Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/21ee7a34-4e2a-40ca-af67-22eee25112e7.roa
File: 21ee7a34-4e2a-40ca-af67-22eee25112e7.roa (raw, json)
Hash identifier: +soA5DPkirpOBM9lQm9t3H8irZEIO8cMMJa93mOJA/I=
Subject key identifier: D1:6D:52:A1:BF:C1:01:B3:4B:56:3F:8F:C2:B5:AA:50:DF:50:EC:E1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5E5ECECBC4C6C4BAAAF972FB35971B02BE52BDFC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/21ee7a34-4e2a-40ca-af67-22eee25112e7.roa
Signing time: Wed 21 Aug 2024 00:00:00 +0000
ROA not before: Wed 21 Aug 2024 00:00:00 +0000
ROA not after: Wed 25 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 21:18:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:5e:ce:cb:c4:c6:c4:ba:aa:f9:72:fb:35:97:1b:02:be:52:bd:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 21 00:00:00 2024 GMT
Not After : Sep 25 23:59:59 2024 GMT
Subject: serialNumber=054ca742fa5af6f48fe4b7bbff9769f7ebc1cf0ffdd5b592cf667f5afa9e031b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4f:a1:b3:b1:36:9e:e3:14:7b:9a:21:77:66:
3d:81:34:53:48:e6:ba:59:2a:69:4e:98:fa:63:09:
2c:b5:ca:37:9b:d1:ee:51:2f:c8:ba:78:fa:c2:fd:
7a:0c:c0:c8:62:cf:41:18:54:c8:31:f6:87:22:34:
00:f1:52:64:66:e4:37:39:15:26:9f:08:22:52:6f:
85:29:ed:6c:db:89:41:be:c5:b1:01:99:e8:9f:27:
92:ba:d4:36:8e:7e:34:f1:5a:9d:f1:b0:c5:19:b1:
d9:22:0b:35:e0:d5:90:9c:59:9f:9b:2b:48:3b:17:
03:2c:8a:3c:1a:1f:16:4e:4a:70:8e:6c:4b:b9:b3:
c6:9a:9d:a6:c8:08:06:a3:df:fa:77:7c:d1:f1:d4:
0b:37:ce:dc:17:44:1e:64:05:7b:2c:32:e8:df:2e:
81:b4:88:22:66:1d:ca:73:89:8a:7c:38:c6:f0:0c:
d9:a5:0c:84:dc:94:6a:dd:d7:ba:4f:51:12:bd:cd:
6c:1d:2c:5c:7e:49:46:2a:87:99:f1:5d:9a:90:24:
9c:cb:14:1a:ba:67:e5:55:b3:79:45:ae:02:44:f3:
cd:02:56:d6:2b:27:f9:ff:2a:65:58:fc:68:fd:68:
50:b9:00:9b:77:79:8c:88:a3:cc:1a:4d:88:3b:57:
62:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6D:52:A1:BF:C1:01:B3:4B:56:3F:8F:C2:B5:AA:50:DF:50:EC:E1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/21ee7a34-4e2a-40ca-af67-22eee25112e7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
98:e2:40:6f:a2:c1:d2:f6:c0:67:91:ca:33:e3:86:0e:87:b3:
26:a6:71:8c:64:1b:3d:39:31:84:0d:81:46:f4:9c:84:45:1e:
9e:2a:24:ae:3c:aa:66:5a:61:89:73:b8:0b:96:56:e1:a3:16:
f5:2a:ab:c9:a1:6e:8c:a4:cc:a0:64:c7:79:6e:37:d6:32:f9:
8c:9a:8f:a8:57:dc:dc:81:ac:66:74:cb:96:d2:f7:c9:02:ad:
ee:4d:f1:9b:0a:24:ae:d5:9d:19:b9:d1:bb:4d:bf:9f:54:0f:
30:1a:a7:2f:17:62:98:39:7f:d7:43:2f:5d:de:c3:89:08:1e:
c8:d1:ba:b4:1b:84:89:97:4f:a8:3e:70:de:2f:38:61:84:03:
92:b5:3d:bd:22:0c:bd:de:c1:7c:06:08:b0:44:10:04:fa:ce:
e4:83:7e:14:4e:ac:57:92:b2:0a:6a:83:8e:e5:43:1c:8e:5e:
b3:63:bb:34:9c:d8:43:7c:ce:b3:ae:97:60:74:ad:eb:06:a9:
0b:15:18:9b:bf:95:d9:7e:7c:df:16:3c:54:00:ed:e2:de:fc:
8f:61:36:20:e4:81:ff:89:e0:e1:43:2b:88:c4:98:18:b3:0f:
03:7c:7f:e0:5e:25:33:6f:16:27:64:07:21:a3:a5:4a:27:13:
04:ae:e9:7c
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUXl7Oy8TGxLqq+XL7NZcbAr5SvfwwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwODIxMDAwMDAwWhcNMjQwOTI1MjM1OTU5
WjB6MUkwRwYDVQQFE0AwNTRjYTc0MmZhNWFmNmY0OGZlNGI3YmJmZjk3NjlmN2Vi
YzFjZjBmZmRkNWI1OTJjZjY2N2Y1YWZhOWUwMzFiMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDiT6GzsTae4xR7miF3Zj2BNFNI5rpZKmlOmPpjCSy1yjeb
0e5RL8i6ePrC/XoMwMhiz0EYVMgx9ociNADxUmRm5Dc5FSafCCJSb4Up7WzbiUG+
xbEBmeifJ5K61DaOfjTxWp3xsMUZsdkiCzXg1ZCcWZ+bK0g7FwMsijwaHxZOSnCO
bEu5s8aanabICAaj3/p3fNHx1As3ztwXRB5kBXssMujfLoG0iCJmHcpziYp8OMbw
DNmlDITclGrd17pPURK9zWwdLFx+SUYqh5nxXZqQJJzLFBq6Z+VVs3lFrgJE880C
VtYrJ/n/KmVY/Gj9aFC5AJt3eYyIo8waTYg7V2KDAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU0W1Sob/BAbNLVj+PwrWqUN9Q7OEwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzIxZWU3YTM0LTRlMmEtNDBjYS1hZjY3LTIyZWVlMjUxMTJlNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAJjiQG+iwdL2wGeRyjPjhg6Hsyam
cYxkGz05MYQNgUb0nIRFHp4qJK48qmZaYYlzuAuWVuGjFvUqq8mhboykzKBkx3lu
N9Yy+Yyaj6hX3NyBrGZ0y5bS98kCre5N8ZsKJK7VnRm50btNv59UDzAapy8XYpg5
f9dDL13ew4kIHsjRurQbhImXT6g+cN4vOGGEA5K1Pb0iDL3ewXwGCLBEEAT6zuSD
fhROrFeSsgpqg47lQxyOXrNjuzSc2EN8zrOul2B0resGqQsVGJu/ldl+fN8WPFQA
7eLe/I9hNiDkgf+J4OFDK4jEmBizDwN8f+BeJTNvFidkByGjpUonEwSu6Xw=
-----END CERTIFICATE-----
Generated at Thu Aug 22 02:29:02 2024 by rpki-client on console-ams.rpki-client.org