Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8548cb49-6a4f-43e4-b040-e0d1d0e66821.roa
File: 8548cb49-6a4f-43e4-b040-e0d1d0e66821.roa (raw, json)
Hash identifier: oH5+shCaa6U/jBcXgmAWZq/7DZlrdhcbbjM8+q+IVng=
Subject key identifier: 33:4B:55:76:32:1D:0F:BE:19:84:91:AF:F0:FF:4A:5E:94:20:3B:A5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 1DCB6ED2C957497AA5689C5BFB9DA05C8A91AC79
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8548cb49-6a4f-43e4-b040-e0d1d0e66821.roa
Signing time: Wed 04 Sep 2024 00:00:00 +0000
ROA not before: Wed 04 Sep 2024 00:00:00 +0000
ROA not after: Wed 09 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 09:54:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:cb:6e:d2:c9:57:49:7a:a5:68:9c:5b:fb:9d:a0:5c:8a:91:ac:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 4 00:00:00 2024 GMT
Not After : Oct 9 23:59:59 2024 GMT
Subject: serialNumber=921c812d83f150fe5b889d9c9786d374e11f09a34a3bbaaab41eedeef0e12c3e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d0:ec:dc:bf:63:da:92:ad:54:cb:2e:8f:fa:
9a:64:5a:ec:e8:b5:07:77:69:b3:c7:db:e1:75:15:
5e:95:aa:61:00:31:5e:9c:b6:ac:3e:58:e1:c7:7b:
c5:16:3e:91:f7:09:8d:3b:be:80:d6:c7:40:0f:5c:
9e:12:77:6f:29:86:44:93:d8:27:26:f6:13:34:d9:
79:6e:75:3b:2c:61:da:23:a7:8d:9d:db:1b:3a:e7:
60:4d:59:16:6e:67:8c:f5:87:df:1f:d6:e7:df:41:
93:24:bc:bc:52:02:f0:13:69:60:50:be:86:51:c8:
16:c4:d3:39:45:ea:7d:8c:0d:0d:10:da:fa:ee:16:
56:d6:d1:e0:15:88:ba:f7:28:b0:bb:21:09:8c:85:
7a:7d:a5:10:dd:b0:b5:84:0b:5f:cd:15:f9:1f:1e:
60:f4:3a:02:8b:e4:65:32:1c:22:da:7a:81:d6:7e:
cc:ef:1e:42:90:e7:32:3e:ff:8c:3c:20:83:8e:48:
c1:e2:6f:2a:75:48:94:85:35:39:89:52:9f:10:dd:
ad:8a:55:fa:60:5f:86:2d:01:9c:3f:14:2c:13:8a:
e8:e0:80:8b:8f:aa:84:57:41:13:c7:a0:21:d2:93:
b2:a9:9e:b5:51:32:1c:2a:1a:6d:ab:c0:38:ca:c6:
43:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4B:55:76:32:1D:0F:BE:19:84:91:AF:F0:FF:4A:5E:94:20:3B:A5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8548cb49-6a4f-43e4-b040-e0d1d0e66821.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:9c:08:73:41:bd:29:00:4d:b6:6b:df:dc:8c:95:c1:fa:af:
a7:79:bc:6b:ff:68:26:73:6d:42:71:be:f0:61:84:b5:5d:da:
4d:3c:7d:b9:d7:d9:4a:67:0c:10:ac:99:f3:cd:4d:11:43:18:
45:51:4b:23:81:a8:fc:d8:50:44:08:d8:76:08:05:4d:f8:48:
7a:44:dd:da:39:6b:bc:f5:57:71:25:61:ef:55:52:02:13:18:
e8:ba:f9:19:78:48:e3:9c:fc:ff:5d:28:e4:5b:6a:2c:4d:d2:
b1:d0:ec:c8:df:84:7d:3f:17:4e:4f:bc:b9:06:f9:03:01:fb:
4f:4f:99:86:69:ed:2e:6a:cb:30:71:89:bc:7c:35:3a:ae:25:
c3:74:27:6e:d2:d7:a9:20:79:12:0d:fb:d0:29:f0:f0:c5:cb:
85:1d:bf:8a:a4:24:36:0a:9d:38:b8:2e:e2:09:f3:bb:03:8b:
c1:40:99:cd:3c:59:bf:dc:d8:4a:47:89:99:72:99:84:91:9b:
41:53:8c:83:51:cf:e7:eb:90:b0:c8:ab:fa:5d:fe:17:60:74:
03:0b:e2:81:77:3d:21:af:5c:95:c7:4d:24:46:68:71:3d:8b:
18:69:ba:aa:dc:4f:c3:bc:bd:db:0f:69:4c:0d:d9:25:93:03:
17:5b:59:93
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUHctu0slXSXqlaJxb+52gXIqRrHkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwOTA0MDAwMDAwWhcNMjQxMDA5MjM1OTU5
WjB6MUkwRwYDVQQFE0A5MjFjODEyZDgzZjE1MGZlNWI4ODlkOWM5Nzg2ZDM3NGUx
MWYwOWEzNGEzYmJhYWFiNDFlZWRlZWYwZTEyYzNlMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCS0Ozcv2Pakq1Uyy6P+ppkWuzotQd3abPH2+F1FV6VqmEA
MV6ctqw+WOHHe8UWPpH3CY07voDWx0APXJ4Sd28phkST2Ccm9hM02XludTssYdoj
p42d2xs652BNWRZuZ4z1h98f1uffQZMkvLxSAvATaWBQvoZRyBbE0zlF6n2MDQ0Q
2vruFlbW0eAViLr3KLC7IQmMhXp9pRDdsLWEC1/NFfkfHmD0OgKL5GUyHCLaeoHW
fszvHkKQ5zI+/4w8IIOOSMHibyp1SJSFNTmJUp8Q3a2KVfpgX4YtAZw/FCwTiujg
gIuPqoRXQRPHoCHSk7KpnrVRMhwqGm2rwDjKxkMDAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUM0tVdjIdD74ZhJGv8P9KXpQgO6UwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2Lzg1NDhjYjQ5LTZhNGYtNDNlNC1iMDQwLWUwZDFkMGU2NjgyMS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAG2cCHNBvSkATbZr39yMlcH6r6d5
vGv/aCZzbUJxvvBhhLVd2k08fbnX2UpnDBCsmfPNTRFDGEVRSyOBqPzYUEQI2HYI
BU34SHpE3do5a7z1V3ElYe9VUgITGOi6+Rl4SOOc/P9dKORbaixN0rHQ7MjfhH0/
F05PvLkG+QMB+09PmYZp7S5qyzBxibx8NTquJcN0J27S16kgeRIN+9Ap8PDFy4Ud
v4qkJDYKnTi4LuIJ87sDi8FAmc08Wb/c2EpHiZlymYSRm0FTjINRz+frkLDIq/pd
/hdgdAML4oF3PSGvXJXHTSRGaHE9ixhpuqrcT8O8vdsPaUwN2SWTAxdbWZM=
-----END CERTIFICATE-----
Generated at Wed Sep 4 13:10:42 2024 by rpki-client on console-ams.rpki-client.org