Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d3ae0ed0-45d3-4cfc-872f-26f4af7df041.roa
File: d3ae0ed0-45d3-4cfc-872f-26f4af7df041.roa (raw, json)
Hash identifier: Rp6wHp7xw+0kxj7Z7fQQ3gfiTATs25DomGyYiV7fKt0=
Subject key identifier: 40:2A:05:FD:55:FE:17:4B:BE:6C:70:E7:99:F2:23:45:C3:B8:8E:80
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 241A78CD845FAC9B7781505256D7C6D0B229C0C2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d3ae0ed0-45d3-4cfc-872f-26f4af7df041.roa
Signing time: Fri 31 May 2024 00:00:00 +0000
ROA not before: Fri 31 May 2024 00:00:00 +0000
ROA not after: Fri 05 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 20:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:1a:78:cd:84:5f:ac:9b:77:81:50:52:56:d7:c6:d0:b2:29:c0:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 31 00:00:00 2024 GMT
Not After : Jul 5 23:59:59 2024 GMT
Subject: serialNumber=0737220766988ad12287570abdfc85438efd151bb9aaa2f3c109d0b4e4aa9289, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a8:dd:18:07:87:6c:01:61:e6:9a:e4:eb:f2:
51:a1:44:81:80:55:90:98:2e:ab:f9:cb:75:a5:c5:
7e:44:75:86:f4:1e:e8:20:98:07:37:00:d6:fa:fd:
84:cb:1d:60:6c:5b:d7:0a:51:c8:31:72:87:db:2b:
0f:90:79:e9:5c:9d:27:d5:cc:88:e1:dd:f9:4b:03:
a4:8c:b8:77:63:b5:1d:ca:c5:68:6f:19:04:a2:b7:
06:73:22:40:1b:e6:52:e1:d5:3d:5a:e7:12:f5:70:
64:0c:3c:3e:61:fa:2d:39:8c:76:43:ce:a7:26:94:
55:1d:79:d7:8b:6d:84:88:56:1f:b9:a3:42:98:22:
fd:20:dc:10:eb:db:ee:7c:ab:e1:37:0d:5a:c5:86:
2c:ee:bc:b2:c8:d9:a1:fb:f2:50:1e:3e:08:dd:94:
3a:04:05:40:31:1a:9b:b6:d1:52:aa:eb:9f:30:02:
f8:ad:b2:8e:ba:0a:67:fd:03:2b:b9:c7:6d:0d:e6:
87:b8:54:52:40:84:80:40:5b:5d:c4:61:34:b0:50:
a8:e0:8a:d7:71:16:a2:6a:69:f2:32:1b:aa:f6:d2:
71:e5:f2:a5:c4:13:fd:15:c1:66:2b:86:67:e8:f9:
c8:d2:bb:af:8e:09:fc:bf:a7:38:c5:40:eb:08:19:
8f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2A:05:FD:55:FE:17:4B:BE:6C:70:E7:99:F2:23:45:C3:B8:8E:80
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d3ae0ed0-45d3-4cfc-872f-26f4af7df041.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:e6:69:50:e8:8a:46:b8:49:b0:c8:c5:ea:26:d3:ef:48:95:
7a:00:76:df:3a:40:c8:f2:de:5f:2a:14:35:2c:bb:ae:a9:6b:
74:b6:55:6b:d5:63:94:b2:6b:9f:64:9c:52:57:ea:a0:ee:21:
f2:52:6b:7d:16:32:87:35:e0:8e:0a:a0:bb:46:ab:bd:9f:0a:
28:c7:b5:02:e2:7e:08:9e:bc:fa:8f:26:41:23:f8:89:d5:85:
e1:4e:be:30:0c:e9:a8:e0:96:b5:09:b7:d9:80:97:c4:21:b8:
01:57:8a:2b:cd:00:d8:bb:6e:a7:5a:19:b9:4b:eb:d0:39:00:
ed:48:13:41:fe:41:2d:2a:56:47:8d:a8:bc:bb:6c:04:11:bd:
7d:b2:48:76:4c:8c:e8:52:77:4c:cc:22:20:b2:d9:89:50:ef:
7f:05:ca:da:4e:f3:66:9e:08:44:98:c6:e8:d4:95:b0:67:1b:
a3:f4:93:ea:2f:7a:4e:dc:cf:57:9e:94:28:95:72:81:db:38:
cb:3b:73:c6:6c:11:44:42:68:92:66:58:7e:21:fc:c8:f1:41:
cf:78:1e:31:51:34:8c:18:db:d2:6c:fc:0b:cc:8a:b9:18:83:
7b:00:5c:f8:3a:95:c0:b7:04:f0:87:1e:67:84:19:08:52:55:
1a:35:b5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:22 2024 by rpki-client on console-ams.rpki-client.org