Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c792e77-6068-4834-aa47-d4697b841b68.roa
File: 7c792e77-6068-4834-aa47-d4697b841b68.roa (raw, json)
Hash identifier: mnEpnMsHMJGr6fb4RNUuREj1p+z3o16ofT8OkbhuJWI=
Subject key identifier: BE:76:AF:2D:5C:B4:9A:02:A0:FE:D3:3B:A9:2C:8D:50:4F:67:8E:D8
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 541C4581802BE1742D8D888CE0CBFD1B5970133D
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c792e77-6068-4834-aa47-d4697b841b68.roa
Signing time: Fri 17 May 2024 00:00:00 +0000
ROA not before: Fri 17 May 2024 00:00:00 +0000
ROA not after: Fri 21 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 May 2024 20:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:1c:45:81:80:2b:e1:74:2d:8d:88:8c:e0:cb:fd:1b:59:70:13:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 17 00:00:00 2024 GMT
Not After : Jun 21 23:59:59 2024 GMT
Subject: serialNumber=e22cba1911bb74c7b916e3049639df73c91b9a6bfdd21ba81b46fa9c727c9706, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:17:9a:84:7b:b1:e8:ea:32:10:a9:e7:08:b5:
1a:50:7c:70:4a:ab:cc:46:c6:45:15:a7:c1:9d:e5:
15:22:d6:62:45:9c:49:cd:2b:56:9b:24:bf:fd:cd:
12:a6:e9:3c:48:90:a5:a7:92:68:ee:74:8d:aa:04:
75:86:79:11:08:82:65:cb:15:1d:31:52:a1:d1:52:
8b:b7:24:ff:b7:21:b7:e5:6f:45:7d:c8:14:d6:b5:
e4:d4:ba:97:a6:8d:44:4d:14:55:e3:2c:c3:3f:44:
15:56:99:2a:9c:dc:b1:38:95:a0:c5:71:a5:39:3c:
24:ea:6c:4d:da:b6:75:dc:8d:d1:9e:42:d8:1b:27:
57:74:d8:9b:a4:7f:f9:ed:11:fc:dd:1e:9f:6d:73:
ba:4d:d1:c5:49:ba:6b:55:de:34:5e:46:04:6b:2e:
16:43:fc:ea:fb:ad:a5:71:7c:95:f0:af:9d:82:e2:
e8:f5:a3:29:57:ee:f2:f9:04:24:12:8d:f1:94:5a:
a3:c1:ed:52:24:06:85:44:b3:93:a5:18:7f:c9:ee:
26:dd:ac:ab:1a:05:1c:1e:3f:26:f9:85:ee:c9:f3:
e5:d4:da:09:bf:ed:d5:ca:7a:1a:a5:55:c4:23:06:
94:6a:4f:78:5f:25:8d:6d:7f:8d:ad:28:a4:fc:a4:
19:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:76:AF:2D:5C:B4:9A:02:A0:FE:D3:3B:A9:2C:8D:50:4F:67:8E:D8
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/7c792e77-6068-4834-aa47-d4697b841b68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:69:fc:22:73:70:fa:6a:0a:d7:68:ab:39:a7:df:ed:d9:71:
98:8f:af:e8:fc:80:8f:31:ac:8c:31:ff:fe:ee:69:2e:b8:47:
6b:5d:a7:d8:46:2d:18:ad:a5:59:d7:92:52:f5:b4:99:26:ab:
53:1b:b9:a5:fa:56:07:c6:70:a4:bc:69:ab:a4:ec:97:d5:db:
82:4f:55:89:d3:85:26:ef:d1:ee:8a:ea:5f:bf:82:64:0d:19:
15:79:b4:88:32:cf:bd:b9:c7:f7:90:2e:3f:f9:23:ac:eb:0c:
87:26:10:31:02:f1:2b:70:f2:1e:b5:3a:df:96:34:9f:be:6c:
89:81:8f:e5:40:a0:2a:82:e0:fc:00:c2:b3:bc:5d:ca:bf:7c:
68:3f:41:ff:24:25:aa:11:7e:11:3f:40:73:e5:32:81:06:bc:
cb:10:4b:7a:86:08:43:e2:09:f4:32:e3:01:18:dd:49:eb:25:
74:36:4d:3f:95:36:a4:f2:31:1e:db:80:85:f3:90:c5:8d:2b:
48:dc:f2:24:f4:99:10:73:d1:98:33:2f:11:60:11:bf:ff:58:
31:4d:57:d2:86:19:e3:a2:63:6b:98:c6:5f:92:8d:81:19:a0:
a0:cb:09:3f:88:a1:44:01:a9:9e:a9:37:e9:a5:6c:cc:bc:96:
31:b3:8d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:33 2024 by rpki-client on console-fra.rpki-client.org