Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7b696ad-e3d8-4aa3-8447-c4b00c85858f.roa
File: d7b696ad-e3d8-4aa3-8447-c4b00c85858f.roa (raw, json)
Hash identifier: 5HjgNuL5NPiz+BWtno71GGsB/LQggtOu0jLAw3aJ5fs=
Subject key identifier: EE:F5:CB:10:B1:CA:3A:9A:0B:1C:A1:46:FD:36:52:A6:C9:2E:AC:EE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6B7D6305FD329F4A7E20BD62EA4E4607F5B7D469
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7b696ad-e3d8-4aa3-8447-c4b00c85858f.roa
Signing time: Mon 02 Sep 2024 00:00:00 +0000
ROA not before: Mon 02 Sep 2024 00:00:00 +0000
ROA not after: Mon 07 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 01:34:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:7d:63:05:fd:32:9f:4a:7e:20:bd:62:ea:4e:46:07:f5:b7:d4:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 2 00:00:00 2024 GMT
Not After : Oct 7 23:59:59 2024 GMT
Subject: serialNumber=7546805414f47814ef3891c92e52947cfdc82d39df5f443e312d60b1630051a6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c1:78:b1:68:11:09:b3:20:11:8c:6c:1f:2d:
65:3a:1c:0a:97:f3:1b:b6:5a:54:4b:f2:c3:05:8d:
24:d6:d0:c2:42:cd:7b:d6:38:13:aa:07:5c:49:78:
6a:cd:7e:6f:92:1c:cc:2f:e5:e6:90:cd:03:a9:63:
7f:e7:79:aa:ed:51:a4:3e:de:e9:74:96:12:e6:fe:
15:65:01:88:bc:fb:5d:84:73:86:ef:f4:08:46:54:
e3:4e:d8:04:ee:33:76:22:64:fe:8d:b2:c5:e4:fc:
e5:f2:3e:b8:56:49:6b:be:bd:93:29:36:80:ab:3d:
46:a1:cc:42:a6:2c:99:c9:38:21:49:97:11:27:c3:
e6:91:20:db:12:6b:13:ea:6d:c6:2e:ef:60:3c:15:
c2:f2:a7:f1:eb:12:59:90:29:8d:4b:fc:fd:ea:0e:
00:cc:25:9a:4a:4c:5e:8a:bb:43:dc:14:c6:2d:ab:
2b:8a:9d:78:81:ad:14:af:22:a4:b8:0e:e4:06:3b:
a9:4e:8a:f6:5e:fe:76:15:98:e7:f9:b8:11:52:35:
df:b4:cd:4c:44:0f:c9:14:02:f5:0d:0e:49:aa:94:
91:bf:48:2b:39:33:83:9a:52:3a:82:a9:6c:ca:2b:
69:6a:d4:78:cd:ae:9e:4f:d5:75:df:ae:22:4d:45:
2c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F5:CB:10:B1:CA:3A:9A:0B:1C:A1:46:FD:36:52:A6:C9:2E:AC:EE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d7b696ad-e3d8-4aa3-8447-c4b00c85858f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
22:3a:de:85:f6:4a:43:c2:47:e3:c9:4e:9b:7d:d8:de:a6:ec:
25:c4:a5:18:cb:4b:e4:ac:a2:c0:bf:08:88:4c:3b:04:88:1c:
46:97:e1:15:1e:eb:50:2d:6b:cd:a7:0c:fc:d4:63:3d:6b:b8:
95:e7:5c:cf:85:2e:9a:96:3a:35:ae:2d:f0:94:d7:a5:00:a6:
6b:7e:ea:07:b3:45:d2:9d:87:ac:72:29:60:2e:c5:60:a8:c5:
c2:4b:ce:4a:22:78:06:19:88:5f:2c:c0:ea:11:46:77:70:46:
6a:44:b6:41:89:bc:fd:a4:20:92:af:3a:4e:92:1e:56:46:07:
c9:bf:ac:57:97:f5:ff:52:19:fb:15:29:67:4e:8a:fc:8c:58:
61:3b:92:fe:f0:fd:60:bf:4f:f4:48:27:0e:c8:e4:3a:4d:5d:
62:b8:04:b6:f9:e6:42:61:8b:69:00:13:0f:b4:73:80:44:37:
0e:6f:90:be:8c:9d:74:4e:57:cd:76:6b:0d:b3:28:d3:cb:82:
1a:51:15:2c:db:98:a6:07:47:64:c4:50:7b:29:24:0c:5b:30:
a5:5d:8a:51:c6:e7:e6:ed:99:26:bf:98:af:9e:31:5b:1f:e7:
d1:3c:be:cc:3a:5c:b1:fb:30:56:f7:69:03:6b:c8:e8:6a:9d:
45:06:6d:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 04:09:05 2024 by rpki-client on console-ams.rpki-client.org