Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8371e51a-544c-4c1b-8be5-76b59970a24f.roa
File: 8371e51a-544c-4c1b-8be5-76b59970a24f.roa (raw, json)
Hash identifier: 8kYUzZjfJIHWRJIG3LZutEFnGDtIKHV4MBL6ZVWPBU8=
Subject key identifier: 10:99:E8:4D:20:0F:30:0C:2F:7D:F6:F3:14:63:FC:B7:E1:37:6D:17
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 090E73F810917B13FB1F03DC55CB220761578F89
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8371e51a-544c-4c1b-8be5-76b59970a24f.roa
Signing time: Tue 23 Jul 2024 00:00:00 +0000
ROA not before: Tue 23 Jul 2024 00:00:00 +0000
ROA not after: Tue 27 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 22:03:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:0e:73:f8:10:91:7b:13:fb:1f:03:dc:55:cb:22:07:61:57:8f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 23 00:00:00 2024 GMT
Not After : Aug 27 23:59:59 2024 GMT
Subject: serialNumber=50fda8fee0abb677ac19c2adebccdbd11164bd8c9cc5dc5d7249fc455579b7e6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bf:5f:3f:1f:75:66:77:0d:7d:e7:e8:c1:94:
fd:20:8f:59:dc:de:fa:4f:1d:a1:fa:24:27:c4:02:
51:b6:83:db:68:01:9c:99:59:22:fd:fa:5b:f5:16:
e0:2b:29:b6:ed:a3:0a:51:b2:03:4c:4b:95:f0:20:
3d:35:fe:ff:a1:f8:2b:24:93:35:f6:d8:d2:d9:ec:
ca:2a:8f:31:ce:e6:1f:9e:31:9e:25:29:83:19:1a:
f2:f7:96:51:33:fe:c4:8d:ad:ee:07:b2:f9:9f:de:
54:8c:83:7c:8f:fc:9c:3a:f8:f1:78:1b:9a:63:a6:
bd:f3:8f:94:11:ab:99:55:d1:2f:0e:e7:d7:72:49:
42:80:40:aa:7b:75:95:3f:ee:06:50:81:f4:50:2f:
99:4c:ab:bb:14:52:95:5f:c3:be:0d:82:34:8e:7a:
c3:6f:77:d5:82:bc:a4:1e:96:9c:b7:11:50:08:70:
50:e1:b3:8e:07:79:4f:16:db:45:97:08:8e:66:97:
7d:86:56:df:28:02:2b:24:4b:d0:c2:89:ac:90:01:
22:16:52:1d:4b:05:27:83:2b:97:cb:a1:04:a9:db:
ea:80:85:c4:3c:87:62:40:54:6c:ea:da:97:0e:42:
bb:b6:f9:cf:94:df:05:1e:85:b2:1d:d2:a0:f2:35:
5d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:99:E8:4D:20:0F:30:0C:2F:7D:F6:F3:14:63:FC:B7:E1:37:6D:17
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8371e51a-544c-4c1b-8be5-76b59970a24f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:4c:3b:8a:3a:21:84:4f:cd:49:08:da:bc:f5:74:c5:34:bc:
e7:e8:39:bb:b2:7e:8f:ff:70:2c:df:64:ee:d9:97:96:8e:cf:
43:c6:88:ae:0a:43:93:b5:cf:71:26:b2:2c:20:08:20:10:bd:
6c:b8:99:15:c7:29:ed:37:1c:dc:ca:4a:90:f3:90:0d:54:fb:
93:29:0b:66:4c:7b:d0:d8:ba:01:4e:27:72:02:6a:da:e0:67:
d8:2d:fe:2e:22:0b:33:d5:c2:09:61:5e:af:6c:80:a2:98:ac:
a0:0e:a3:18:a1:5d:23:dd:09:f2:28:7a:41:41:2e:5c:69:2d:
8d:89:22:8d:40:b8:07:b6:c0:a7:f5:b5:bc:d9:82:1e:03:e6:
b1:7f:c1:a4:d0:a8:0c:ac:a2:2b:99:22:ca:c7:40:60:34:10:
a3:60:6c:cd:d0:3f:46:43:0b:0a:f5:5e:80:ca:09:47:c4:4c:
41:f2:04:50:23:1f:08:31:54:c1:10:1c:4f:f1:3f:d4:bc:50:
bb:b3:dd:6a:22:12:a9:e6:f6:7b:7d:50:fd:d0:16:e9:ab:59:
98:5e:29:e5:49:22:ea:03:c9:71:e2:21:42:43:3b:01:4e:db:
4e:27:ad:f7:d9:34:0b:43:b1:88:71:e5:59:8a:76:14:fe:fb:
a5:be:0c:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 01:25:08 2024 by rpki-client on console-ams.rpki-client.org