Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9d5cc7a1-6581-417e-bcd8-1bd3a881fb2f.roa
File: 9d5cc7a1-6581-417e-bcd8-1bd3a881fb2f.roa (raw, json)
Hash identifier: JGPG/+D7WLYMIQStTs1Zz6/UGBxe+4iK5535bAIxBNI=
Subject key identifier: 25:B2:19:47:E8:7E:EE:59:9A:10:91:3D:2D:DA:5A:32:1D:8A:27:E9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4DAA9DA8CBEA45EA4EB1A06197B533352C1AFC08
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9d5cc7a1-6581-417e-bcd8-1bd3a881fb2f.roa
Signing time: Mon 15 Jul 2024 00:00:00 +0000
ROA not before: Mon 15 Jul 2024 00:00:00 +0000
ROA not after: Mon 19 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jul 2024 09:53:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:aa:9d:a8:cb:ea:45:ea:4e:b1:a0:61:97:b5:33:35:2c:1a:fc:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 15 00:00:00 2024 GMT
Not After : Aug 19 23:59:59 2024 GMT
Subject: serialNumber=b9d7c7e2a67615c4db50da65d5ebd5d16fca8d067e3b75b117b9066e5cf06eea, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2f:82:b7:ff:23:09:e4:70:ce:5b:45:55:37:
6e:e6:03:be:fe:00:66:ac:47:91:4b:1c:5b:16:42:
e6:1d:43:d2:f7:03:d1:59:61:2f:b4:32:64:bb:0b:
b8:a7:36:be:20:2a:ff:ce:84:19:20:51:9d:3b:89:
2f:53:ba:75:40:89:cb:9a:8a:3b:00:54:03:03:f6:
e6:89:48:db:89:c1:6b:38:e0:09:25:a5:32:e5:c3:
68:ca:38:14:fe:52:7f:78:32:9b:ce:09:29:cf:a7:
9c:fb:b0:ab:24:2e:60:e5:fb:d8:e3:4b:a1:2f:f4:
4e:2f:f5:ea:dc:a1:90:be:aa:58:54:53:fa:77:f6:
59:45:14:82:a1:51:07:98:d4:d7:f1:77:23:82:f6:
26:8e:0c:31:d1:0f:12:ab:52:85:00:91:4f:f6:b1:
da:51:83:95:6d:81:72:bb:ce:d3:6b:a8:86:a4:fc:
18:8d:cb:bb:d9:b4:10:15:69:1d:b6:b1:53:a3:0e:
8c:45:b1:84:67:24:8e:fd:db:1e:91:57:3a:1b:f2:
a8:cc:22:39:62:d1:62:95:ef:94:4c:65:d7:d4:00:
13:63:59:80:97:d3:b0:ad:72:d8:55:ef:f9:87:e1:
83:2f:ea:13:64:f3:9b:bc:af:86:4d:58:00:ee:f5:
7f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B2:19:47:E8:7E:EE:59:9A:10:91:3D:2D:DA:5A:32:1D:8A:27:E9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9d5cc7a1-6581-417e-bcd8-1bd3a881fb2f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
68:d5:93:d1:3a:a8:c1:b7:4e:ac:f1:f7:01:6e:91:ed:a7:bc:
4d:e1:f8:78:88:92:34:34:44:b4:35:9d:d2:5a:b5:e0:f6:aa:
4e:b0:3c:61:df:36:86:3a:fd:2d:bf:aa:0c:07:5f:28:37:68:
7d:e0:ef:6f:d8:2c:25:16:7a:09:ee:64:86:df:f9:6e:af:17:
ca:35:fa:2e:1e:e3:c0:bd:75:e9:b0:29:a0:c8:b8:6a:ae:d4:
7d:1d:48:76:11:40:22:2c:5e:2b:3a:e3:25:bb:26:b6:01:a7:
42:be:67:80:0a:78:28:2b:bc:ba:88:cf:d8:b0:6b:f9:0d:a3:
d2:17:18:db:45:03:72:7b:e2:c0:8b:a4:2b:08:72:cf:49:76:
e1:ea:fa:5a:94:cf:ab:71:90:cf:22:e1:8e:1e:25:88:77:30:
2c:85:5c:e4:fc:0b:3a:ba:aa:82:44:5c:62:01:13:11:dc:85:
48:34:2e:68:dc:a2:ff:f7:d1:f5:0e:93:62:e4:62:9e:f7:82:
37:c7:7d:5d:f4:0c:f8:08:8c:4d:23:a8:ad:73:9d:fc:47:0f:
d0:0e:a0:1b:09:2f:1e:82:d3:a3:64:48:f5:fa:d9:2d:9c:df:
de:a1:76:75:6d:35:8f:00:fe:62:2d:42:16:2b:a0:81:8c:49:
90:8f:b3:85
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUTaqdqMvqRepOsaBhl7UzNSwa/AgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNzE1MDAwMDAwWhcNMjQwODE5MjM1OTU5
WjB6MUkwRwYDVQQFE0BiOWQ3YzdlMmE2NzYxNWM0ZGI1MGRhNjVkNWViZDVkMTZm
Y2E4ZDA2N2UzYjc1YjExN2I5MDY2ZTVjZjA2ZWVhMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC2L4K3/yMJ5HDOW0VVN27mA77+AGasR5FLHFsWQuYdQ9L3
A9FZYS+0MmS7C7inNr4gKv/OhBkgUZ07iS9TunVAicuaijsAVAMD9uaJSNuJwWs4
4AklpTLlw2jKOBT+Un94MpvOCSnPp5z7sKskLmDl+9jjS6Ev9E4v9ercoZC+qlhU
U/p39llFFIKhUQeY1NfxdyOC9iaODDHRDxKrUoUAkU/2sdpRg5VtgXK7ztNrqIak
/BiNy7vZtBAVaR22sVOjDoxFsYRnJI792x6RVzob8qjMIjli0WKV75RMZdfUABNj
WYCX07CtcthV7/mH4YMv6hNk85u8r4ZNWADu9X9jAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUJbIZR+h+7lmaEJE9LdpaMh2KJ+kwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzlkNWNjN2ExLTY1ODEtNDE3ZS1iY2Q4LTFiZDNhODgxZmIyZi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGjVk9E6qMG3Tqzx9wFuke2nvE3h
+HiIkjQ0RLQ1ndJateD2qk6wPGHfNoY6/S2/qgwHXyg3aH3g72/YLCUWegnuZIbf
+W6vF8o1+i4e48C9demwKaDIuGqu1H0dSHYRQCIsXis64yW7JrYBp0K+Z4AKeCgr
vLqIz9iwa/kNo9IXGNtFA3J74sCLpCsIcs9JduHq+lqUz6txkM8i4Y4eJYh3MCyF
XOT8Czq6qoJEXGIBExHchUg0Lmjcov/30fUOk2LkYp73gjfHfV30DPgIjE0jqK1z
nfxHD9AOoBsJLx6C06NkSPX62S2c396hdnVtNY8A/mItQhYroIGMSZCPs4U=
-----END CERTIFICATE-----
Generated at Mon Jul 15 13:10:34 2024 by rpki-client on console-ams.rpki-client.org