Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6211a6e6-3407-4b15-8105-5c5b2dc64927.roa
File: 6211a6e6-3407-4b15-8105-5c5b2dc64927.roa (raw, json)
Hash identifier: IQO9ze/dh+eOMOZAimzuBYp1ynnlKEfY8iZ2bheHaYk=
Subject key identifier: 61:E6:B6:E6:3B:2C:6A:44:C1:07:4D:86:49:2E:0B:3C:C1:63:15:75
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 57BD7D53FAD4B1E871BFABAD8B54095E0FA2CC16
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6211a6e6-3407-4b15-8105-5c5b2dc64927.roa
Signing time: Thu 29 Aug 2024 00:00:00 +0000
ROA not before: Thu 29 Aug 2024 00:00:00 +0000
ROA not after: Thu 03 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 03:03:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:bd:7d:53:fa:d4:b1:e8:71:bf:ab:ad:8b:54:09:5e:0f:a2:cc:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 29 00:00:00 2024 GMT
Not After : Oct 3 23:59:59 2024 GMT
Subject: serialNumber=7ec4844d7ced9e949b60bb8c2a6d58261c28577f81e5c511f4e5ed3d6c1bd57b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:14:0b:33:cb:09:45:15:61:83:ff:6e:52:48:
63:9f:3f:b9:6e:17:23:8c:cd:33:c5:b5:32:81:ff:
07:01:79:d0:2e:8c:c9:05:18:5f:31:03:d5:eb:1b:
a6:be:8b:cd:72:06:68:e8:4d:1b:42:73:ba:3a:31:
e2:70:33:7e:e2:90:98:4f:13:47:c2:dd:ef:e9:f8:
3d:22:84:5d:ac:08:93:96:97:a3:88:fb:98:5d:2c:
32:88:89:7e:5b:d3:5f:5a:5a:b7:d0:99:b4:60:f1:
de:0b:ef:8c:c1:23:3c:e7:32:16:16:e3:1d:c4:f5:
de:77:1b:3c:40:5c:0d:96:23:64:a4:55:85:7b:35:
cb:6b:cc:27:8f:6e:64:29:56:c5:5f:13:56:e9:1e:
94:0f:5f:6d:93:69:bf:72:a7:a3:64:f4:3d:17:d8:
f4:8b:6f:c3:c0:f4:23:e4:65:ae:c2:dc:6b:dc:28:
43:81:4b:24:a1:34:5b:36:ae:20:80:db:79:60:03:
65:37:40:f4:a7:21:fb:99:88:0f:bf:69:30:be:f9:
87:af:e1:3e:44:26:3f:9e:c6:de:54:c5:d2:06:d0:
52:59:e3:75:71:da:3c:a4:f2:98:a4:3b:0e:21:f7:
05:28:0c:03:5e:19:c3:a2:2e:76:a3:57:62:ea:b7:
d4:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E6:B6:E6:3B:2C:6A:44:C1:07:4D:86:49:2E:0B:3C:C1:63:15:75
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6211a6e6-3407-4b15-8105-5c5b2dc64927.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:d2:45:04:85:49:5d:09:f2:cb:0d:52:8d:f4:12:a9:63:28:
bc:0b:96:f6:67:f0:f2:7f:aa:fe:d0:1c:5b:a2:a5:e0:b1:80:
8d:bf:7f:b6:2a:a9:a5:52:9f:2e:c4:78:70:3e:17:31:1e:c0:
90:ed:30:61:61:fd:e1:07:b4:93:d8:d7:53:7f:0d:ea:4f:d0:
63:fa:43:08:5c:3c:c1:80:63:87:35:43:f8:a0:b5:46:87:0a:
0b:d0:d4:46:f9:3e:49:cd:0f:bb:77:35:75:59:cf:67:03:97:
0d:16:f2:37:a9:0d:5c:c5:b4:3f:c1:60:05:2d:60:2d:7a:7f:
7d:f0:5c:79:72:d0:aa:4e:6a:6a:85:80:ca:6a:45:96:74:bb:
04:4c:45:34:7a:9b:05:36:6d:f4:f3:41:08:a4:b6:f7:67:90:
ab:4d:65:d0:32:90:c7:cc:e6:2d:ac:28:b8:75:29:3e:ea:eb:
1b:73:e6:61:24:58:c7:15:b8:32:48:53:ec:dc:30:11:76:6f:
d2:00:87:aa:2b:c6:49:d8:73:11:77:5e:d5:ae:a8:f0:ac:fe:
32:2e:92:1d:7e:a3:1f:7c:11:6a:1b:9e:2e:92:df:19:38:25:
c6:dd:ad:9e:6d:36:50:c4:91:56:3c:19:35:5f:91:88:b3:4a:
c3:39:e2:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 06:12:37 2024 by rpki-client on console-ams.rpki-client.org