Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a660e54e-9149-4fef-9344-7762587d2430.roa
File: a660e54e-9149-4fef-9344-7762587d2430.roa (raw, json)
Hash identifier: Qt6XSEkVqkTzfFs9UXwgzx4+PWsgojfpM+yUSAfmz4Y=
Subject key identifier: 39:D1:1E:81:E5:89:AF:DC:A2:B4:16:4E:54:F2:28:0D:77:CB:A8:6E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4AF30BF279A05005C519B407AD5C27339DAEB3A8
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a660e54e-9149-4fef-9344-7762587d2430.roa
Signing time: Tue 11 Jun 2024 00:00:00 +0000
ROA not before: Tue 11 Jun 2024 00:00:00 +0000
ROA not after: Tue 16 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 00:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:f3:0b:f2:79:a0:50:05:c5:19:b4:07:ad:5c:27:33:9d:ae:b3:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 11 00:00:00 2024 GMT
Not After : Jul 16 23:59:59 2024 GMT
Subject: serialNumber=85b29fb43aaf7fd2cd4d3713eedc511637181bf161205958f41aa79dad6eac81, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:82:11:9c:42:19:14:54:fc:21:77:ab:13:71:
73:9f:11:e4:76:96:cf:ba:6d:98:33:38:50:b1:9c:
d6:08:ad:83:05:65:52:73:ed:5d:7f:ff:bf:16:df:
76:f5:a7:b3:31:92:af:5f:7c:5c:81:2c:3c:2e:5e:
32:0b:4d:72:57:41:fb:57:72:8d:1e:55:03:cc:37:
b3:a1:87:28:87:85:ea:74:1e:ed:3e:f2:5f:2d:a5:
ca:1c:41:d9:57:60:78:8a:23:df:a5:d2:41:ad:8a:
44:d4:5c:ee:87:4d:b3:75:75:91:06:50:3c:f2:1a:
1f:8d:9c:23:7a:0c:00:2a:03:a5:7e:e1:5b:df:62:
08:9b:cb:e6:e1:e7:8a:21:34:1a:ed:96:b8:ea:ce:
c4:5c:a9:56:c9:39:43:e5:19:60:0f:99:07:ee:c4:
cc:64:68:54:59:93:19:8e:5d:f8:9e:e8:8d:4d:68:
42:a4:cc:35:fe:b4:e5:78:c0:39:40:e1:a0:03:5e:
e1:8e:57:ae:77:59:87:07:38:54:1b:d3:1d:cd:06:
b1:cf:10:30:bc:8f:77:40:09:3d:77:09:f6:d5:9e:
af:dd:6b:ed:5d:84:d0:e7:5f:58:18:57:ae:b9:18:
85:fd:4f:51:50:99:e1:19:4c:2e:ad:f4:de:e9:28:
3a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D1:1E:81:E5:89:AF:DC:A2:B4:16:4E:54:F2:28:0D:77:CB:A8:6E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a660e54e-9149-4fef-9344-7762587d2430.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
77:20:09:2a:48:43:63:36:45:ee:a1:56:71:0b:3d:70:b2:2c:
34:5a:74:03:6b:fc:ec:bb:56:02:38:71:43:8e:3e:c1:be:00:
ec:1e:da:a1:9a:d7:06:06:bf:01:be:f4:7b:b9:2d:52:1e:f9:
58:34:20:bd:e6:46:97:86:d4:b4:8b:2f:77:cf:99:77:82:c6:
40:cc:bb:2d:ea:64:79:6f:71:b9:4c:71:f1:c8:1d:bc:f5:4f:
ad:ff:23:11:a7:c0:b0:7b:40:fc:1b:35:02:49:85:44:ba:fd:
d8:3e:58:a4:04:5a:c8:58:e6:9f:0c:58:f3:6e:e6:0c:fc:fa:
0d:9e:cc:af:b8:0d:20:76:65:dc:0e:d7:36:fb:53:31:5c:67:
fa:75:b0:62:20:b9:5b:25:87:ff:e5:40:3e:c4:d9:ae:2b:9f:
ca:21:10:bc:49:10:f2:ad:ca:a6:b1:d1:59:5c:5f:c9:9c:d7:
47:cf:9b:73:27:29:4f:24:93:93:03:17:5b:cc:42:1d:6a:22:
9e:f8:4c:ae:48:b6:8c:88:45:50:5a:a8:80:b8:36:64:4f:e4:
c8:b5:e2:3c:dd:f6:27:e3:ab:b9:1b:2f:6e:fe:6d:9b:8e:82:
3f:00:93:21:0b:1e:b7:71:4a:80:27:65:2f:cf:10:2a:09:af:
85:45:7b:07
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUSvML8nmgUAXFGbQHrVwnM52us6gwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNjExMDAwMDAwWhcNMjQwNzE2MjM1OTU5
WjB6MUkwRwYDVQQFE0A4NWIyOWZiNDNhYWY3ZmQyY2Q0ZDM3MTNlZWRjNTExNjM3
MTgxYmYxNjEyMDU5NThmNDFhYTc5ZGFkNmVhYzgxMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCxghGcQhkUVPwhd6sTcXOfEeR2ls+6bZgzOFCxnNYIrYMF
ZVJz7V1//78W33b1p7Mxkq9ffFyBLDwuXjILTXJXQftXco0eVQPMN7OhhyiHhep0
Hu0+8l8tpcocQdlXYHiKI9+l0kGtikTUXO6HTbN1dZEGUDzyGh+NnCN6DAAqA6V+
4VvfYgiby+bh54ohNBrtlrjqzsRcqVbJOUPlGWAPmQfuxMxkaFRZkxmOXfie6I1N
aEKkzDX+tOV4wDlA4aADXuGOV653WYcHOFQb0x3NBrHPEDC8j3dACT13CfbVnq/d
a+1dhNDnX1gYV665GIX9T1FQmeEZTC6t9N7pKDq7AgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUOdEegeWJr9yitBZOVPIoDXfLqG4wHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2E2NjBlNTRlLTkxNDktNGZlZi05MzQ0LTc3NjI1ODdkMjQzMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHcgCSpIQ2M2Re6hVnELPXCyLDRa
dANr/Oy7VgI4cUOOPsG+AOwe2qGa1wYGvwG+9Hu5LVIe+Vg0IL3mRpeG1LSLL3fP
mXeCxkDMuy3qZHlvcblMcfHIHbz1T63/IxGnwLB7QPwbNQJJhUS6/dg+WKQEWshY
5p8MWPNu5gz8+g2ezK+4DSB2ZdwO1zb7UzFcZ/p1sGIguVslh//lQD7E2a4rn8oh
ELxJEPKtyqax0VlcX8mc10fPm3MnKU8kk5MDF1vMQh1qIp74TK5ItoyIRVBaqIC4
NmRP5Mi14jzd9ifjq7kbL27+bZuOgj8AkyELHrdxSoAnZS/PECoJr4VFewc=
-----END CERTIFICATE-----
Generated at Wed Jun 12 02:42:11 2024 by rpki-client on console-ams.rpki-client.org