Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/662a94d0-06b9-43a0-9302-3fbac49ee0ea.roa
File: 662a94d0-06b9-43a0-9302-3fbac49ee0ea.roa (raw, json)
Hash identifier: 6Cog/Ncf40X02LhYyu2lnI3eoqaZGlQuqC++kr731pQ=
Subject key identifier: 78:8C:82:AE:F6:10:FF:28:24:DF:E9:3F:8C:4E:14:8F:6D:0B:B7:2D
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1C102D03E51A4C66CC96258477A8B07C753C1AD6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/662a94d0-06b9-43a0-9302-3fbac49ee0ea.roa
Signing time: Sun 14 Jul 2024 00:00:00 +0000
ROA not before: Sun 14 Jul 2024 00:00:00 +0000
ROA not after: Sun 18 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jul 2024 19:58:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:10:2d:03:e5:1a:4c:66:cc:96:25:84:77:a8:b0:7c:75:3c:1a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 14 00:00:00 2024 GMT
Not After : Aug 18 23:59:59 2024 GMT
Subject: serialNumber=311e382a5366ee5b207c1d8376289d5cd57053e5de10b5e4d03e6aa30a3d4ba9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c0:8c:f1:c5:14:ce:c0:03:a3:7b:61:11:ba:
2d:85:a3:bf:96:32:e5:4b:98:1f:87:59:0c:dd:45:
50:86:70:77:cd:28:29:00:ec:d1:1a:25:a6:73:ec:
b1:df:ad:a9:6d:52:b7:f6:c2:4b:f7:56:53:94:12:
41:6c:d8:ba:d1:61:3d:b4:2c:b9:53:96:4d:bb:99:
60:e0:b9:0f:40:5f:b2:bd:d6:f8:ad:19:1a:cb:0e:
a7:2a:2e:4a:29:fb:35:36:2f:f5:e8:be:54:d4:8b:
36:2a:97:92:66:39:f0:b7:85:3d:28:5a:46:f8:4b:
b5:af:d9:47:41:bb:77:81:60:a7:25:55:34:5d:d5:
da:b7:7f:71:37:8f:2d:1e:84:4b:a6:38:ca:7e:0c:
ab:3c:fe:e0:14:21:9e:33:4a:0b:2e:9b:d9:8c:f3:
a5:94:9d:fc:68:a6:ee:60:ff:9f:c8:fc:72:62:7d:
ef:57:e2:18:9a:17:af:52:fc:70:12:1e:38:40:78:
b7:25:af:80:17:36:2d:2a:34:e6:f3:f6:58:5c:6e:
6c:82:8f:e4:5e:d7:e6:12:bf:c0:1d:4e:40:8a:6e:
71:ff:a9:e0:96:34:9f:9a:bc:e2:b0:77:e3:0e:ea:
c0:18:c5:9e:28:60:3c:ee:47:be:c1:1f:5f:f8:f8:
e5:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:8C:82:AE:F6:10:FF:28:24:DF:E9:3F:8C:4E:14:8F:6D:0B:B7:2D
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/662a94d0-06b9-43a0-9302-3fbac49ee0ea.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:82:00:cf:32:7b:5d:e9:5e:54:b4:2f:96:48:c1:39:e0:66:
8f:1b:72:dd:69:37:10:19:85:9e:1f:a0:56:a2:2e:91:e6:1c:
d6:59:f9:c6:73:d1:e0:4a:2c:24:73:34:c2:dd:09:dd:2a:32:
03:b1:82:22:ac:a2:52:5b:09:3f:e8:4f:cd:f6:4c:9f:fd:a0:
95:ec:15:bb:82:9c:83:6e:21:47:6a:fd:a6:9d:26:ba:2d:53:
9c:bc:79:26:4d:70:d0:73:1f:e7:18:50:7c:bc:fd:1c:73:ea:
66:5c:2f:e4:1e:7e:15:97:21:7b:9c:5b:ce:1a:f8:15:f5:bf:
e3:a2:bd:80:15:d1:7d:79:5e:45:fe:c5:fe:4e:80:cc:22:97:
80:b9:c3:b6:fc:14:71:0c:c6:33:f2:bf:cf:22:fe:16:d5:ff:
11:72:19:ba:84:af:72:2c:cd:e5:15:ea:89:70:b5:94:80:d7:
55:79:d4:e4:9c:9a:a1:a4:5b:a1:54:4f:31:d0:73:8f:26:89:
29:fd:56:28:ac:dc:5c:bb:57:9d:83:04:ef:ac:3f:44:84:de:
8f:38:cc:c3:c5:f7:14:81:c5:cf:52:89:ef:0f:38:33:83:82:
a2:04:9a:ad:8a:93:6d:1f:f6:d6:0b:0d:9c:79:40:97:2f:e1:
b9:12:b3:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 22:01:12 2024 by rpki-client on console-ams.rpki-client.org