Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/10e64e78-0576-44bd-801e-3a48aebdde84.roa
File: 10e64e78-0576-44bd-801e-3a48aebdde84.roa (raw, json)
Hash identifier: cXee/OPaTx492UqVA3j58y+ctyT1YEC1b4nlNMgPjko=
Subject key identifier: EB:6C:2D:00:0B:60:F4:36:57:21:20:DB:2D:01:33:E1:C5:1E:04:42
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 04FD8C433FD2F8A74468812897D934B2C398D816
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/10e64e78-0576-44bd-801e-3a48aebdde84.roa
Signing time: Fri 03 May 2024 00:00:00 +0000
ROA not before: Fri 03 May 2024 00:00:00 +0000
ROA not after: Fri 07 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 22:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:fd:8c:43:3f:d2:f8:a7:44:68:81:28:97:d9:34:b2:c3:98:d8:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 3 00:00:00 2024 GMT
Not After : Jun 7 23:59:59 2024 GMT
Subject: serialNumber=7e7e08823f1fd809e92b517b4b838f04fb193ff936b0a51371636846cbdafc57, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:09:db:a3:94:d7:bc:05:e1:ae:1e:9e:24:
e5:00:80:be:8c:5d:0f:53:5d:fe:eb:12:a6:94:cc:
f9:04:70:db:0c:7e:f5:12:1f:b2:56:70:af:b5:2e:
c4:d4:1e:d0:ef:8f:09:4e:43:a9:e8:d3:27:76:9d:
34:1a:4e:93:83:82:a4:d6:df:9a:ba:ed:f7:b0:87:
fd:65:80:a3:be:18:f5:9b:dd:4a:51:56:3c:21:15:
f5:27:b6:5b:1f:0a:86:20:31:ee:84:27:48:0b:c9:
5c:76:24:f3:bd:62:80:db:94:ee:5e:27:1a:f6:64:
b4:53:f1:9d:73:c5:09:64:c3:26:3c:b9:83:c3:6b:
83:6a:15:e6:08:b6:b3:df:be:ec:d2:ab:99:87:c7:
c6:26:6e:e5:8d:01:06:98:45:d2:76:7c:b1:fd:9c:
71:39:ad:05:3f:ac:16:63:c7:6b:6a:c1:bd:46:89:
4d:1f:a9:6c:85:58:44:3f:e4:c0:47:97:b3:e4:77:
5a:53:10:02:6c:3a:29:4c:49:ab:3d:81:b3:28:6e:
f6:45:ce:6f:30:ff:46:24:da:13:20:1d:8f:a8:98:
19:8c:5b:95:b8:f3:59:1d:15:69:f9:75:e9:91:82:
12:79:ff:3e:7c:d5:1a:bb:30:fd:66:af:ac:64:36:
f4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6C:2D:00:0B:60:F4:36:57:21:20:DB:2D:01:33:E1:C5:1E:04:42
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/10e64e78-0576-44bd-801e-3a48aebdde84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:09:89:f7:21:8b:1c:92:98:a6:c5:95:12:db:a2:05:73:a1:
3c:6c:20:72:40:f7:be:05:fb:db:bd:2b:01:03:91:01:8f:78:
aa:11:94:05:82:8a:85:fe:c7:eb:c9:5f:b7:f3:62:59:50:a3:
76:d2:8c:75:a8:4e:7a:08:cf:fe:17:48:36:ac:8f:7a:17:ad:
c8:c0:5c:24:ec:b2:e6:b8:e3:16:ea:ec:12:62:18:92:f5:b2:
90:fa:5f:dd:ca:84:60:93:2f:8a:d4:e6:07:e4:dc:78:3a:22:
15:7f:0c:c0:4c:8a:e4:1c:f1:91:47:89:00:e8:2b:40:d6:0a:
a0:93:f4:2f:3b:41:51:51:ad:85:c7:e4:d7:14:3f:b1:aa:83:
af:c6:10:76:aa:ce:81:5a:3c:e6:8b:ee:ea:68:80:1a:65:24:
94:de:98:9e:bb:08:0e:34:f9:61:2e:f2:3c:1f:ea:25:9b:e4:
b6:5b:84:dd:1f:7e:b4:08:28:87:2a:82:d0:e1:f6:74:b6:4a:
28:9a:e1:bb:ac:a1:80:14:58:2c:20:77:83:12:de:0b:c0:18:
40:47:42:0b:18:77:33:d0:1d:13:e7:21:3c:4d:d7:c3:6e:f0:
08:68:2f:24:b8:4c:9f:e5:dd:64:9e:90:2b:9f:fa:8e:92:53:
df:57:7c:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:48 2024 by rpki-client on console-ams.rpki-client.org