Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a281615d-6f85-4a1f-8aa4-65b9f4744a73.roa
File: a281615d-6f85-4a1f-8aa4-65b9f4744a73.roa (raw, json)
Hash identifier: 0YofBQ1IUI2sNMPLk5N4XfE3V9grWWrkHKrxVzTdvuM=
Subject key identifier: 3B:BF:E1:F1:69:F6:E2:A4:7C:6D:9B:8E:22:E6:A5:DF:51:26:6A:5C
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2B36117EFD9B83CC1B8ACF1191496630425AD9B4
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a281615d-6f85-4a1f-8aa4-65b9f4744a73.roa
Signing time: Thu 20 Jun 2024 00:00:00 +0000
ROA not before: Thu 20 Jun 2024 00:00:00 +0000
ROA not after: Thu 25 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 04:23:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:36:11:7e:fd:9b:83:cc:1b:8a:cf:11:91:49:66:30:42:5a:d9:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 20 00:00:00 2024 GMT
Not After : Jul 25 23:59:59 2024 GMT
Subject: serialNumber=4547e21eefe5f95f1b12c87e878631d723a94c6f32bdd88dc2415a7ece558287, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:10:e9:c0:a6:b1:93:3a:d5:76:67:02:11:93:
16:80:0a:06:59:eb:75:7f:bb:92:ac:76:83:0a:f5:
6c:9c:79:b7:84:bd:cc:02:32:06:f2:e9:0d:05:f5:
1b:83:ad:68:46:7f:3d:fb:a5:a6:f8:af:69:a3:66:
ca:0b:df:34:a5:b8:8c:ff:d8:fc:9e:34:88:04:35:
6f:08:11:a4:f9:84:f6:41:2f:b3:e7:35:22:c6:b9:
12:a2:55:d3:07:2e:38:85:10:58:99:ff:1a:23:bf:
26:aa:01:3f:e5:24:83:14:4c:c6:47:40:35:db:5f:
40:69:5b:2b:5b:5f:9c:6f:94:74:20:00:9c:05:a1:
70:b7:c1:54:82:d4:14:93:ea:2e:c9:d2:fd:5a:52:
e5:19:30:e7:45:c5:36:68:f0:3b:cb:f0:50:20:3f:
ca:2a:bd:c7:d1:b4:a8:87:26:b1:b2:b8:d5:2a:2f:
4c:0b:3e:08:c3:61:6e:9f:73:e1:99:40:14:41:0f:
b2:35:6b:90:5b:d9:5c:23:9d:fd:95:4a:85:10:fe:
93:01:d8:db:41:d4:c2:04:f3:01:0e:c0:b6:7d:97:
12:a1:22:7c:4d:d8:ea:25:68:eb:92:a6:a7:71:8f:
26:a0:08:6f:6c:02:22:6d:c4:78:12:c0:ea:d5:92:
3c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BF:E1:F1:69:F6:E2:A4:7C:6D:9B:8E:22:E6:A5:DF:51:26:6A:5C
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a281615d-6f85-4a1f-8aa4-65b9f4744a73.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:74:34:a1:ca:a6:7d:43:f3:9b:45:ad:e3:c5:d3:8e:c1:67:
7b:6c:25:95:c0:ab:a5:b7:f2:79:b4:24:4f:a0:9f:17:55:2c:
04:b9:29:21:e1:c2:9d:f2:40:fd:5c:b7:31:1d:56:69:7a:ea:
ac:fb:67:a6:ea:0f:be:b9:0f:89:97:b9:cb:35:33:42:f3:af:
91:02:e9:b6:e6:9e:d9:9d:75:6a:ec:e7:81:97:f0:d2:f9:8d:
3c:8f:eb:c4:67:0e:42:61:66:cf:20:d8:a2:18:e6:5c:12:ab:
3d:9f:c5:ab:34:c0:fd:a1:58:ec:db:4b:5b:01:db:ad:bf:b6:
52:fe:58:65:ae:f9:a2:4c:88:13:06:ea:ee:4f:9b:b5:f3:a6:
b6:c9:34:ff:97:52:cb:51:c7:3e:6d:7b:f1:5b:f1:09:10:25:
57:27:95:61:e6:3d:32:4a:5e:51:e8:7d:3c:4d:b1:dd:68:d3:
83:60:db:a6:12:e3:9c:bb:40:88:02:d2:9c:97:a6:f5:30:93:
5e:90:98:1e:a7:9f:0b:77:e0:3d:c6:ee:88:ec:bf:ac:d0:80:
7b:d6:07:cb:3a:43:cb:3e:ee:58:c8:ce:dd:15:5d:a1:b8:e2:
df:ef:3d:4d:89:e3:01:ae:5c:2f:e6:88:0e:98:9f:d9:9a:98:
30:a0:d3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 05:22:33 2024 by rpki-client on console-fra.rpki-client.org