Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7d39a6e-62e7-4695-bc5a-2d10c46ee071.roa
File: b7d39a6e-62e7-4695-bc5a-2d10c46ee071.roa (raw, json)
Hash identifier: XtaUgVaMw9NEqb+luEXmvVY1qKuuzZsn1g1g5OnJqWA=
Subject key identifier: F2:2A:B4:4F:6B:9A:DD:AE:DB:9E:E6:E5:54:42:03:B4:97:9A:02:A9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0B802AE6247A5723EF643E5F162E78CFAAD48130
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7d39a6e-62e7-4695-bc5a-2d10c46ee071.roa
Signing time: Wed 22 May 2024 00:00:00 +0000
ROA not before: Wed 22 May 2024 00:00:00 +0000
ROA not after: Wed 26 Jun 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 23:03:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:80:2a:e6:24:7a:57:23:ef:64:3e:5f:16:2e:78:cf:aa:d4:81:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 22 00:00:00 2024 GMT
Not After : Jun 26 23:59:59 2024 GMT
Subject: serialNumber=06e5ae1937a5ccb74069710c6be2c00cd36ae26669eb4844317fbf1f331fb15c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:46:92:15:86:c1:6e:0a:1a:ed:82:75:d2:a9:
ba:38:d3:ba:31:84:fa:0b:13:a8:8f:f8:c4:37:2f:
d3:97:83:88:e6:5e:5f:5b:ca:32:1b:fd:57:4d:d0:
ec:f5:5e:ef:87:b4:16:0b:f0:74:7c:a6:fb:99:c5:
ae:e6:e0:38:5c:fd:1e:5e:6a:16:6a:c3:a1:73:8e:
21:65:66:b3:28:79:9c:90:3c:df:1d:09:85:09:2e:
ed:d6:22:a6:ba:a2:25:9d:fa:cc:e7:83:f2:e5:fd:
0b:40:6b:4d:0f:c8:08:55:d7:68:8a:42:68:88:1f:
f8:f6:95:42:51:62:4f:ea:f9:57:53:58:f5:03:fc:
25:d3:da:cc:99:78:74:54:8b:61:75:56:a2:20:68:
55:ec:76:fc:24:45:2f:7c:67:bb:cf:b8:89:6d:09:
24:12:a3:c6:33:f5:85:dc:98:b0:c4:97:b4:5a:96:
75:49:b3:ba:98:49:df:3a:7c:e7:bd:f9:67:2c:f8:
c5:43:85:b3:c8:4b:24:0f:e2:bd:ee:72:57:92:e0:
4e:ed:0a:85:a4:dc:02:85:ac:10:4b:5f:38:6b:38:
1a:c8:5c:4c:4c:82:94:dc:9d:73:df:2a:8f:49:d2:
54:42:cb:80:e3:f9:95:68:b7:3d:81:f7:b2:25:2e:
0e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:2A:B4:4F:6B:9A:DD:AE:DB:9E:E6:E5:54:42:03:B4:97:9A:02:A9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7d39a6e-62e7-4695-bc5a-2d10c46ee071.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:19:97:05:e0:78:56:7f:69:fc:2f:65:35:2d:e9:eb:37:97:
16:fc:98:9a:e2:14:3a:73:d1:96:2a:38:41:59:37:93:fb:39:
4e:24:b3:eb:27:29:2b:35:9b:73:24:e1:78:8e:9c:0a:d4:5e:
36:d9:82:3e:16:f2:52:3a:30:a8:a3:b0:68:d9:36:7f:6c:e7:
d1:b1:30:d1:30:a9:b1:b2:2b:95:87:f7:aa:c1:34:5d:ec:8a:
a0:c6:f7:15:e7:52:57:2f:99:d4:54:cc:ca:f1:db:6c:a8:8b:
47:2f:3a:f9:f7:51:30:22:0d:04:71:27:a3:ea:c4:cc:c2:35:
d7:b4:93:bb:ba:5f:09:0f:87:a9:8a:4f:15:cc:7c:0d:ab:33:
80:59:37:9a:d9:9b:96:7a:a2:38:12:fc:85:db:0b:c6:35:02:
70:dd:eb:f3:7f:34:a4:33:44:f2:b0:47:08:8e:aa:02:2b:cc:
38:a6:07:d2:26:a5:a9:c9:22:b0:e0:5a:c2:f8:a4:b5:ec:21:
70:59:7a:e1:02:68:57:f0:9e:cc:0d:41:42:22:ed:7a:4a:26:
98:7a:c1:19:1a:87:67:1c:3b:07:e7:a1:a3:63:0b:59:81:eb:
cb:4f:34:74:b8:6e:e2:80:31:21:66:b5:81:62:5b:ce:7f:93:
13:b8:37:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:10 2024 by rpki-client on console-ams.rpki-client.org