Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58a471a9-aa17-4350-89f5-854e911a9547.roa
File: 58a471a9-aa17-4350-89f5-854e911a9547.roa (raw, json)
Hash identifier: Tf16xwM9bBP7OIpMmAAtiTIBWTjnqRHYaNnyspglghs=
Subject key identifier: BC:1B:F7:82:DA:E7:C9:5D:B6:CD:A1:83:20:D6:4E:42:A1:B5:7F:FC
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 17BF126512C6B48EC1580768E74F5DB51968BAF8
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58a471a9-aa17-4350-89f5-854e911a9547.roa
Signing time: Tue 06 Aug 2024 00:00:00 +0000
ROA not before: Tue 06 Aug 2024 00:00:00 +0000
ROA not after: Tue 10 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 02:53:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:bf:12:65:12:c6:b4:8e:c1:58:07:68:e7:4f:5d:b5:19:68:ba:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 6 00:00:00 2024 GMT
Not After : Sep 10 23:59:59 2024 GMT
Subject: serialNumber=a5fc44b8f340ad2b4f4abfae7c2c81ffc158ac76bae1bb63f8354e51e7d4d33f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b8:ea:b0:02:fd:19:7e:a7:0d:7e:44:49:88:
83:52:f1:82:d5:11:a7:d2:6a:fc:4c:a9:5f:41:e3:
1d:12:17:ce:ab:1e:fb:25:8c:fc:60:b7:a3:d9:54:
03:63:cd:8c:70:ba:2a:5c:4c:c5:67:2d:10:38:50:
59:25:a9:06:3f:bf:8f:4c:2a:f5:a0:f5:16:05:f1:
ba:e3:df:67:30:9f:0e:ca:9b:a6:3c:43:9e:0b:ea:
b5:63:db:84:49:6c:06:19:db:95:fb:69:f1:bb:28:
39:c6:aa:07:be:88:17:c5:24:72:02:a6:14:02:8e:
d2:9f:1f:87:11:33:63:59:dd:cf:5b:1f:31:90:9d:
b1:14:f5:01:3f:8d:42:2b:93:ff:64:c9:66:e9:26:
97:3c:19:c6:d6:33:73:af:99:49:45:aa:ea:47:58:
18:fb:fa:eb:b7:a6:4d:c8:68:fc:f0:b2:93:0f:7f:
28:67:53:61:e3:d6:ad:30:0d:66:af:ff:70:ea:63:
61:f8:f4:17:04:9f:ec:b7:14:5a:34:2c:e2:e3:87:
83:d4:79:b2:0a:fc:e4:2b:0c:8a:bf:c4:70:d4:75:
65:01:e7:69:e3:6e:11:98:0a:19:ec:52:d5:5a:56:
90:78:10:f6:91:88:45:29:d8:52:00:ad:66:a5:c4:
4a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1B:F7:82:DA:E7:C9:5D:B6:CD:A1:83:20:D6:4E:42:A1:B5:7F:FC
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/58a471a9-aa17-4350-89f5-854e911a9547.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:9c:8c:b9:36:d4:5b:96:df:8c:65:91:ea:19:88:4e:f1:c9:
9e:4b:fe:86:f9:6c:99:71:f3:ce:f7:c7:5f:56:f4:74:85:a4:
9d:1c:92:ec:bd:19:8a:75:ba:15:0e:9c:c6:30:8e:08:10:bd:
9d:c4:6e:e7:4c:08:4b:89:45:63:7d:53:7d:ca:41:37:a1:e4:
de:dd:82:cc:f7:b7:92:5d:4e:66:36:64:f8:52:9c:11:c8:ad:
4b:ae:79:e6:ce:5d:67:23:2f:cf:6f:d4:b2:73:80:40:63:a5:
2c:67:fb:6c:74:74:7d:93:ba:83:d8:e3:79:66:cb:83:74:72:
92:c2:62:46:5d:70:cd:d9:ae:24:38:85:17:9a:cb:c4:44:3b:
e8:3b:33:cd:fc:a1:62:f5:7c:0e:a0:5c:c2:4e:d2:c3:4d:ff:
92:8a:5b:06:18:e5:b4:02:c1:ef:9d:a3:ea:ea:23:92:d9:6d:
3f:be:c9:15:d1:c4:3c:01:77:98:bf:cc:31:87:4c:7c:60:2c:
6f:a0:48:5c:1a:11:42:1f:5a:98:45:0b:ad:ef:39:65:70:65:
e8:ea:45:fa:88:f0:25:e3:a1:b4:4a:ca:8a:0f:31:10:58:b3:
7b:5d:ef:6c:ef:f8:ed:21:4e:ad:fe:14:39:95:b0:9f:44:1d:
47:82:11:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 05:14:52 2024 by rpki-client on console-fra.rpki-client.org