Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c8a8bd9-3145-466f-ba46-026272de0e5e.roa
File: 3c8a8bd9-3145-466f-ba46-026272de0e5e.roa (raw, json)
Hash identifier: Ohz1lPK2ATrRyoihDVhmTDXMvk9otzvrSm2DFH+I9nQ=
Subject key identifier: B5:29:90:0A:88:D5:04:88:45:E8:0F:77:C7:E4:F2:4A:17:1E:90:31
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 525DB0A7F3321DA4AB8A419AA2B5F4D65B590F63
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c8a8bd9-3145-466f-ba46-026272de0e5e.roa
Signing time: Sun 19 May 2024 00:00:00 +0000
ROA not before: Sun 19 May 2024 00:00:00 +0000
ROA not after: Sun 23 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 May 2024 18:18:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:5d:b0:a7:f3:32:1d:a4:ab:8a:41:9a:a2:b5:f4:d6:5b:59:0f:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 19 00:00:00 2024 GMT
Not After : Jun 23 23:59:59 2024 GMT
Subject: serialNumber=c25c7ac852d3cd211c4421f4f96a31fba2ac19a07629cf6d1b0486019cd40ab5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ac:19:95:01:03:f0:12:13:6c:cc:15:82:d1:
8b:3a:ea:77:d6:e5:7d:26:54:2b:46:46:21:34:d5:
e4:33:7e:7f:20:2a:25:58:9e:86:7c:c7:85:a0:e0:
13:f0:27:eb:2b:89:81:4e:11:20:5c:49:56:df:90:
b5:03:71:33:f7:c8:87:ea:12:f3:ca:7d:23:bc:08:
e7:1d:cb:93:a1:08:bd:d0:14:fa:87:3d:cb:aa:28:
11:2c:31:ac:27:aa:54:a7:81:b5:49:0e:7e:0a:3f:
d4:cd:f4:d0:02:ce:95:93:7a:df:b5:32:f1:65:1e:
e2:d8:0c:1e:a5:09:78:67:93:f1:d3:d1:68:d1:f7:
fa:b9:81:65:e0:a8:bc:84:e0:28:9f:09:43:35:4c:
8b:f6:14:15:a4:ac:63:fc:b3:19:18:08:01:64:5d:
de:77:1e:2d:31:5d:e0:b7:38:ec:d4:f3:c5:42:85:
b1:99:c8:a5:fb:78:bf:94:a6:c6:fe:ad:64:c3:07:
67:73:9e:7f:f3:06:62:45:72:c7:f0:4b:6d:0e:fc:
da:60:0c:22:c4:05:a5:b8:e8:3a:79:60:0f:39:eb:
61:4b:eb:04:bd:e3:7b:1c:ac:52:fe:60:7b:59:e6:
66:bd:b2:a4:bb:0f:4c:9a:c9:dc:36:d7:77:14:d5:
f9:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:29:90:0A:88:D5:04:88:45:E8:0F:77:C7:E4:F2:4A:17:1E:90:31
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3c8a8bd9-3145-466f-ba46-026272de0e5e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
68:ad:79:d0:13:cc:24:38:68:43:4c:8f:c8:7b:c7:bf:9b:49:
8f:8d:ab:a6:a0:0e:64:7d:44:46:46:c1:f3:ae:d4:9b:0e:da:
a1:41:67:7d:d4:9d:2c:6b:6d:a1:b9:63:74:31:95:94:a1:60:
bc:ad:44:be:28:0e:ea:0e:ca:8e:94:f3:a6:1e:34:ac:ca:7b:
ee:03:7a:5d:15:0b:ee:59:eb:fd:46:a1:cc:b5:5e:4c:89:d9:
48:70:4c:ac:3d:52:ee:eb:f2:d6:e4:59:12:f7:24:60:dd:27:
b6:46:0a:85:cc:c4:cb:0a:c9:91:cd:41:a1:64:e4:00:e3:c2:
1e:f7:0a:0a:b8:e0:50:0e:2e:29:81:ab:7d:14:13:53:5f:d6:
93:50:a5:55:13:92:34:ff:5d:5a:46:66:24:cf:25:d4:ce:d3:
e7:6a:05:42:91:29:79:00:23:90:dc:f9:30:4b:75:1a:42:fc:
8d:b3:19:3a:c0:b9:ac:f6:5a:42:a3:26:8c:33:a6:00:f7:8c:
ae:1e:26:78:e8:e9:90:3d:ec:c7:bc:ea:ac:fc:4c:10:8c:2a:
cc:aa:63:6f:e7:98:af:6f:fe:26:40:68:a0:61:ac:9d:bd:85:
30:0d:3a:90:c3:9a:df:c9:d8:0a:f4:df:c6:f4:6b:3c:82:83:
5c:98:3f:96
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUUl2wp/MyHaSrikGaorX01ltZD2MwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNTE5MDAwMDAwWhcNMjQwNjIzMjM1OTU5
WjB6MUkwRwYDVQQFE0BjMjVjN2FjODUyZDNjZDIxMWM0NDIxZjRmOTZhMzFmYmEy
YWMxOWEwNzYyOWNmNmQxYjA0ODYwMTljZDQwYWI1MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCfrBmVAQPwEhNszBWC0Ys66nfW5X0mVCtGRiE01eQzfn8g
KiVYnoZ8x4Wg4BPwJ+sriYFOESBcSVbfkLUDcTP3yIfqEvPKfSO8COcdy5OhCL3Q
FPqHPcuqKBEsMawnqlSngbVJDn4KP9TN9NACzpWTet+1MvFlHuLYDB6lCXhnk/HT
0WjR9/q5gWXgqLyE4CifCUM1TIv2FBWkrGP8sxkYCAFkXd53Hi0xXeC3OOzU88VC
hbGZyKX7eL+Upsb+rWTDB2dznn/zBmJFcsfwS20O/NpgDCLEBaW46Dp5YA8562FL
6wS943scrFL+YHtZ5ma9sqS7D0yaydw213cU1flvAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUtSmQCojVBIhF6A93x+TyShcekDEwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzNjOGE4YmQ5LTMxNDUtNDY2Zi1iYTQ2LTAyNjI3MmRlMGU1ZS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGitedATzCQ4aENMj8h7x7+bSY+N
q6agDmR9REZGwfOu1JsO2qFBZ33UnSxrbaG5Y3QxlZShYLytRL4oDuoOyo6U86Ye
NKzKe+4Del0VC+5Z6/1Gocy1XkyJ2UhwTKw9Uu7r8tbkWRL3JGDdJ7ZGCoXMxMsK
yZHNQaFk5ADjwh73Cgq44FAOLimBq30UE1Nf1pNQpVUTkjT/XVpGZiTPJdTO0+dq
BUKRKXkAI5Dc+TBLdRpC/I2zGTrAuaz2WkKjJowzpgD3jK4eJnjo6ZA97Me86qz8
TBCMKsyqY2/nmK9v/iZAaKBhrJ29hTANOpDDmt/J2Ar038b0azyCg1yYP5Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:01 2024 by rpki-client on console-ams.rpki-client.org