Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89255105-b0d5-4dab-8029-8936b002472c.roa
File: 89255105-b0d5-4dab-8029-8936b002472c.roa (raw, json)
Hash identifier: 5cIn4Q5620qBdWV1p6wx9GayvRVexTUDzRUSyu+xgYE=
Subject key identifier: F2:B6:87:1F:67:AA:06:EE:25:27:14:09:56:2C:6D:3E:35:0E:F7:74
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 39A6D56BBA76BB7C1A484496206F4C0243CF079A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89255105-b0d5-4dab-8029-8936b002472c.roa
Signing time: Fri 13 Sep 2024 00:00:00 +0000
ROA not before: Fri 13 Sep 2024 00:00:00 +0000
ROA not after: Fri 18 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 18:59:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:a6:d5:6b:ba:76:bb:7c:1a:48:44:96:20:6f:4c:02:43:cf:07:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 13 00:00:00 2024 GMT
Not After : Oct 18 23:59:59 2024 GMT
Subject: serialNumber=0182c0cf3ba5b589c69d6dac0236375bf8fe5b06d470997ba874a73f4738957f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:50:15:55:db:fd:9b:b3:f7:09:5f:03:a8:bb:
1b:80:3c:41:b8:e8:08:80:07:2c:49:23:9c:b2:47:
91:b7:84:6c:2b:d6:ed:aa:b5:7f:37:d4:3e:68:45:
42:57:57:55:2a:b0:cd:02:9d:4f:61:30:9d:d2:3a:
a0:1f:25:3d:23:34:f6:52:d1:a2:85:13:c0:bf:ec:
4b:e0:40:b9:02:e5:e8:36:7c:84:d3:f2:ef:32:74:
4e:5e:06:03:29:d2:c5:9e:95:68:e6:19:8a:94:d0:
3b:5d:a8:0b:98:d2:aa:a3:6e:e2:b4:02:30:c6:c3:
e8:65:74:e8:ab:9e:be:e6:cb:6d:1a:f4:57:e9:fa:
e6:83:35:d5:a1:b6:f6:47:cf:91:1f:9c:59:08:79:
8d:0e:fa:97:44:68:b2:ac:82:dc:25:b0:fb:01:7f:
df:37:34:a9:8f:7e:2e:96:97:6b:b3:20:11:4e:1d:
56:fb:69:e1:3b:78:b9:40:e5:23:98:a2:55:07:18:
61:a5:3e:e8:7c:61:14:92:27:b0:36:9d:a3:d9:62:
57:de:e5:82:e1:aa:8d:f3:de:b8:83:7e:26:15:78:
a1:70:a3:8e:f4:51:bf:68:22:67:c5:b5:30:91:58:
2b:0b:53:fb:39:87:f4:b8:de:4c:8e:73:1b:9f:c4:
f5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B6:87:1F:67:AA:06:EE:25:27:14:09:56:2C:6D:3E:35:0E:F7:74
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/89255105-b0d5-4dab-8029-8936b002472c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
98:e4:bb:49:cd:92:b6:67:2f:e1:88:03:92:e5:d0:56:a1:be:
7a:e7:c5:f5:e4:66:f5:f0:eb:96:04:d6:1b:57:ce:9c:2c:5c:
c2:72:7d:0f:35:3d:76:e0:41:fa:c0:8f:27:8f:4f:23:d2:e3:
89:ec:e1:6c:8a:b4:18:38:09:99:86:68:28:58:9c:2c:61:d5:
2b:1b:08:24:1c:b0:8f:99:ef:f5:94:cf:19:4d:2e:cf:b7:0c:
66:fb:7d:72:92:58:2b:ea:d3:7b:a2:25:6d:fc:ec:86:d4:a1:
67:e6:e8:47:cc:0f:c8:2a:9f:b1:10:04:f6:27:82:82:f5:1e:
dc:dd:3a:04:3a:a3:5f:ff:68:44:ca:b8:80:7d:7c:27:cc:67:
69:61:a4:34:77:c1:68:f9:87:3d:1b:38:23:e5:bf:d8:91:19:
3e:43:73:bb:85:57:99:33:38:31:45:64:10:99:4c:98:bd:00:
e2:62:ab:f5:85:eb:21:71:ea:37:1e:7a:b8:57:a9:b5:29:c5:
2c:ff:1b:53:18:d2:b9:3f:1c:38:14:55:24:a8:e3:58:e6:ef:
46:b1:98:91:a4:de:84:a2:10:d5:f3:39:c7:c0:b1:f2:cd:c7:
f9:9c:5e:48:7f:fd:9e:69:88:c2:4e:d6:5f:2a:7e:2c:39:85:
43:8a:b8:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 21:50:29 2024 by rpki-client on console-ams.rpki-client.org