Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ba1ebebe-0083-4363-ba19-9119be9aa62d.roa
File: ba1ebebe-0083-4363-ba19-9119be9aa62d.roa (raw, json)
Hash identifier: gycmNFx5MokdmqwJw13T9lk3W2uZKhTpprN7trB3vnM=
Subject key identifier: 8F:62:BD:59:D3:71:F8:61:8A:8C:69:49:B4:47:7D:23:AB:BB:D8:6F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7FE1CB964A44CB7086141CCACE134508F2C15C37
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ba1ebebe-0083-4363-ba19-9119be9aa62d.roa
Signing time: Sat 03 Aug 2024 00:00:00 +0000
ROA not before: Sat 03 Aug 2024 00:00:00 +0000
ROA not after: Sat 07 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 08:48:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:e1:cb:96:4a:44:cb:70:86:14:1c:ca:ce:13:45:08:f2:c1:5c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 3 00:00:00 2024 GMT
Not After : Sep 7 23:59:59 2024 GMT
Subject: serialNumber=c9f19e28b64322d98014b3b22872567a11d8a59bf2c5322ae841d8aa1e9e9463, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a0:88:24:3e:d7:cc:d0:03:e4:c0:d4:85:b4:
80:d1:54:be:91:cb:8b:9f:40:0b:89:3e:ca:07:f0:
f7:ac:e3:f1:07:ec:bf:92:0f:13:37:70:52:3f:22:
86:9d:f2:68:00:31:c7:f1:5c:34:7f:3a:ee:bc:0a:
b4:7a:dd:78:25:89:36:de:e2:6c:e4:41:89:e4:bb:
5f:df:4f:3d:2c:d0:f3:bc:dd:62:6a:eb:5b:87:2d:
30:ff:cb:c2:51:d5:3a:b0:4c:2f:d5:0e:c5:28:16:
9b:50:e8:b0:dd:64:3a:4b:ac:1c:b6:d5:51:52:2a:
c6:23:1b:a9:a8:7d:ac:01:72:b9:f2:b5:d4:fd:68:
95:ee:b6:5b:df:9e:8d:26:e7:65:34:ea:11:48:3c:
75:59:ff:bb:5c:76:e7:f6:21:81:5d:19:35:e7:9d:
c8:dd:ff:94:bc:51:98:5f:c0:3b:f5:2b:e0:68:f9:
b1:ca:cb:72:0e:7f:79:02:ab:a2:37:25:a0:27:c3:
7a:94:19:99:3a:bb:d6:d7:59:50:af:2f:7a:13:91:
7a:cd:63:9c:28:23:b5:4f:25:04:95:53:38:9e:bb:
8b:46:e7:74:1b:52:ab:38:e9:ce:cd:40:75:d6:4d:
05:6f:43:c3:04:42:27:8c:3d:df:39:5c:d1:e4:98:
4c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:62:BD:59:D3:71:F8:61:8A:8C:69:49:B4:47:7D:23:AB:BB:D8:6F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ba1ebebe-0083-4363-ba19-9119be9aa62d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:22:7f:d2:b5:d3:fb:4c:0a:e4:3a:8e:f0:a5:92:c1:92:c8:
8b:5d:a3:26:e5:b3:f2:06:88:e0:56:18:28:75:63:ad:3e:fa:
1a:6a:f2:f2:76:43:ed:0d:bb:33:a0:c4:1f:fc:c2:53:18:d4:
ae:9f:75:fd:79:4f:7d:d5:55:b1:e5:1e:9e:86:ca:2f:55:eb:
24:d1:59:67:bc:a0:54:45:78:94:55:bb:a2:46:79:99:af:db:
c9:79:d0:10:95:d4:e0:fa:c8:2d:97:e0:67:ea:bb:95:62:6e:
f9:c0:85:b0:cc:a5:ee:9a:40:f3:6b:6e:60:be:30:4c:e3:4b:
c5:62:2e:6f:17:45:b9:5b:b4:8d:f0:bd:80:2c:81:92:e1:d4:
19:c3:84:fd:4e:c7:ca:69:e3:76:ea:76:97:72:c2:67:2c:f5:
da:f8:25:85:66:93:09:dc:17:27:78:84:8a:8c:ab:1b:4f:57:
aa:2d:7b:04:70:85:f8:9e:20:b6:07:bb:11:9b:3e:57:5b:89:
53:ac:e4:bc:32:9b:8d:40:aa:17:fb:18:26:eb:06:05:06:80:
67:4e:f0:bc:74:0d:02:1c:0e:16:e1:f9:fa:09:35:49:3e:0f:
40:61:98:6b:01:36:80:e5:6e:c2:9c:26:26:3d:12:18:9e:6c:
f5:c9:eb:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 10:31:20 2024 by rpki-client on console-fra.rpki-client.org