Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/44858f50-b5c9-4f17-94b7-4281e8b9ce19.roa
File: 44858f50-b5c9-4f17-94b7-4281e8b9ce19.roa (raw, json)
Hash identifier: xemPmFBsTHfNA84liTgqbRlgzZ2/4i6q9MtgwN7/T7Q=
Subject key identifier: F5:29:05:B2:F8:C9:54:59:0C:DA:49:CE:79:46:80:DA:40:01:01:FF
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 313A181ACF79D67345118F56C2D7EE6D66EF2E41
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/44858f50-b5c9-4f17-94b7-4281e8b9ce19.roa
Signing time: Sun 04 Aug 2024 00:00:00 +0000
ROA not before: Sun 04 Aug 2024 00:00:00 +0000
ROA not after: Sun 08 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Aug 2024 00:18:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:3a:18:1a:cf:79:d6:73:45:11:8f:56:c2:d7:ee:6d:66:ef:2e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 4 00:00:00 2024 GMT
Not After : Sep 8 23:59:59 2024 GMT
Subject: serialNumber=55d413d6825ad4cc746a72c26e9e24b84c6efef128f4c4cd5fadfcfc206a5767, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5f:fd:f2:0e:0e:10:6c:5c:0d:a9:57:a3:3c:
56:a9:9c:52:52:9a:eb:29:57:ba:18:3b:e9:3c:39:
fb:d4:88:73:95:a9:a4:c0:68:c1:01:2a:82:72:c2:
c6:e2:79:a4:4c:5e:5e:61:9f:63:46:15:e4:b2:2e:
d8:4b:84:ec:1e:54:3f:23:9e:57:2c:4d:5f:cd:0f:
bc:9b:98:5f:a9:19:ae:91:bd:c1:bf:f8:cf:01:84:
75:88:29:16:92:32:ed:8f:3d:40:4a:3f:4d:7f:ca:
88:19:63:f2:30:c9:86:6e:c6:1b:f1:18:7c:21:be:
ac:65:e8:a1:f1:30:8d:98:d3:92:46:2d:d3:d9:74:
34:56:1e:81:17:e6:09:50:cc:64:17:34:3d:01:3c:
94:cb:6c:f6:8f:0b:cc:8b:31:33:20:04:91:e4:8f:
00:7e:68:24:ff:5d:27:f8:f7:20:3d:ae:cf:bb:23:
94:db:14:55:88:b7:9c:9d:db:78:37:a5:14:8c:87:
fa:a5:52:88:ef:38:07:df:a6:e3:91:78:c0:d3:3c:
c7:a5:c6:65:b2:8b:92:6e:93:cd:a3:47:04:d7:2c:
a6:ef:6d:2b:9b:d2:1c:1b:82:87:5d:d5:4d:64:af:
80:d2:32:5d:f4:55:11:b2:25:46:0b:a8:1e:1a:01:
b3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:29:05:B2:F8:C9:54:59:0C:DA:49:CE:79:46:80:DA:40:01:01:FF
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/44858f50-b5c9-4f17-94b7-4281e8b9ce19.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:36:65:65:2c:98:93:e7:9f:42:80:57:8e:0f:1d:8c:eb:2b:
bd:c9:3d:01:44:78:34:c5:73:4e:e8:97:d6:09:19:48:f5:55:
64:89:06:f0:af:f3:1f:e6:46:1a:27:21:c0:ac:49:ee:3c:98:
73:52:13:a7:ca:54:28:70:39:d8:6d:e8:b5:4f:b9:2f:2d:9b:
a9:7f:b8:c4:9a:ff:c1:21:ef:6f:4e:08:2f:c2:f4:95:a7:3c:
08:09:d6:85:06:1a:3c:f6:70:29:22:ad:2e:e3:cb:07:53:68:
0e:56:5f:13:d1:77:38:17:27:c5:e1:45:12:9a:03:74:a5:a6:
e5:99:c8:f8:64:1a:3d:62:df:d5:14:38:b8:96:29:52:41:ee:
4a:0d:3a:d9:13:f0:22:0c:18:2d:03:d2:15:fa:85:44:dd:15:
88:3f:a8:0f:a8:0a:8b:4e:11:56:d1:ae:07:40:f3:95:d7:7a:
67:1a:f8:01:7d:f3:e1:f8:04:9e:5b:2e:35:97:7d:f8:6c:bf:
9d:f0:2e:50:b8:ca:2b:16:68:7e:b7:b3:6b:44:94:cb:52:5f:
d5:b9:50:f2:91:ed:d6:3e:27:af:2a:98:a1:61:23:bc:f0:63:
da:c6:8f:b0:0e:b1:6c:38:bb:3f:ad:2d:cd:85:e8:8b:8a:fc:
3e:36:e6:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:07:51 2024 by rpki-client on console-ams.rpki-client.org