Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf01e2b1-9ef9-4e68-9c62-772f3e8f3ff2.roa
File: bf01e2b1-9ef9-4e68-9c62-772f3e8f3ff2.roa (raw, json)
Hash identifier: w/7dx1XyTqtn2c7IHgaf/j74oYE+cghklW5dE1V/MWw=
Subject key identifier: CA:9E:5A:F9:98:67:3A:9B:0F:FA:1F:D4:8C:0B:A8:DA:24:00:FC:E1
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 24387ADB526D012415900D8D528972D394D2C6BB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf01e2b1-9ef9-4e68-9c62-772f3e8f3ff2.roa
Signing time: Sat 23 Nov 2024 00:00:00 +0000
ROA not before: Sat 23 Nov 2024 00:00:00 +0000
ROA not after: Sat 28 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Nov 2024 19:39:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:38:7a:db:52:6d:01:24:15:90:0d:8d:52:89:72:d3:94:d2:c6:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 23 00:00:00 2024 GMT
Not After : Dec 28 23:59:59 2024 GMT
Subject: serialNumber=2b2bf8a81d596bc1ef0bd29f971a0de62ea463db8902ff66a9cd3ff7242e77c2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:49:2c:db:96:5d:2c:db:3a:6d:2f:a4:a8:ae:
9b:b9:ac:e9:d9:30:f7:9d:23:94:7b:ea:99:cb:d9:
66:bb:a9:f9:a0:9f:b7:e2:77:dd:3f:c5:b6:de:cf:
27:f9:ab:be:d7:82:6d:1b:ea:0c:54:c4:0c:52:a6:
f4:2f:5f:39:4a:41:53:23:05:60:f7:05:dc:5d:74:
23:8d:9a:03:5f:ad:04:af:fe:dc:fa:4a:b3:a4:ae:
a0:0e:ae:15:85:2e:f8:3d:46:61:d5:6b:ca:7a:38:
7d:09:bf:be:23:ed:47:13:6f:ac:7c:d4:dd:b6:1d:
f7:af:77:38:92:41:47:66:12:f4:68:82:d5:e2:d7:
84:43:b3:59:ba:ce:70:a5:44:28:55:8c:b1:2f:c5:
0d:b1:5e:2d:51:55:c7:5f:52:d4:83:08:56:14:ee:
34:2b:4c:0e:b2:99:16:ac:28:49:88:9e:6e:7a:88:
93:ec:cb:89:e7:c4:77:78:ee:93:0a:c6:bf:62:cc:
99:08:b3:45:e4:25:4e:33:70:91:53:e6:5f:b8:ff:
3c:6e:29:b2:73:5f:25:89:f3:0f:8d:6c:34:cd:da:
be:ae:9d:5a:42:27:fc:fb:3a:1e:05:21:cb:71:46:
10:f1:15:c9:fb:cf:7b:ef:c1:b8:83:c9:63:bd:bb:
63:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9E:5A:F9:98:67:3A:9B:0F:FA:1F:D4:8C:0B:A8:DA:24:00:FC:E1
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bf01e2b1-9ef9-4e68-9c62-772f3e8f3ff2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:9c:40:24:4b:98:e4:76:13:a0:19:71:ca:7a:f7:c0:96:92:
9f:76:35:68:37:42:97:fa:11:76:4f:af:d3:1b:6f:c9:7f:7c:
4b:5a:8f:0b:05:fc:84:e4:da:48:ef:f8:dd:a8:75:e3:41:e0:
05:59:ba:f3:89:94:08:1f:2a:ad:e1:27:60:e7:f1:a7:e1:52:
75:65:47:12:d6:3e:f6:d6:c9:e8:1d:11:e8:ad:38:ab:de:5e:
90:52:08:86:f4:d8:d4:35:d3:85:0d:d2:7d:a3:fa:95:34:91:
71:0b:0b:29:d1:4f:ab:3e:78:a1:96:e7:54:a2:32:df:50:b7:
e4:12:25:86:a3:0b:61:3a:91:ae:d6:65:1d:b6:ba:88:2c:67:
30:2a:39:92:cd:0d:08:21:f6:3a:74:e5:f9:5d:2b:38:d1:79:
f8:99:ff:54:4b:82:93:1a:d9:78:1e:e8:e1:b0:15:f5:8d:d2:
de:a8:29:7e:af:19:3c:24:a7:11:0d:0d:d8:9c:54:fd:01:1f:
3d:f8:99:09:60:4a:c2:82:7c:3e:f4:b2:3c:46:60:70:94:2e:
d5:7f:01:53:1c:9d:77:73:9e:cb:2b:74:e2:8b:3d:d6:c3:a0:
76:b9:c9:49:ba:81:3a:f2:72:f8:83:8f:00:21:38:a6:86:db:
6a:62:1f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 22:46:28 2024 by rpki-client on console-ams.rpki-client.org