Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59ef48c5-0abf-4d13-937c-386858bb0c48.roa
File: 59ef48c5-0abf-4d13-937c-386858bb0c48.roa (raw, json)
Hash identifier: txxxr3sSwXjcsTvHaKcoZ2b3TkwgQYRUviwnqxUicOY=
Subject key identifier: 76:AF:37:A7:86:A0:F5:6C:9C:73:7F:2E:B0:84:2C:DC:D4:48:DA:DF
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 36AAD99997C0C4AF3136281821BE78EB120D469B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59ef48c5-0abf-4d13-937c-386858bb0c48.roa
Signing time: Fri 25 Oct 2024 00:00:00 +0000
ROA not before: Fri 25 Oct 2024 00:00:00 +0000
ROA not after: Fri 29 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 21:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:aa:d9:99:97:c0:c4:af:31:36:28:18:21:be:78:eb:12:0d:46:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 25 00:00:00 2024 GMT
Not After : Nov 29 23:59:59 2024 GMT
Subject: serialNumber=e55c2cd08ddd7366d9c5b6137cbe5d9dd07d2bae4301145c8ce8030d8dc9f071, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:be:3f:d3:04:80:a6:7e:d0:35:02:ef:5b:4c:
c6:7c:a3:44:e0:c7:36:7f:71:e0:20:9b:e4:81:28:
e8:91:4a:27:b2:80:a2:24:33:a6:9d:26:9a:34:86:
22:32:cb:75:39:f6:f9:99:37:c6:7d:e3:2c:1b:bb:
ea:c3:42:b4:8c:51:30:04:c8:42:76:e6:5a:7f:fe:
82:94:b1:57:d1:00:69:78:73:ca:30:86:74:cb:90:
a7:bc:c8:bd:7d:61:a0:d5:b9:89:2d:53:79:b0:bc:
7b:80:53:25:19:9f:e2:62:c7:b7:3d:f1:62:49:96:
6a:d1:07:03:c8:0a:f9:ee:08:42:c1:82:e4:15:52:
55:ae:58:a6:01:57:2f:ef:66:0a:73:37:f7:80:14:
39:c9:be:9c:49:db:f3:d6:8a:65:64:88:e8:d8:5c:
39:aa:6e:de:f3:66:de:bc:1b:4a:7e:34:5a:c5:7a:
a8:f4:6c:ab:70:3e:7a:6d:e6:51:10:6a:13:6d:a1:
13:b7:35:fa:59:0b:4d:e8:77:ac:f9:28:29:5f:5e:
73:fd:d4:45:45:9c:74:e6:1d:eb:95:f9:56:bd:7d:
b0:06:ed:bb:e8:83:48:96:14:f7:6c:b3:4d:62:94:
97:ff:14:23:bc:27:63:5d:89:e6:b0:d8:50:9a:fc:
a0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AF:37:A7:86:A0:F5:6C:9C:73:7F:2E:B0:84:2C:DC:D4:48:DA:DF
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/59ef48c5-0abf-4d13-937c-386858bb0c48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:32:42:8d:89:f5:7c:6f:cf:43:e6:04:00:d8:f8:b4:cf:3b:
31:c9:ba:1d:59:49:fb:53:dc:7b:1f:2d:f0:d9:ce:09:6e:a9:
04:69:40:7e:b1:9e:6f:e6:ba:43:5c:ad:fe:d8:02:a2:bb:e3:
0f:d4:8d:65:d3:d7:1c:20:df:bf:42:ba:a7:09:9d:48:7f:23:
51:14:8e:76:7f:05:2f:51:a1:94:61:5f:df:ae:18:ce:72:30:
0a:81:81:2f:72:9d:97:09:36:f4:03:c9:63:e0:f6:f7:aa:6c:
a3:fa:7c:4a:54:a0:8d:ea:12:13:31:a2:66:39:bd:1f:63:05:
76:5e:a7:d2:d7:97:93:39:ae:8a:9b:02:82:b8:75:0b:11:1a:
06:73:2b:bd:61:ee:82:c1:7b:46:30:5c:79:18:0b:2f:9c:8c:
07:f4:9f:4c:00:f9:28:7e:91:8d:96:e2:ff:bc:6c:b5:5f:3b:
f4:ac:9e:c1:03:8c:9b:3d:20:29:96:33:c9:57:66:fe:4e:52:
66:a1:2f:48:c6:77:e7:82:c5:0b:27:66:ec:84:17:c5:94:2e:
08:09:c3:63:0a:c3:47:97:e9:aa:5c:35:bc:3e:65:12:c6:5d:
4a:51:9d:59:f1:15:c5:f6:7d:f6:33:81:1d:15:23:7b:45:5c:
ec:bc:5c:93
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUNqrZmZfAxK8xNigYIb546xINRpswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQxMDI1MDAwMDAwWhcNMjQxMTI5MjM1OTU5
WjB6MUkwRwYDVQQFE0BlNTVjMmNkMDhkZGQ3MzY2ZDljNWI2MTM3Y2JlNWQ5ZGQw
N2QyYmFlNDMwMTE0NWM4Y2U4MDMwZDhkYzlmMDcxMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC5vj/TBICmftA1Au9bTMZ8o0TgxzZ/ceAgm+SBKOiRSiey
gKIkM6adJpo0hiIyy3U59vmZN8Z94ywbu+rDQrSMUTAEyEJ25lp//oKUsVfRAGl4
c8owhnTLkKe8yL19YaDVuYktU3mwvHuAUyUZn+Jix7c98WJJlmrRBwPICvnuCELB
guQVUlWuWKYBVy/vZgpzN/eAFDnJvpxJ2/PWimVkiOjYXDmqbt7zZt68G0p+NFrF
eqj0bKtwPnpt5lEQahNtoRO3NfpZC03od6z5KClfXnP91EVFnHTmHeuV+Va9fbAG
7bvog0iWFPdss01ilJf/FCO8J2Ndieaw2FCa/KDLAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUdq83p4ag9Wycc38usIQs3NRI2t8wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzU5ZWY0OGM1LTBhYmYtNGQxMy05MzdjLTM4Njg1OGJiMGM0OC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAKYyQo2J9Xxvz0PmBADY+LTPOzHJ
uh1ZSftT3HsfLfDZzgluqQRpQH6xnm/mukNcrf7YAqK74w/UjWXT1xwg379CuqcJ
nUh/I1EUjnZ/BS9RoZRhX9+uGM5yMAqBgS9ynZcJNvQDyWPg9veqbKP6fEpUoI3q
EhMxomY5vR9jBXZep9LXl5M5roqbAoK4dQsRGgZzK71h7oLBe0YwXHkYCy+cjAf0
n0wA+Sh+kY2W4v+8bLVfO/SsnsEDjJs9ICmWM8lXZv5OUmahL0jGd+eCxQsnZuyE
F8WULggJw2MKw0eX6apcNbw+ZRLGXUpRnVnxFcX2ffYzgR0VI3tFXOy8XJM=
-----END CERTIFICATE-----
Generated at Fri Oct 25 23:58:37 2024 by rpki-client on console-ams.rpki-client.org