Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/975b323a-3f6c-41ec-8f3b-e250397dd1a1.roa
File: 975b323a-3f6c-41ec-8f3b-e250397dd1a1.roa (raw, json)
Hash identifier: +FSg4M2+IjX215rbrJNhEwYRK2pHNMzjjB43Q4TjErQ=
Subject key identifier: 2E:98:8D:CF:CD:41:47:D8:0A:68:77:E4:ED:C1:61:83:6A:41:25:F4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 18C97D5FD76BB61924D138CEC905D5C9A9B0450E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/975b323a-3f6c-41ec-8f3b-e250397dd1a1.roa
Signing time: Sun 21 Jul 2024 00:00:00 +0000
ROA not before: Sun 21 Jul 2024 00:00:00 +0000
ROA not after: Sun 25 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 19:53:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:c9:7d:5f:d7:6b:b6:19:24:d1:38:ce:c9:05:d5:c9:a9:b0:45:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 21 00:00:00 2024 GMT
Not After : Aug 25 23:59:59 2024 GMT
Subject: serialNumber=3017fa63149829e411e93d386710bc3eaf2e8846d82144b45676415af772780e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:79:28:c9:40:85:30:3e:83:e4:30:0c:3d:1d:
d3:5b:c8:7b:d5:db:b0:88:03:e0:05:a4:c8:5c:d1:
48:14:cb:4f:fb:4f:4f:66:a4:dd:c2:d9:38:1e:c4:
00:03:16:c3:e7:cc:9b:51:ee:b7:cc:70:77:56:ab:
4f:84:b1:e8:ab:ab:d8:a0:91:9e:5b:61:79:bd:a5:
36:96:7c:b0:94:0b:36:8e:83:ce:99:05:7a:49:65:
23:ac:53:92:cb:dc:bf:c5:4d:c9:fb:84:15:f4:a1:
b1:11:4e:50:d2:52:6e:ec:23:86:51:9a:f1:34:65:
fe:2c:a7:ed:aa:a9:17:91:1c:cf:13:cb:20:0a:13:
6f:c0:23:8b:48:c9:5b:8d:35:74:71:00:c1:32:55:
6d:9b:7a:b5:35:ed:5b:8e:e5:69:76:a5:aa:07:6d:
b3:13:02:0b:58:5c:ec:4c:7e:d6:14:53:24:e3:1e:
88:7b:7f:eb:79:89:29:94:93:83:18:6a:62:db:ba:
2e:61:62:90:34:ce:3d:24:21:75:08:e2:3e:bd:a9:
a4:b6:8e:78:e6:d6:a1:9e:67:66:bc:d7:69:c6:50:
8f:93:35:65:fe:36:d8:52:5e:9b:e2:f6:14:b1:83:
0d:1a:00:e7:f8:b7:36:36:03:b8:44:a4:bf:3b:4b:
40:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:98:8D:CF:CD:41:47:D8:0A:68:77:E4:ED:C1:61:83:6A:41:25:F4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/975b323a-3f6c-41ec-8f3b-e250397dd1a1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
48:9a:8d:e6:d1:15:d0:ad:32:2c:48:a7:c5:4d:3c:6f:0c:92:
46:f2:7a:19:35:1b:b9:6e:38:a5:00:8d:fa:fc:21:9e:6e:88:
44:20:99:fe:33:3e:2e:4f:4f:4c:39:37:53:06:21:34:3f:fb:
99:f9:27:8a:19:95:f3:4d:2e:40:66:81:57:44:c0:d0:cf:77:
ff:19:59:5c:be:74:8d:3a:1e:69:0e:23:88:39:02:a5:a2:ce:
c6:ea:d8:20:13:d2:84:e2:39:25:24:f2:0c:2d:5d:a7:e3:d7:
41:cf:e8:8f:6a:f3:a5:dc:dc:aa:57:ca:d7:ad:77:68:ee:70:
f4:21:45:58:c5:22:be:5b:d2:03:23:ac:11:52:35:84:68:96:
ad:bd:80:a6:e9:8d:cd:89:c7:32:e1:e0:b7:eb:69:c6:ed:8f:
c9:de:66:eb:3f:fc:58:d9:ad:d1:b0:78:60:50:77:7a:82:d2:
b0:35:8f:d3:4d:74:80:fc:00:9a:bd:14:a9:0b:c6:d0:cd:0b:
cb:0c:94:be:5d:90:5d:4c:5a:9c:5c:9d:0c:16:b6:55:ac:cb:
d5:2c:e2:9b:2a:d0:5a:f7:db:b3:0d:5c:f4:ff:f1:06:79:17:
9f:9d:ad:08:20:d1:94:06:84:63:0a:d6:5c:eb:08:59:08:57:
3d:48:ef:12
-----BEGIN CERTIFICATE-----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Generated at Sun Jul 21 22:28:01 2024 by rpki-client on console-ams.rpki-client.org