Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/04a238af-a7fe-4a8d-aaf8-a5a452558cd2.roa
File: 04a238af-a7fe-4a8d-aaf8-a5a452558cd2.roa (raw, json)
Hash identifier: LTVm0zH5I459QR2T3l7XFqqGWcQk58WbsBgoYrWEQKM=
Subject key identifier: 30:38:ED:A3:89:28:74:8D:92:56:FA:22:5B:AC:9C:BF:AF:67:24:3F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2AEA48374C4900DAA9566318616FC2A87E2F23A2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/04a238af-a7fe-4a8d-aaf8-a5a452558cd2.roa
Signing time: Tue 07 May 2024 00:00:00 +0000
ROA not before: Tue 07 May 2024 00:00:00 +0000
ROA not after: Tue 11 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 01:45:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:ea:48:37:4c:49:00:da:a9:56:63:18:61:6f:c2:a8:7e:2f:23:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 7 00:00:00 2024 GMT
Not After : Jun 11 23:59:59 2024 GMT
Subject: serialNumber=2337fcbf31d829d37bfea3654d588e53576ec40887cef3eeecca939de575f143, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:25:a7:25:8a:ad:64:83:73:4d:3e:c1:0b:df:
e8:8d:42:6d:d5:32:94:d1:5f:a3:d2:d5:86:aa:80:
28:e3:6d:c7:f3:b7:b5:d7:65:6e:b6:e4:3a:f4:5a:
2a:d9:a9:8e:55:dd:b6:dd:7e:66:41:ee:4e:5b:3c:
66:47:55:fb:c4:d4:49:4e:84:31:8d:a2:f3:c8:77:
71:a5:f7:1b:5b:16:87:a1:d2:ac:71:64:9e:91:e8:
b4:44:df:ec:64:9e:f4:f1:07:da:1d:62:a2:d7:a5:
9d:fc:58:39:7c:b7:ef:91:24:67:52:cf:e3:dd:99:
74:36:c8:90:0d:dd:80:8c:e8:54:d6:38:e1:15:05:
67:84:28:8b:56:81:e7:2b:6b:25:af:d8:ed:a2:2c:
0b:a4:51:ff:ed:e3:26:c5:de:ca:99:34:b4:26:c7:
ad:4f:bd:01:5f:72:ad:95:5c:d0:26:9b:87:fe:5f:
7f:fa:90:5f:9f:f5:7f:34:7b:2f:1f:ca:76:44:8b:
a5:13:94:42:af:12:64:1b:b6:fd:cd:59:85:ef:d1:
9a:f3:f9:cc:ae:ea:7e:43:bf:42:14:31:43:9d:e5:
9a:e9:4c:26:09:f9:f1:7a:2a:b8:5f:42:af:a7:f7:
0b:ca:10:45:c7:55:6f:cd:cf:04:e4:1f:6e:c6:d4:
cf:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:38:ED:A3:89:28:74:8D:92:56:FA:22:5B:AC:9C:BF:AF:67:24:3F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/04a238af-a7fe-4a8d-aaf8-a5a452558cd2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:d1:0c:78:70:07:aa:89:b1:89:14:85:b9:f2:62:eb:d7:6a:
b9:4c:22:e8:48:e9:be:f3:5a:72:9a:0b:fe:d0:1b:3a:8d:f8:
e9:e7:04:81:ec:89:ad:53:d1:4f:85:51:03:aa:45:48:cb:e4:
75:a5:16:b9:65:0f:16:eb:c7:da:15:0c:3e:e6:b2:de:c1:14:
7b:a5:ab:cd:15:00:a3:64:0e:76:01:5c:e7:83:fa:f1:93:ed:
c4:74:7f:a3:52:a1:63:b4:b9:44:b5:d3:1a:9a:7d:3b:e7:00:
e7:29:15:4c:66:dc:22:94:6d:28:37:a1:2e:69:44:a2:15:f7:
a1:81:0f:c9:f9:c7:09:8c:a2:bf:af:17:fb:b5:40:36:7a:47:
30:a5:66:f5:14:8b:96:b4:9f:24:90:f5:81:21:3b:99:1d:89:
80:6c:44:26:1b:53:fc:ef:a7:76:74:35:af:11:c6:fc:68:32:
fc:15:03:ec:e6:c8:0d:e6:e0:e1:13:64:4c:48:ac:43:43:c3:
39:7f:af:83:d8:c8:a0:5c:89:b5:ea:dc:66:f9:73:b6:e3:46:
8e:f1:72:71:ad:63:33:a6:47:2c:4f:ed:72:10:0b:f9:3a:22:
f4:d5:2f:6e:e6:b6:f1:e5:38:82:c1:03:d7:ec:f7:8c:37:77:
eb:39:8d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:46 2024 by rpki-client on console-ams.rpki-client.org