Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b4f7b50e-c132-4e4d-b3e8-c6b2ab00c957.roa
File: b4f7b50e-c132-4e4d-b3e8-c6b2ab00c957.roa (raw, json)
Hash identifier: QmbMTnwG2898J93CDt2caTdeUHRA5TdTrIrTAlGAWpo=
Subject key identifier: 71:BA:A0:DC:5B:BC:EE:FB:D6:57:D1:6E:4E:84:93:80:9B:AF:27:34
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 33B2288FCA9C3544B4CFE23C9D074FBD378F7149
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b4f7b50e-c132-4e4d-b3e8-c6b2ab00c957.roa
Signing time: Fri 12 Jul 2024 00:00:00 +0000
ROA not before: Fri 12 Jul 2024 00:00:00 +0000
ROA not after: Fri 16 Aug 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 18:58:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:b2:28:8f:ca:9c:35:44:b4:cf:e2:3c:9d:07:4f:bd:37:8f:71:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jul 12 00:00:00 2024 GMT
Not After : Aug 16 23:59:59 2024 GMT
Subject: serialNumber=eb9158f9ec1801f3e09d212a25c478c46b866330a6a7fc96969f40ca2fd35509, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:1d:cb:ff:c4:2c:c8:07:3c:b7:72:b7:56:2f:
42:71:93:bf:c5:cc:4f:2e:7c:8e:21:05:80:69:59:
ec:5a:5e:b8:0e:99:eb:c0:75:4a:27:68:a9:0e:7f:
e5:93:82:9f:d1:06:b8:5d:0f:91:52:24:f9:ce:c6:
c9:7d:1a:3f:49:7b:5f:0e:cb:0b:7f:ca:82:2b:5b:
bf:02:01:db:87:a4:c7:b6:20:7b:de:5d:f1:5f:50:
cd:69:bf:52:9c:d8:de:0a:08:7b:c0:d3:58:2c:70:
cd:e8:68:bc:2e:ed:ba:67:a4:7f:24:a3:c8:8c:05:
86:3c:a1:d9:fd:26:a4:22:81:75:6f:4d:a6:fb:6b:
9c:33:ce:1c:c6:9f:56:57:11:46:50:87:34:30:d6:
ce:05:39:3c:fd:ae:6e:1a:a9:d1:81:61:a7:fa:ab:
13:40:c8:0b:5e:f5:b6:a7:33:29:16:d0:c3:c1:89:
69:b3:7f:18:cc:c2:a6:98:96:c4:5e:02:f1:a3:94:
9f:ec:75:23:ea:e4:2a:f2:83:0d:a5:95:dc:75:b1:
65:83:31:9d:74:98:00:a0:c8:8e:34:c9:67:2f:4e:
ca:44:d2:41:67:16:14:19:e9:12:73:7c:d5:79:c5:
50:c4:74:93:e4:a4:0e:49:fa:08:a4:a3:24:1e:53:
8d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:BA:A0:DC:5B:BC:EE:FB:D6:57:D1:6E:4E:84:93:80:9B:AF:27:34
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b4f7b50e-c132-4e4d-b3e8-c6b2ab00c957.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
77:81:20:8a:78:a8:c0:f2:92:4f:e4:cb:63:f3:7d:82:aa:cd:
1c:8e:03:4e:45:15:b3:df:c4:84:8c:6d:ea:47:55:7a:95:f8:
da:71:ec:c0:b9:2f:61:3c:d9:af:f3:f6:5e:6c:86:97:41:ea:
2e:ab:21:2a:f0:62:ba:ac:a6:ae:4f:92:28:a9:96:b4:fb:ca:
3c:d1:25:98:27:39:0f:34:64:91:a3:af:20:b4:d4:3a:3b:21:
bb:a0:2e:84:5c:dd:29:2c:54:b8:13:9f:9c:a3:cc:78:01:61:
d1:ee:d8:23:76:fe:ff:fd:31:f8:c5:87:95:9f:db:47:7e:9a:
a9:f3:7e:81:23:62:b7:f1:7f:bd:22:09:dd:23:8f:11:20:a2:
b3:a0:d2:64:fe:c7:4e:65:7d:21:a9:b0:a2:3b:ac:1f:5c:0c:
94:2a:ae:8d:45:f4:40:be:2b:fc:0c:30:e8:9e:38:8c:77:88:
90:67:29:d0:59:a9:e2:32:90:95:ae:87:5c:6b:eb:2c:cb:7a:
32:4c:5c:d3:dd:67:45:ee:34:f2:dd:96:98:08:06:f1:26:82:
0d:74:46:a4:02:26:4f:7e:bf:22:90:9e:50:ec:e7:35:25:e0:
17:9a:40:1b:99:5b:da:5e:b6:e3:31:57:de:73:b4:79:4a:ee:
e4:47:ce:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 20:13:19 2024 by rpki-client on console-fra.rpki-client.org