Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0fbb7b79-f9b8-458c-aaa7-70b878ca583c.roa
File: 0fbb7b79-f9b8-458c-aaa7-70b878ca583c.roa (raw, json)
Hash identifier: UCuZMTM5WyieWrhx37r4EQUVv8A2wtLZIL2mtN1OveA=
Subject key identifier: B0:B4:F9:94:C7:BC:B2:B8:64:05:3E:AA:90:01:44:8F:60:26:07:A8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 473E6348BA4033B5E2ADFC15B93DB225DA12C0DA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0fbb7b79-f9b8-458c-aaa7-70b878ca583c.roa
Signing time: Sun 29 Sep 2024 00:00:00 +0000
ROA not before: Sun 29 Sep 2024 00:00:00 +0000
ROA not after: Sun 03 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Sep 2024 07:29:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:3e:63:48:ba:40:33:b5:e2:ad:fc:15:b9:3d:b2:25:da:12:c0:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 29 00:00:00 2024 GMT
Not After : Nov 3 23:59:59 2024 GMT
Subject: serialNumber=e54e1b62cf83853de0aa38ddec6c50f4f066168a5778fb68e67ef1f5a4b624b7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ae:8b:d1:83:b3:88:ed:7c:2a:e8:52:2e:dc:
57:cc:a5:4c:35:cc:3d:f1:c3:fb:f2:cc:74:5f:47:
ad:19:74:c1:5e:ba:02:d8:6f:42:77:67:50:ae:d3:
f2:b6:8d:bd:c3:52:34:2f:28:a0:7e:48:cd:1d:31:
1c:d1:c1:2d:d9:ea:38:94:e0:2e:22:37:a8:86:d9:
03:36:99:2d:a9:bc:6f:c1:51:83:25:7b:d0:19:8c:
76:47:25:14:6f:38:40:f6:66:ce:a5:b6:d4:0b:d7:
c3:6e:1d:f4:a2:8f:56:69:3f:16:1b:af:0e:d2:93:
da:5b:d5:f7:55:7b:3b:db:b5:a8:cc:43:9a:aa:2e:
90:de:48:b6:b8:82:3c:f0:c4:54:b0:e8:a4:7c:2c:
da:8a:54:56:69:3a:a5:a7:3a:ac:32:80:df:56:f0:
8d:c8:4a:57:3d:fb:62:c8:ba:7b:f5:5e:41:c5:7d:
12:58:25:cd:3e:eb:02:7c:3a:8f:fc:33:79:e5:27:
e5:b9:da:fd:0e:15:90:8f:d3:6c:53:39:f5:7c:d1:
a2:16:1a:1c:de:5f:08:07:96:7d:bd:c8:fe:c7:97:
90:42:3c:71:fa:6d:e9:50:07:f9:3c:a4:c3:98:d6:
5e:91:69:d0:f3:64:f1:ad:0b:b5:6d:b5:ef:8c:2a:
19:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B4:F9:94:C7:BC:B2:B8:64:05:3E:AA:90:01:44:8F:60:26:07:A8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0fbb7b79-f9b8-458c-aaa7-70b878ca583c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:e2:6d:57:b0:61:2f:70:78:c2:24:6d:94:77:58:8b:1d:02:
49:fd:18:d0:08:76:31:ca:10:27:38:e1:89:c4:a3:4c:4a:b9:
96:fd:31:4c:68:f4:83:b0:33:f9:5c:83:20:a3:3f:41:ab:34:
3e:ec:ac:0f:97:a9:b0:eb:b3:c8:29:b2:b8:d7:01:4e:ae:00:
1a:17:06:3f:91:6b:66:c3:12:18:4e:28:2f:97:d2:d8:86:d1:
11:6e:22:d9:14:b2:f6:91:28:8c:61:cc:41:ab:47:d1:40:8d:
2e:a8:c2:c7:80:54:9a:4e:7d:12:45:39:d0:e2:2a:ac:cf:be:
da:a5:75:de:85:15:3e:73:d6:01:2c:02:6d:83:96:41:14:cc:
4b:d8:b0:38:18:bb:1c:de:8c:d4:19:64:83:da:cc:6f:a5:38:
08:44:7a:2e:ca:80:63:28:bb:2f:86:a4:63:8b:92:68:75:59:
4d:ba:e8:9d:f8:13:fe:c4:83:92:c1:db:3f:52:8f:dc:68:ce:
e5:55:e8:5e:9b:16:03:e4:a4:44:95:09:2c:b7:f2:4c:75:ff:
67:a3:ee:b6:d4:8c:c7:5a:c9:32:07:41:b1:2e:2c:05:52:47:
6b:62:6d:eb:ba:74:43:0f:90:fe:ca:7e:23:ab:6e:e1:9a:08:
7d:26:ea:83
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIURz5jSLpAM7XirfwVuT2yJdoSwNowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwOTI5MDAwMDAwWhcNMjQxMTAzMjM1OTU5
WjB6MUkwRwYDVQQFE0BlNTRlMWI2MmNmODM4NTNkZTBhYTM4ZGRlYzZjNTBmNGYw
NjYxNjhhNTc3OGZiNjhlNjdlZjFmNWE0YjYyNGI3MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC2rovRg7OI7Xwq6FIu3FfMpUw1zD3xw/vyzHRfR60ZdMFe
ugLYb0J3Z1Cu0/K2jb3DUjQvKKB+SM0dMRzRwS3Z6jiU4C4iN6iG2QM2mS2pvG/B
UYMle9AZjHZHJRRvOED2Zs6lttQL18NuHfSij1ZpPxYbrw7Sk9pb1fdVezvbtajM
Q5qqLpDeSLa4gjzwxFSw6KR8LNqKVFZpOqWnOqwygN9W8I3ISlc9+2LIunv1XkHF
fRJYJc0+6wJ8Oo/8M3nlJ+W52v0OFZCP02xTOfV80aIWGhzeXwgHln29yP7Hl5BC
PHH6belQB/k8pMOY1l6RadDzZPGtC7Vtte+MKhmVAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUsLT5lMe8srhkBT6qkAFEj2AmB6gwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzBmYmI3Yjc5LWY5YjgtNDU4Yy1hYWE3LTcwYjg3OGNhNTgzYy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKHibVewYS9weMIkbZR3WIsdAkn9
GNAIdjHKECc44YnEo0xKuZb9MUxo9IOwM/lcgyCjP0GrND7srA+XqbDrs8gpsrjX
AU6uABoXBj+Ra2bDEhhOKC+X0tiG0RFuItkUsvaRKIxhzEGrR9FAjS6owseAVJpO
fRJFOdDiKqzPvtqldd6FFT5z1gEsAm2DlkEUzEvYsDgYuxzejNQZZIPazG+lOAhE
ei7KgGMouy+GpGOLkmh1WU266J34E/7Eg5LB2z9Sj9xozuVV6F6bFgPkpESVCSy3
8kx1/2ej7rbUjMdayTIHQbEuLAVSR2tibeu6dEMPkP7KfiOrbuGaCH0m6oM=
-----END CERTIFICATE-----
Generated at Sun Sep 29 10:26:22 2024 by rpki-client on console-ams.rpki-client.org