Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/52cae213-5155-44ad-9835-cc7f27296da7.roa
File: 52cae213-5155-44ad-9835-cc7f27296da7.roa (raw, json)
Hash identifier: KY4+9dlKODghjN8D/ycnBXDmjpSMmw8Rcd0B0rY3Vac=
Subject key identifier: A2:1B:79:4D:CC:38:78:AA:0F:F7:DD:E8:7F:AF:57:5C:25:2C:CA:9A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 24D7873341ECCA9D4123A1E45D0E8B2761F80A7D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/52cae213-5155-44ad-9835-cc7f27296da7.roa
Signing time: Thu 18 Jul 2024 00:00:00 +0000
ROA not before: Thu 18 Jul 2024 00:00:00 +0000
ROA not after: Thu 22 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 05:38:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:d7:87:33:41:ec:ca:9d:41:23:a1:e4:5d:0e:8b:27:61:f8:0a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 18 00:00:00 2024 GMT
Not After : Aug 22 23:59:59 2024 GMT
Subject: serialNumber=8d02aa2f009a2e0063b8c40b3356035bac5ca096840ba01da7ee8d6b44bf552c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6e:ca:bc:e9:2e:87:d6:fb:4f:9d:63:e4:b0:
27:c2:85:45:51:ac:dc:31:a2:7b:0a:be:1d:0d:69:
d0:38:ee:d1:bb:d0:01:5b:ac:2b:52:2e:2d:26:82:
e6:5a:1e:10:9c:8b:63:9a:42:d8:43:f0:12:d4:7c:
cf:31:c0:6a:a6:56:28:3e:13:c2:e5:64:36:6a:39:
0c:60:78:27:b1:22:f2:03:08:ab:fa:39:eb:46:74:
4b:22:dd:1a:b8:c2:65:16:f4:73:63:6a:7e:e0:ff:
fc:ab:c2:16:44:93:18:7e:6e:ba:46:7e:ea:01:2f:
75:10:4a:4e:66:79:04:0e:95:9e:0a:a6:3e:1a:ac:
50:9a:50:1c:4a:07:36:dc:e9:96:18:45:39:2d:15:
28:d5:0e:0e:a0:cf:bf:b7:f7:37:ae:4c:be:75:38:
05:d4:32:86:0d:bb:a2:8d:d7:16:c7:c2:e1:95:8a:
a7:de:97:0d:eb:a1:4e:67:7b:9f:3c:32:11:0c:68:
cc:8e:18:ca:be:c0:2f:65:2f:06:a2:e3:d5:d8:ad:
94:4b:5a:5a:1d:d9:86:e2:61:32:a8:4d:6c:43:c3:
74:24:aa:78:a8:ea:be:45:59:2e:08:53:e7:4e:c0:
fa:8c:15:09:53:13:98:3f:e5:c8:75:61:7c:18:59:
d4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:1B:79:4D:CC:38:78:AA:0F:F7:DD:E8:7F:AF:57:5C:25:2C:CA:9A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/52cae213-5155-44ad-9835-cc7f27296da7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:39:74:cb:b2:15:6e:8d:be:d8:6b:fa:3b:1b:75:a1:6a:1a:
17:b2:0f:d4:e1:c8:a5:0a:bf:44:b7:c4:0b:71:aa:a4:f5:c2:
99:e3:b5:c4:f2:0c:ac:f0:1b:60:70:6b:84:09:fe:94:0c:b7:
de:ed:7a:c4:a6:17:40:44:83:59:2f:ad:94:bd:c4:2f:ff:6e:
21:50:4e:b8:8b:3f:1e:e0:cb:e2:59:85:9b:94:c0:fc:7e:88:
4a:b5:63:8c:ef:bf:d9:34:9c:bb:71:d2:e5:c6:4b:45:49:30:
e1:4d:51:3b:b2:97:90:14:6e:82:83:0e:6d:bc:ad:74:09:f3:
dc:35:67:75:38:7c:5c:69:ca:50:67:fc:83:1c:3a:fd:78:34:
0b:8c:6f:9b:63:42:fa:37:ad:0a:2e:31:61:55:8d:32:c2:51:
de:93:56:04:0b:18:bf:09:63:4d:fd:fa:77:c2:34:c6:d6:12:
d8:0e:a7:40:29:52:6d:0b:71:86:c2:5a:e3:64:73:ad:f7:0d:
86:d0:e7:2b:22:2b:17:35:06:b4:54:9b:68:1e:7a:79:79:4a:
e7:a3:a8:0b:65:7d:e1:62:10:ed:82:58:b8:0e:8b:98:05:60:
dd:f7:6d:f1:ef:76:55:2f:87:29:ec:ff:86:ff:fe:5a:33:71:
16:d5:54:b8
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUJNeHM0Hsyp1BI6HkXQ6LJ2H4Cn0wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNzE4MDAwMDAwWhcNMjQwODIyMjM1OTU5
WjB6MUkwRwYDVQQFE0A4ZDAyYWEyZjAwOWEyZTAwNjNiOGM0MGIzMzU2MDM1YmFj
NWNhMDk2ODQwYmEwMWRhN2VlOGQ2YjQ0YmY1NTJjMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC3bsq86S6H1vtPnWPksCfChUVRrNwxonsKvh0NadA47tG7
0AFbrCtSLi0mguZaHhCci2OaQthD8BLUfM8xwGqmVig+E8LlZDZqOQxgeCexIvID
CKv6OetGdEsi3Rq4wmUW9HNjan7g//yrwhZEkxh+brpGfuoBL3UQSk5meQQOlZ4K
pj4arFCaUBxKBzbc6ZYYRTktFSjVDg6gz7+39zeuTL51OAXUMoYNu6KN1xbHwuGV
iqfelw3roU5ne588MhEMaMyOGMq+wC9lLwai49XYrZRLWlod2YbiYTKoTWxDw3Qk
qnio6r5FWS4IU+dOwPqMFQlTE5g/5ch1YXwYWdTrAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUoht5Tcw4eKoP993of69XXCUsypowHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzUyY2FlMjEzLTUxNTUtNDRhZC05ODM1LWNjN2YyNzI5NmRhNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAFw5dMuyFW6Nvthr+jsbdaFqGhey
D9ThyKUKv0S3xAtxqqT1wpnjtcTyDKzwG2Bwa4QJ/pQMt97tesSmF0BEg1kvrZS9
xC//biFQTriLPx7gy+JZhZuUwPx+iEq1Y4zvv9k0nLtx0uXGS0VJMOFNUTuyl5AU
boKDDm28rXQJ89w1Z3U4fFxpylBn/IMcOv14NAuMb5tjQvo3rQouMWFVjTLCUd6T
VgQLGL8JY039+nfCNMbWEtgOp0ApUm0LcYbCWuNkc633DYbQ5ysiKxc1BrRUm2ge
enl5SuejqAtlfeFiEO2CWLgOi5gFYN33bfHvdlUvhyns/4b//lozcRbVVLg=
-----END CERTIFICATE-----
Generated at Thu Jul 18 08:01:49 2024 by rpki-client on console-ams.rpki-client.org