Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4390d508-2e86-4af7-813e-1807e0a9a91d.roa
File: 4390d508-2e86-4af7-813e-1807e0a9a91d.roa (raw, json)
Hash identifier: 4jFLa7GC8TEXt1+otn9vtVMYixAhNEecKT0/0RSUOPk=
Subject key identifier: 06:33:4C:2C:20:62:77:C6:E3:FA:AD:E5:31:88:1D:9B:7E:7B:9F:42
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7B3D629DDA1557C82C2FF8D6EEDCB2B10EB4B3C7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4390d508-2e86-4af7-813e-1807e0a9a91d.roa
Signing time: Tue 06 Aug 2024 00:00:00 +0000
ROA not before: Tue 06 Aug 2024 00:00:00 +0000
ROA not after: Tue 10 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 13:38:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:3d:62:9d:da:15:57:c8:2c:2f:f8:d6:ee:dc:b2:b1:0e:b4:b3:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 6 00:00:00 2024 GMT
Not After : Sep 10 23:59:59 2024 GMT
Subject: serialNumber=4d6fc4766176eb8a6a0aa0967c39a9fbe8c150582bf034f8d500eeeffb62741f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:86:2a:65:31:30:5a:b4:21:b3:60:23:71:27:
02:92:bf:24:c8:19:04:14:2c:f5:cf:99:bf:8d:03:
63:0b:31:92:84:29:ab:46:49:3c:46:e8:1d:1a:74:
9f:54:82:d9:8a:04:aa:a2:3b:dd:24:ac:4b:c2:7a:
2d:9c:f5:08:a0:8d:19:aa:63:e9:51:0f:de:d4:8e:
9d:f2:ab:0b:18:3e:1b:b7:7b:ae:49:f1:34:9d:fc:
03:15:cb:01:22:dc:88:74:d6:6e:73:ea:d0:50:0b:
87:c6:11:ab:e8:13:d5:3a:9d:a1:2f:d8:d8:c9:79:
fc:f0:f0:6d:fb:99:52:08:f2:4b:a2:27:f9:22:4b:
61:e4:18:60:8c:ba:d3:10:56:99:65:f0:3f:f0:42:
f5:3a:de:d9:c2:90:15:30:ad:9b:03:34:22:20:c6:
3c:e6:6f:5d:0f:39:7e:89:48:78:ad:30:98:5e:80:
89:7f:cc:0f:6e:69:a4:cd:7d:0e:fa:69:79:ba:67:
70:ab:d8:65:9a:f2:9f:b1:a2:e6:32:c4:ce:d0:99:
aa:a8:ff:25:a9:58:7d:4b:33:39:08:36:4f:0a:2a:
54:b0:2b:e9:4c:f4:7d:9c:23:3d:ce:95:bb:c7:49:
55:b8:3a:cd:50:68:89:de:6c:e8:d0:cb:0a:f5:21:
57:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:33:4C:2C:20:62:77:C6:E3:FA:AD:E5:31:88:1D:9B:7E:7B:9F:42
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/4390d508-2e86-4af7-813e-1807e0a9a91d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c4:e6:c5:41:02:76:e0:b1:14:27:26:fb:44:26:68:eb:c7:
cb:de:be:00:7c:ad:da:9b:10:ef:77:9f:b1:d7:92:88:de:e1:
06:64:6a:84:42:e3:a3:ec:33:1a:cd:a7:f7:5d:62:f5:a9:75:
d6:d3:19:a5:86:6d:95:9b:ea:d7:6b:14:22:14:7d:11:8f:68:
7b:5e:4b:e3:6c:84:54:fb:9b:6b:55:78:90:12:4d:79:55:27:
da:fa:40:17:30:0b:69:06:b4:cb:4d:3d:07:78:d2:45:b1:f9:
5d:54:ba:7c:e4:14:bc:01:c8:86:e5:33:96:63:81:02:62:d6:
90:80:65:89:5c:59:52:55:6f:ee:c5:88:e5:64:cc:37:b6:d3:
93:b0:63:5f:70:c5:55:d9:b9:50:14:3b:4c:76:6e:87:f1:f6:
d9:0d:51:c2:f6:61:ec:64:61:26:d4:a1:43:17:33:8c:cc:15:
e6:e2:2a:32:a3:a7:f1:35:4b:0b:c3:f4:c7:e2:1d:c4:32:f5:
90:df:13:3e:07:13:87:67:f3:d2:2c:e1:21:0c:f2:b9:e0:80:
ad:55:8d:13:51:d9:69:fa:d7:f9:7a:09:0f:ec:39:43:0c:1c:
b2:fa:75:91:47:b7:a6:d6:0f:21:0b:d3:c0:73:ab:ff:3f:21:
4d:4a:3c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 18:22:43 2024 by rpki-client on console-ams.rpki-client.org