40:72:
c2:6c:7f:cf:fe:d7:bb:85:60:0b:4a:4c:42:84:4b:
d0:3e:c3:e4:17:45:83:ec:9c:a0:f7:b1:40:38:81:
78:31:2b:b3:7d:18:c1:e3:e8:c0:57:fd:97:db:94:
0c:24:5b:4a:af:e7:31:5f:0d:b4:f8:b1:41:4c:d3:
15:8c:c4:0b:b0:f3:a8:ab:15:47:e1:f7:a8:10:40:
90:54:7f:5b:41:41:84:ba:eb:42:5b:46:d5:af:0e:
f4:da:bf:d1:e7:79:f5:f0:bc:bb:ea:cb:9b:fd:3a:
19:2a:d8:67:98:11:63:b1:84:6a:0e:38:e4:96:78:
78:57:c8:db:e8:ac:12:24:fc:f4:98:89:94:c4:74:
a6:2d:69:68:91:2b:28:c9:f2:8b:9d:f1:b5:68:34:
2c:e0:db:6f:a0:cb:f8:04:ae:85:6f:3c:9f:10:05:
ea:13:f3:16:ba:4b:52:ca:0e:a6:65:e9:65:37:98:
40:65:56:61:c3:85:23:ac:a2:b1:4d:7b:65:7b:ee:
28:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:11:FB:FE:22:45:A7:89:E7:75:26:4F:49:31:45:72:2B:DF:0A:BA
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/e0786c4a-f9ea-484c-b9c5-4dba67f07882.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:f028::/48
Signature Algorithm: sha256WithRSAEncryption
52:7c:8e:cf:7e:df:61:fe:c9:58:4a:42:58:4c:90:33:92:50:
69:33:8b:c7:53:d3:bc:ba:22:43:c3:78:ea:9d:7d:fb:4b:23:
e3:09:e8:7b:37:de:2b:e1:86:13:4d:7e:60:f9:1f:ca:8f:eb:
67:f3:2e:58:77:da:9e:4b:05:ac:06:5f:34:d2:a1:4e:bb:8c:
e3:8a:8b:62:13:46:55:57:0e:d2:bd:a0:c4:28:8f:4b:da:f4:
39:ac:49:2d:12:4d:dc:4b:78:d6:13:45:dd:a3:4f:4a:5b:51:
3d:0f:3f:af:38:da:5a:11:1e:53:76:57:f9:85:23:01:14:0e:
65:d1:c2:5c:26:ee:18:cc:1a:d6:81:cf:f4:43:06:a4:20:0c:
b6:14:8e:fc:05:81:8d:a6:c8:ec:9c:80:76:54:ba:15:7c:24:
be:b1:98:24:35:22:36:ee:d0:b6:76:d5:30:f5:ac:19:b2:d9:
cf:3c:d4:1d:e4:77:fb:03:4c:9b:e8:37:8e:12:8b:83:75:d9:
a9:81:e5:b5:a8:55:cb:4d:74:fb:d1:43:d1:dc:79:5d:92:38:
c4:03:44:e8:e4:18:27:77:7b:18:d8:6f:dd:7b:bc:26:2a:02:
1b:93:17:f3:a6:3b:53:bd:33:3c:52:0f:82:ff:82:9f:6f:25:
9f:2e:8e:b7
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jun 11 20:46:51 2024 by rpki-client on console-fra.rpki-client.org