Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/655320c6-4db5-44c7-a31c-37007f059839.roa
File: 655320c6-4db5-44c7-a31c-37007f059839.roa (raw, json)
Hash identifier: Tta59wTPh4gglaG9GQ3h+a+zhaPIU28dgHY1Yx2ct80=
Subject key identifier: CB:50:51:07:06:3C:7A:42:D4:50:EE:59:58:02:9D:D2:F3:BB:02:B4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1EDB0104D991E29B9A875D9AA6C807B54BE99470
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/655320c6-4db5-44c7-a31c-37007f059839.roa
Signing time: Thu 19 Sep 2024 00:00:00 +0000
ROA not before: Thu 19 Sep 2024 00:00:00 +0000
ROA not after: Thu 24 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 04:19:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:db:01:04:d9:91:e2:9b:9a:87:5d:9a:a6:c8:07:b5:4b:e9:94:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 19 00:00:00 2024 GMT
Not After : Oct 24 23:59:59 2024 GMT
Subject: serialNumber=f3e876079f982167480949b98a73fe7773da10c7ad64d96c91e9bf05cdfe1f44, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b9:bd:f2:00:fd:4a:3b:4a:0e:71:75:4f:e6:
45:4c:55:de:c7:77:47:d1:50:ea:24:8a:a0:9c:22:
b4:99:48:e4:fd:87:19:27:bb:9d:d2:cb:6d:37:82:
83:98:46:c8:27:91:5f:5f:f1:cf:09:36:dd:fa:ab:
0a:47:a3:f4:b7:d5:78:83:9f:d8:8b:80:2a:e3:4a:
e5:53:cc:62:36:82:6e:fd:16:e9:6d:f2:76:23:50:
1a:ea:32:ca:c5:a3:1d:d1:b6:01:c7:b7:29:c2:82:
94:9b:72:ba:1e:cf:3a:76:9c:ae:23:cf:63:50:d6:
33:d2:fc:70:73:f0:05:0a:4a:fb:8a:8b:96:ac:10:
77:45:d4:18:d7:5a:3d:74:74:83:76:5f:8e:18:9d:
4d:7b:e7:5e:c8:c9:e6:dd:6f:aa:d3:90:0b:35:e3:
84:06:03:f0:da:02:96:26:26:ac:c7:c5:f0:d4:c5:
86:dc:86:3c:d6:73:6a:54:c4:71:72:28:61:5c:74:
3b:64:c7:f8:98:e3:2b:54:02:f6:11:df:7b:87:b5:
6a:9c:1b:97:66:f7:a4:31:d5:5e:3f:48:3d:c2:80:
95:2f:b0:d5:17:b2:0e:71:c9:23:95:09:df:ef:0e:
36:74:ad:ad:52:c1:f8:8d:5a:4c:fc:29:07:28:43:
16:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:50:51:07:06:3C:7A:42:D4:50:EE:59:58:02:9D:D2:F3:BB:02:B4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/655320c6-4db5-44c7-a31c-37007f059839.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
67:a2:40:12:b5:6c:35:e9:20:34:8a:07:24:5d:30:4f:05:17:
d7:f7:4c:11:8e:c9:b6:6f:1b:22:99:ed:43:f4:db:7d:43:ec:
8d:50:18:79:a0:4d:97:0c:4c:da:e4:13:be:68:53:01:57:82:
3b:32:f9:22:47:67:bc:72:64:60:de:27:46:91:64:b8:9a:d3:
37:78:81:ac:32:8d:b9:a9:6c:2a:b3:94:33:a7:b5:d1:d4:9c:
aa:e5:06:ab:ee:e0:9d:2b:c4:47:60:f3:f9:68:51:0a:84:f0:
05:82:1a:d0:32:d1:21:8e:3d:b0:9b:9e:7c:f0:d7:80:8a:82:
fb:e5:2a:8c:9a:a3:db:c4:e2:bf:6c:6c:6c:1f:80:fd:60:3d:
8a:49:df:e0:46:54:1d:44:1f:9f:35:1c:e1:f9:03:67:6b:2e:
6a:de:87:8b:dc:d0:0f:0c:57:a2:db:2c:fa:c5:6f:53:f8:39:
1f:93:32:75:ed:e4:86:13:e7:69:fb:6e:3c:8f:8a:cb:79:7c:
83:8f:61:11:50:75:7d:3b:f5:b8:37:cf:52:91:89:f9:b3:33:
10:9e:8d:d4:bc:eb:b2:e6:89:fc:d4:09:a8:80:77:1f:90:7e:
db:f5:b3:1b:19:76:71:1f:dd:90:50:f4:bf:1a:f0:f4:29:59:
4f:f1:cb:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 09:37:21 2024 by rpki-client on console-ams.rpki-client.org