Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b057c15a-21be-43b6-a78a-42c16a8e0e04.roa
File: b057c15a-21be-43b6-a78a-42c16a8e0e04.roa (raw, json)
Hash identifier: Kt8Y69PsunsO0Mm0xa4xPE3/qSXOEuyIeFi5K2JBDAs=
Subject key identifier: CE:F4:B3:81:46:ED:39:5E:25:4C:E1:4C:63:C2:02:5E:48:DA:9B:68
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 56C55C25C18DF8243EC120D7B32EDD1E6D9DA369
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b057c15a-21be-43b6-a78a-42c16a8e0e04.roa
Signing time: Tue 01 Oct 2024 00:00:00 +0000
ROA not before: Tue 01 Oct 2024 00:00:00 +0000
ROA not after: Tue 05 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 21:04:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:c5:5c:25:c1:8d:f8:24:3e:c1:20:d7:b3:2e:dd:1e:6d:9d:a3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 1 00:00:00 2024 GMT
Not After : Nov 5 23:59:59 2024 GMT
Subject: serialNumber=840183ee807e2ae8298166d4a407bc7bb50829023523e36ca433c2a81ccd34d5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7b:1d:f2:e8:54:98:ea:35:7b:af:af:06:5d:
af:5f:87:77:86:d5:76:c7:2e:7d:16:99:2b:24:8a:
98:f9:fd:30:25:46:af:4d:de:d4:23:f7:d6:89:24:
86:38:ad:d2:b8:64:9c:fe:83:e8:8e:10:47:df:6b:
2a:cd:8a:79:4e:62:f0:8d:63:b1:90:90:f5:42:31:
a9:53:fe:cf:f9:e2:57:00:b5:e1:fb:f8:30:a3:11:
26:84:7a:7a:e0:a7:01:41:7b:93:9c:3f:16:44:e9:
08:e3:b9:58:65:e1:29:6a:3f:ab:f1:f6:19:2d:2a:
ca:ba:a2:72:09:e0:4e:59:42:a7:e7:36:7a:6f:aa:
81:e1:11:bf:d4:d5:91:3d:95:c5:46:c2:39:dd:bd:
fd:cb:3f:d6:39:42:79:19:8a:ec:00:30:97:e4:77:
f8:ff:51:b3:b3:e0:d2:61:b4:c0:e5:13:9c:b1:7d:
2f:33:18:3e:f3:e9:bc:e1:48:28:e2:20:08:96:6e:
d7:4d:e3:ff:82:f2:4a:d6:5e:b2:ff:ab:fc:70:6f:
fd:a6:40:85:4a:54:f4:f4:d7:87:ac:d6:6a:0f:6e:
0e:72:be:4f:aa:cf:5e:9b:02:e4:12:a6:dd:31:c9:
f1:9a:4d:1a:b8:e0:21:78:84:82:71:6a:bb:75:0f:
48:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F4:B3:81:46:ED:39:5E:25:4C:E1:4C:63:C2:02:5E:48:DA:9B:68
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b057c15a-21be-43b6-a78a-42c16a8e0e04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
21:da:44:f1:68:cb:c5:c1:80:ef:45:bc:c9:26:c1:ee:c5:26:
7c:dc:02:60:ad:c2:b5:31:29:8e:e5:8f:5e:b1:b9:50:95:8a:
ce:c8:29:23:ad:55:da:41:11:e1:71:f1:6b:a5:56:34:c7:63:
c7:be:b5:96:7f:6a:eb:7c:f9:46:15:22:00:ef:7b:c7:21:f7:
f8:d1:16:5b:ff:ba:ea:29:f6:1e:71:c5:d1:31:da:5f:42:09:
df:24:95:fb:a4:b3:8a:cc:8d:d9:a8:44:bf:64:2f:d1:47:fa:
42:21:59:2a:f4:8c:69:5a:8f:62:2b:96:da:6c:e0:83:76:77:
e2:cc:09:23:43:62:62:0f:ef:38:5e:d7:3c:6a:77:c0:58:78:
89:3a:ae:57:9b:a2:6d:5b:9a:37:72:68:dc:eb:8b:59:49:13:
0f:74:6d:7b:c1:98:cb:5f:27:f6:3e:34:3c:7b:25:45:ef:65:
95:4a:aa:e7:2c:ea:6f:70:e2:a8:53:54:2d:11:8f:a6:af:10:
95:c9:5b:fe:03:61:d8:46:62:a3:2e:1c:14:0f:07:ce:51:54:
b1:2c:0d:5a:74:ac:e5:9a:fe:88:03:3e:73:05:f5:fd:5b:14:
42:0d:9c:45:d3:ad:05:87:d1:de:a4:39:54:22:a9:97:a7:39:
c2:b3:a4:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 00:37:52 2024 by rpki-client on console-ams.rpki-client.org