Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3a76b805-5e41-4e38-8773-aa14ef0d97d2.roa
File: 3a76b805-5e41-4e38-8773-aa14ef0d97d2.roa (raw, json)
Hash identifier: rBjbm+IV5oCjARaAreExIfv1LJci8tRT2NJwcKgLzIU=
Subject key identifier: 22:92:81:57:B5:57:06:8E:C2:26:A4:DD:16:1E:6A:11:79:07:E3:A0
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 03D532447CDF8AFDB4585D3887E20DEBF6D51946
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3a76b805-5e41-4e38-8773-aa14ef0d97d2.roa
Signing time: Wed 05 Jun 2024 00:00:00 +0000
ROA not before: Wed 05 Jun 2024 00:00:00 +0000
ROA not after: Wed 10 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d5:32:44:7c:df:8a:fd:b4:58:5d:38:87:e2:0d:eb:f6:d5:19:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 5 00:00:00 2024 GMT
Not After : Jul 10 23:59:59 2024 GMT
Subject: serialNumber=d470a9087cbf3e4c242687749480f26279c10d8c37eaa23044b1cec6c77bb305, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ab:e6:77:72:dc:80:94:be:32:71:28:04:6c:
e0:aa:37:73:c9:ae:85:89:87:bb:74:38:ae:96:7f:
85:da:bf:dd:0f:70:5d:2e:e1:bf:f8:77:13:24:f9:
3c:60:49:cf:f5:ee:21:2c:86:3c:39:23:5e:dd:fb:
2c:28:e1:56:9e:78:62:8f:49:dd:96:85:9d:da:e0:
57:cc:81:26:1f:2b:4d:5f:4f:1b:c9:ef:47:e8:f0:
a8:e5:ea:5f:d8:f9:cb:56:be:d9:ab:a4:c6:f6:69:
38:a4:fe:8c:58:3b:fb:09:fd:ca:79:1c:4f:73:26:
64:28:8a:7a:72:66:8b:d0:b3:46:cb:95:e6:c9:5c:
81:d2:7b:66:ed:1d:b8:f2:15:23:1f:ce:f4:8e:13:
03:10:19:1a:ae:7d:f6:05:72:71:92:e5:95:26:ab:
d0:c7:81:91:be:d3:42:17:69:e0:c1:82:83:52:e2:
8f:a6:b9:e8:e6:91:4b:d9:f9:5c:e0:b0:87:31:20:
3f:c0:ba:94:24:38:e6:f2:e5:25:d2:d7:8a:16:69:
85:0f:a3:68:62:af:f9:77:4d:ea:81:56:e2:ae:ca:
31:9b:1e:29:52:48:3b:af:46:4c:5e:e0:04:6d:18:
d6:ce:16:0e:4f:25:45:36:b4:bb:e6:1b:f8:36:ef:
02:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:92:81:57:B5:57:06:8E:C2:26:A4:DD:16:1E:6A:11:79:07:E3:A0
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3a76b805-5e41-4e38-8773-aa14ef0d97d2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c8:aa:b6:e0:27:94:a0:37:87:bc:80:8b:7b:3e:53:c6:35:
83:59:6e:d9:83:8c:16:78:6b:78:09:77:97:c9:06:fa:1f:bb:
40:6b:d0:20:7f:9b:4b:f4:9f:00:94:df:b6:26:7c:b2:c7:12:
43:07:89:7c:fe:d3:1d:d4:7a:8e:f9:e3:29:f3:94:2f:c6:e7:
13:f6:64:00:56:36:82:17:d6:cd:5d:d8:31:72:4f:21:37:b1:
b3:cf:5c:2a:01:3d:43:91:c9:7b:ef:57:0a:a2:09:3f:41:e2:
c9:16:d1:ff:ca:66:9c:8f:b9:4e:cc:ce:ea:bd:bd:d4:66:85:
41:fa:1f:9b:c7:61:11:7f:0e:7b:90:05:af:cc:63:63:fd:7f:
29:25:cd:f8:25:81:c6:99:c1:9c:9b:e8:c8:68:74:24:e2:00:
42:7b:f8:8b:9e:fa:cc:e9:91:f4:cc:23:28:d1:5d:1c:fc:00:
9b:71:c5:b0:a5:3b:58:ef:2d:1b:04:da:0e:19:68:15:86:1c:
40:e6:cf:c5:ea:7d:01:df:ef:28:92:2c:f1:1c:b9:69:77:24:
4d:06:dd:a5:3e:cd:2e:b0:0a:79:a9:53:39:75:6b:16:da:2c:
dd:66:c0:8f:e1:d0:9d:80:23:04:3f:8b:b8:7a:36:b8:62:ed:
02:b5:c5:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org