Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/912fc4ce-ecb7-49e1-9466-abe281e1e768.roa
File: 912fc4ce-ecb7-49e1-9466-abe281e1e768.roa (raw, json)
Hash identifier: 35a+ZQ8DObjaDA4RRwH+1rEqOvxDmS+tGKgooop3FAQ=
Subject key identifier: FA:34:9D:FC:72:D9:99:D0:82:3F:EB:B4:42:0D:5C:61:05:50:FD:01
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7142F7EE1F85BBB399B7692C18863C7A97BBBAFD
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/912fc4ce-ecb7-49e1-9466-abe281e1e768.roa
Signing time: Sun 02 Jun 2024 00:00:00 +0000
ROA not before: Sun 02 Jun 2024 00:00:00 +0000
ROA not after: Sun 07 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 10:28:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:42:f7:ee:1f:85:bb:b3:99:b7:69:2c:18:86:3c:7a:97:bb:ba:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 2 00:00:00 2024 GMT
Not After : Jul 7 23:59:59 2024 GMT
Subject: serialNumber=1e2e6fdc8c94649617b435f712d7d427e680f8842e6f7fe6995d19be541fcb92, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:45:15:94:e5:36:cc:3a:02:75:58:4a:84:
ef:63:d4:c8:fb:d3:0d:a8:2a:3d:9b:a3:eb:34:31:
28:2a:98:75:20:ee:5a:14:8d:bc:ab:12:bf:0e:76:
9b:34:97:70:45:e0:68:e3:da:71:3f:f4:e5:7c:22:
c6:a0:5a:78:81:2c:84:e0:39:4c:6f:99:3c:8e:d5:
fe:e4:9c:6d:dd:15:93:4b:f4:89:2e:e6:23:52:c4:
3d:b7:03:0a:b9:48:dd:5b:39:79:84:5a:44:f5:74:
c7:f3:16:3b:10:1e:f8:96:1c:10:d4:e4:d8:99:3c:
5e:73:c9:24:de:87:ef:f4:e8:95:5b:a2:53:75:b3:
d3:1e:a9:95:f6:cf:b9:21:f7:88:aa:50:21:5f:b2:
a8:e3:53:5e:90:c1:e7:0a:a3:19:1e:31:57:ad:77:
1b:20:50:e8:23:9d:db:17:43:38:8e:fd:87:c0:be:
ed:ba:16:68:ac:d2:ab:9e:54:a5:79:c8:75:36:26:
18:9d:28:7e:4d:23:7d:dd:9f:85:2c:a2:6f:cc:2d:
06:8b:89:b7:53:d0:8e:04:8c:48:3e:61:e6:99:7b:
1a:50:1b:dd:44:06:ac:cf:91:b3:5f:d2:d6:8b:ff:
b5:63:c8:00:2d:d6:0c:08:07:cb:48:7d:1d:c9:f8:
89:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:34:9D:FC:72:D9:99:D0:82:3F:EB:B4:42:0D:5C:61:05:50:FD:01
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/912fc4ce-ecb7-49e1-9466-abe281e1e768.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
59:9a:1a:18:ad:d9:04:cb:95:0e:74:17:51:9b:db:16:19:c1:
c8:6d:a3:20:19:ae:af:0a:1a:2f:45:20:9b:2a:77:c2:7d:12:
71:92:31:92:7a:a4:06:85:c6:1b:19:ff:8e:af:f2:82:01:37:
e3:61:63:a4:42:d0:65:9f:95:fc:b0:6d:77:d9:4b:cb:2f:ec:
2f:e4:de:5d:55:de:78:6b:3f:10:6c:a5:dc:39:d3:0c:dc:65:
af:83:f8:17:11:ad:e7:1d:b4:ad:f3:df:67:87:71:91:3d:e6:
9f:a1:40:f0:3b:5e:86:a2:87:2e:a1:86:0b:15:2d:e0:16:01:
7a:ad:89:e8:35:df:b9:41:55:0d:24:a8:9e:3e:57:4b:45:6d:
c0:9c:70:1e:fc:13:ec:b2:8c:1e:86:13:d8:71:26:80:6d:58:
6b:fd:a1:ba:36:a5:e9:79:de:63:c4:2e:e9:e0:4e:21:f5:c1:
40:f5:6d:6e:0c:1f:61:47:e9:0d:1e:cd:b5:3a:37:5f:24:4f:
da:c4:e3:17:fa:ac:8f:6e:21:c1:d0:74:fe:14:51:53:d6:78:
04:d0:7a:5f:58:7b:b3:4f:d9:09:1c:2e:f2:ad:0a:f7:88:1d:
f3:8c:b0:e6:8c:4f:f5:be:93:19:9c:f7:75:b5:8d:c1:da:7d:
85:74:b2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:00 2024 by rpki-client on console-ams.rpki-client.org