Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0762994f-78cd-4084-9faa-fff1974a97f2.roa
File: 0762994f-78cd-4084-9faa-fff1974a97f2.roa (raw, json)
Hash identifier: UrXD1fdx7hMoukdGtQKH2hz4w7l+ZnhN6b33z7oHT60=
Subject key identifier: 0C:C1:8D:30:B7:E7:BE:83:44:F8:85:B6:41:F7:A3:C5:31:24:B5:BA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 76D0D828AAB7DD01F89E5D2B622D97E8477C8C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0762994f-78cd-4084-9faa-fff1974a97f2.roa
Signing time: Mon 30 Sep 2024 00:00:00 +0000
ROA not before: Mon 30 Sep 2024 00:00:00 +0000
ROA not after: Mon 04 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 00:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:d0:d8:28:aa:b7:dd:01:f8:9e:5d:2b:62:2d:97:e8:47:7c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 30 00:00:00 2024 GMT
Not After : Nov 4 23:59:59 2024 GMT
Subject: serialNumber=09b585a57c6830ab2e4532dd661d3a197a561e71e003537f2ed20d5ad9f08753, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:79:44:02:f6:ca:fe:85:81:35:0e:fe:f9:60:
ec:42:b1:8c:21:ce:53:95:0e:ae:26:c3:39:b2:11:
ee:e3:d2:70:52:cb:22:b0:45:26:09:93:e0:ac:19:
04:99:48:8b:0d:58:cb:58:7a:ca:61:aa:c4:a4:cd:
41:b4:e0:21:c3:fe:ed:56:83:58:9a:c4:f0:c3:73:
e2:26:06:2a:88:5b:3e:a1:1b:30:5f:9f:b5:f9:87:
be:cd:84:f9:e7:f2:70:46:bd:27:f3:4b:bc:30:ac:
6b:b7:37:47:c7:04:3a:aa:2d:bb:9c:ed:f2:cc:07:
46:73:3b:cc:4f:44:ee:0c:72:56:41:f0:1e:19:44:
df:80:65:e4:21:50:09:fb:b5:f3:17:b9:47:34:9b:
44:80:8a:16:34:e9:5d:fa:1d:17:bd:0c:d9:f7:43:
7f:6d:76:93:5a:06:e6:2b:a1:9f:8e:53:6c:3c:f5:
55:79:73:9f:cb:3e:30:96:c7:39:6e:55:b4:76:a1:
21:58:27:c1:66:75:70:2f:8b:f2:5d:9a:a3:c9:f3:
5f:e3:32:46:c1:ca:7d:e6:74:2b:ec:b8:9c:14:92:
ef:5e:8f:2e:ef:d8:d1:09:90:3e:89:ba:d5:63:a2:
e8:3c:e4:3a:a2:97:3d:c5:a1:25:17:de:2e:c9:b5:
59:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:C1:8D:30:B7:E7:BE:83:44:F8:85:B6:41:F7:A3:C5:31:24:B5:BA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0762994f-78cd-4084-9faa-fff1974a97f2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:c8:3b:c5:0b:7f:1e:49:17:74:54:24:ff:65:4d:25:ca:ca:
d7:05:62:de:b1:d5:85:e6:0d:0c:49:62:c3:20:e1:2c:84:5f:
a3:50:10:d1:2c:03:fa:a7:7f:e6:57:94:51:05:72:47:09:f1:
a4:f5:f9:71:a8:07:0c:dc:36:57:98:21:c1:e4:cb:3b:52:42:
19:a6:16:21:aa:47:2e:95:c3:96:2e:f6:7d:77:89:21:b8:dc:
b5:4c:bf:d3:74:56:d1:55:c0:2c:6c:10:17:ec:30:b2:d1:81:
ff:ac:5e:69:b5:44:87:24:b9:07:6c:1f:0a:bd:06:19:3b:ca:
f5:30:0d:c4:bc:b3:85:59:09:64:35:c1:2c:22:29:a6:06:04:
03:c3:0f:e3:0f:f9:3f:8f:05:e9:ae:c5:a0:1b:5b:57:5f:d8:
a8:7a:2b:e1:70:86:37:12:27:c4:ad:8c:7c:12:39:a4:c4:c4:
d7:d2:d2:57:53:f0:04:b0:44:35:3b:03:61:1b:1d:f1:1d:f7:
2a:9e:34:de:d0:75:ba:6b:4d:50:ab:d2:54:ef:5b:0a:a0:b0:
d3:14:53:23:8f:e9:1d:04:cb:cd:39:02:68:63:37:ff:0b:20:
ed:73:d7:33:e3:78:9f:9d:9d:0b:44:7d:0f:b4:d0:e1:71:cb:
e5:e6:fb:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 04:40:47 2024 by rpki-client on console-ams.rpki-client.org