Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/adadba01-39d3-4b36-8f49-787252141a53.roa
File: adadba01-39d3-4b36-8f49-787252141a53.roa (raw, json)
Hash identifier: 7r6CmjXjIGzkKXVbLs+XyYjKrFbWdStiqW5VIDVLeJ8=
Subject key identifier: BB:3D:48:E4:9D:60:92:AC:30:18:67:2A:E4:96:63:D4:73:B4:7A:4E
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 47BD5B9700F844DA574498F293DA1B5AC77994
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/adadba01-39d3-4b36-8f49-787252141a53.roa
Signing time: Mon 19 Aug 2024 00:00:00 +0000
ROA not before: Mon 19 Aug 2024 00:00:00 +0000
ROA not after: Mon 23 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 03:23:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:bd:5b:97:00:f8:44:da:57:44:98:f2:93:da:1b:5a:c7:79:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 19 00:00:00 2024 GMT
Not After : Sep 23 23:59:59 2024 GMT
Subject: serialNumber=4b72f6b4baab0cb7454887a1962a30b69ba07fd75de4680f7c447a24822879b2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a8:39:76:2f:e0:87:a0:dc:a8:9e:d1:25:c0:
92:55:ea:aa:61:22:da:8a:ac:47:15:68:d3:ed:44:
45:96:ae:4c:87:1a:0a:4f:f5:aa:4d:a6:29:34:ff:
ff:86:ba:da:ef:8e:16:7d:34:da:32:e6:2c:e0:70:
7d:34:7d:ca:76:f0:91:28:9e:d0:c2:cd:b4:0f:00:
89:76:a3:68:43:88:eb:8e:d5:0d:05:88:6c:1c:93:
f3:46:c0:47:94:44:c8:f9:8f:09:3d:7b:eb:94:31:
c2:a3:90:b1:5e:3e:0f:05:3e:b3:7a:1c:8f:d0:ee:
ec:58:05:97:84:f2:70:70:b0:a1:12:b9:6a:66:fe:
28:c2:bf:90:64:e2:d9:7e:81:e2:87:3e:aa:bb:38:
d0:f9:5e:7f:08:9e:b9:e9:66:2a:ea:0c:b9:0d:e5:
0c:de:07:09:3f:85:6c:01:0f:6b:86:b4:42:2e:46:
d1:fc:6f:9a:eb:a6:17:ca:09:c4:64:f1:28:10:10:
7c:66:95:97:ca:0e:f6:35:41:a9:ab:a8:35:85:8b:
f1:d6:fd:91:57:95:bb:34:a9:23:78:eb:30:e1:d9:
2a:23:76:4f:27:d9:4c:da:b3:01:8d:45:e0:d3:54:
ac:dc:58:cb:0b:16:70:b4:b1:88:71:ea:d2:2c:d7:
d4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3D:48:E4:9D:60:92:AC:30:18:67:2A:E4:96:63:D4:73:B4:7A:4E
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/adadba01-39d3-4b36-8f49-787252141a53.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:ed:9f:95:81:21:11:a2:57:a7:0e:62:ce:3c:18:7f:a4:f3:
80:40:d5:00:43:45:41:c0:a7:3a:5b:11:29:22:d0:72:3a:d4:
67:47:ff:99:90:d8:80:3b:de:01:82:21:12:99:93:de:72:fc:
e5:f2:1e:54:69:b1:8b:6a:b7:11:61:ab:9f:e9:4c:81:08:66:
f8:bb:e9:96:1a:8b:18:e6:9c:7e:d5:db:cd:52:60:b7:be:d5:
82:75:0f:4c:d0:13:2f:52:41:fe:4f:83:2c:24:93:c8:f8:33:
1e:74:3e:b1:aa:7b:2d:eb:98:f0:68:42:a3:dc:e6:9e:12:9f:
01:6e:b7:26:10:86:05:4b:bb:ba:70:a8:4d:c0:c8:9e:58:fb:
59:c7:9e:16:dd:80:6c:83:02:7d:29:9e:af:15:cb:9f:26:1f:
8a:07:f9:44:32:4e:a7:97:bd:0d:23:b4:60:0c:4f:fd:e1:4a:
fb:ac:0d:ec:6a:43:57:3b:04:e5:32:88:eb:11:86:45:d2:b2:
41:d4:99:75:b4:d3:6e:6f:66:ac:5c:30:43:f9:21:eb:95:c3:
07:27:2e:e6:31:5f:03:32:28:53:89:c0:22:70:60:41:7e:9d:
36:0c:21:71:2c:af:c2:59:cb:9c:cc:00:dc:28:a9:11:7a:d3:
89:31:7b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 07:21:24 2024 by rpki-client on console-ams.rpki-client.org