Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d04be25-a83d-4298-b3eb-3e503457c507.roa
File: 3d04be25-a83d-4298-b3eb-3e503457c507.roa (raw, json)
Hash identifier: rUgnvi0q+rYZHqP6YQdO/IJCW4HQqxfXI1m5cV/kywQ=
Subject key identifier: EE:0A:D8:81:2C:EC:D7:62:57:0C:92:AC:BB:3C:63:67:F6:26:1E:27
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 535DE948B2B56A7CC10EAB79E40A25C18F70CC03
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d04be25-a83d-4298-b3eb-3e503457c507.roa
Signing time: Fri 17 May 2024 00:00:00 +0000
ROA not before: Fri 17 May 2024 00:00:00 +0000
ROA not after: Fri 21 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 03:43:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:5d:e9:48:b2:b5:6a:7c:c1:0e:ab:79:e4:0a:25:c1:8f:70:cc:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 17 00:00:00 2024 GMT
Not After : Jun 21 23:59:59 2024 GMT
Subject: serialNumber=2e4864f846dcd52ee63c91b0b1cc1fc089271ebddc8c969e79d137b13dfcf19a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c7:07:e2:5a:e0:c4:41:69:f3:a5:28:c4:4c:
f4:11:14:f0:cf:1e:50:ec:11:e8:ee:d4:43:8a:8f:
cb:73:29:19:51:26:62:40:1c:1a:9f:93:34:a5:87:
ee:d6:92:b3:5b:c2:32:47:d8:3a:83:e8:92:6f:43:
53:0a:2c:36:eb:91:e2:89:47:36:5b:f4:e5:32:7d:
f3:c5:64:57:20:45:08:f3:1d:dd:cd:31:05:83:6d:
7d:34:05:4c:03:06:9b:8c:b3:d1:99:4b:dc:8f:b1:
1f:93:91:ed:13:2d:a7:02:58:fd:ea:97:f5:84:a9:
44:7d:6a:41:36:8d:b5:b9:b1:83:c3:e2:9c:e8:f7:
a4:5a:33:fd:35:f5:b3:e3:63:d3:eb:23:7c:74:ab:
f8:d1:4e:96:df:cf:ab:87:9c:ad:4d:6c:d4:8e:00:
b8:f5:8b:14:14:54:96:6d:0a:83:6e:8e:47:16:fb:
47:7c:c4:77:e2:a4:d1:3a:86:90:dc:ed:c0:c7:19:
76:2a:7c:05:38:87:81:be:a2:8d:f1:74:61:e6:4c:
cc:e4:3a:b4:ad:d2:1d:b8:6a:5d:82:ee:c2:6d:4e:
04:f2:e5:6e:22:76:e9:f7:65:53:aa:63:ff:97:ed:
01:1b:12:28:3b:12:3e:43:8d:8f:95:55:9b:ea:68:
a5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0A:D8:81:2C:EC:D7:62:57:0C:92:AC:BB:3C:63:67:F6:26:1E:27
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3d04be25-a83d-4298-b3eb-3e503457c507.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e3:d6:a2:16:48:85:d3:88:a3:35:98:13:52:12:9e:f7:fe:
fb:0a:83:b2:d0:35:e8:96:08:62:b8:68:a7:a2:04:41:f2:0f:
9e:16:30:f4:ea:dd:52:73:e1:71:26:4a:cf:91:32:d5:6d:81:
a6:b1:0d:ac:37:bf:fc:61:22:6e:02:b7:83:57:1c:b9:ee:69:
a5:76:8d:ac:e9:37:74:d3:2e:4d:1b:64:25:d7:6e:d1:4b:6a:
11:fd:0d:31:9f:ee:54:c9:1f:af:ca:cc:6f:c5:5c:f5:01:69:
0e:89:24:08:d2:31:2f:c1:c6:a1:e7:3a:00:d5:60:cf:fd:b5:
a0:e9:c2:d5:15:b1:52:15:ee:b2:cd:3d:d1:0a:fd:a6:d4:67:
94:95:62:b2:3d:1a:8b:27:90:a6:cf:88:6e:48:13:15:61:9f:
f0:6b:1b:ea:16:ee:9a:05:e4:d7:54:7d:d6:60:90:17:76:6d:
29:5b:7f:20:f6:99:0b:e3:4b:47:61:ba:7d:5a:2c:c7:7d:57:
a1:ce:dd:8f:fc:f8:d3:92:5a:fa:ae:89:f3:ec:86:4f:a2:38:
61:49:1a:b6:6d:5e:31:ea:92:69:b7:8b:2e:d5:53:83:24:9c:
2f:15:d6:f9:05:c6:2e:b8:35:be:08:30:fc:38:84:8e:c8:06:
05:09:64:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:18 2024 by rpki-client on console-fra.rpki-client.org