Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/32cdcc83-2ef2-4516-b8bf-8f27e2340481.roa
File: 32cdcc83-2ef2-4516-b8bf-8f27e2340481.roa (raw, json)
Hash identifier: b34XKMhxPa+A0WKbH6+bPJZAFNQRl9+A4DXIHa9Wx2U=
Subject key identifier: C1:79:F7:62:D0:38:A6:26:19:41:A9:2B:59:08:06:CB:81:DD:94:DB
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4653C642C1B45BEDE1A472CC1E4632A873CC8F27
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/32cdcc83-2ef2-4516-b8bf-8f27e2340481.roa
Signing time: Sun 11 Aug 2024 00:00:00 +0000
ROA not before: Sun 11 Aug 2024 00:00:00 +0000
ROA not after: Sun 15 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Aug 2024 05:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:53:c6:42:c1:b4:5b:ed:e1:a4:72:cc:1e:46:32:a8:73:cc:8f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 11 00:00:00 2024 GMT
Not After : Sep 15 23:59:59 2024 GMT
Subject: serialNumber=a6b7e3ac9afb5af5f41636a1a31d4fbb8619633775eae42ffbf513c0abd9f038, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:96:3e:d6:74:79:10:79:77:94:9b:9f:f0:
f1:f0:16:0d:a5:0e:f9:d8:9f:4b:35:18:ec:0c:2d:
6e:d2:ff:b6:82:7b:a0:0b:70:7e:1e:9d:e2:70:98:
12:10:54:33:36:84:9d:6a:c4:1b:40:8a:ee:c8:78:
41:e8:e4:ba:bd:ee:57:46:87:ca:d5:6c:1e:1c:92:
4e:5c:c2:d5:bc:ac:be:44:94:09:3e:0f:08:00:97:
0d:0d:2e:53:37:c1:c6:82:cb:61:5e:19:78:3e:16:
c5:1e:79:b7:b8:9d:2e:82:44:65:4d:87:df:35:3f:
16:05:40:62:a0:07:31:38:51:d4:d5:2e:8c:6c:9d:
a9:4e:ee:40:94:14:06:29:51:04:c6:c8:74:26:3d:
a6:0d:db:91:ba:54:34:16:7c:f0:25:08:47:9f:38:
f5:e2:6d:6c:74:4e:20:dc:35:a0:84:5e:b2:0b:1c:
a8:79:d1:03:55:d7:a4:0c:14:68:be:bf:d4:30:f4:
89:42:cb:8e:ba:a9:2f:19:fd:08:d8:79:ae:4e:d5:
d8:b8:c0:47:b9:86:67:89:79:30:da:21:1d:9c:e7:
48:e5:58:a9:bf:ec:8d:72:7a:44:f9:33:57:b0:7c:
33:ac:7a:a1:ac:ec:8b:f5:2e:95:0e:8a:a6:63:50:
f7:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:79:F7:62:D0:38:A6:26:19:41:A9:2B:59:08:06:CB:81:DD:94:DB
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/32cdcc83-2ef2-4516-b8bf-8f27e2340481.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:0b:71:2e:4a:ec:fc:0a:63:f1:f3:49:96:3f:d7:a8:4b:4d:
12:e4:fd:f3:89:0a:7c:e5:ab:e6:77:9b:4f:6a:0a:c1:73:cd:
17:1b:cd:9e:96:99:b7:38:34:20:19:69:67:ce:f8:3b:ed:53:
10:ad:91:f1:42:89:d8:8a:13:d4:2b:89:79:30:74:4b:44:b9:
f3:4e:a0:d1:5f:aa:da:40:8f:c3:42:09:7e:70:4e:12:18:d1:
81:f2:83:14:e8:7f:ea:1d:4a:3c:e3:bb:c6:d1:03:a1:0f:22:
75:b4:93:27:9b:d1:7e:52:16:fb:68:e4:19:9c:29:c3:2a:d9:
ea:e2:69:3d:9d:e4:ec:93:58:b7:0b:49:c8:8b:cb:4f:82:5a:
a5:fc:2c:3d:8f:b8:b8:bf:8a:7c:7b:a9:74:f4:de:52:a7:6b:
31:ae:6e:30:a9:76:a0:5e:21:35:2a:00:f7:b7:1e:47:89:c8:
b8:c0:2b:80:fd:aa:bb:e1:a4:c1:47:ed:31:ec:5a:bc:69:e7:
56:90:b3:17:8b:18:90:26:ca:12:0d:12:b9:a4:63:c4:ee:4b:
f6:d2:f3:4d:7d:d5:91:50:68:75:cd:f0:f0:81:0f:14:30:fd:
81:46:36:21:e9:22:ac:59:ad:21:59:20:13:ea:99:b0:b5:7e:
37:0f:4d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 11 07:07:41 2024 by rpki-client on console-fra.rpki-client.org