Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dab8dfbf-5b31-4296-8db4-c113beac8618.roa
File: dab8dfbf-5b31-4296-8db4-c113beac8618.roa (raw, json)
Hash identifier: 3nuI6UknvPLaFrAQMAtAMdZkKKrTtazWECbnP0OTGXU=
Subject key identifier: E6:F5:AA:03:09:0D:06:3E:D1:BF:EE:0B:F9:E6:FB:BD:EF:92:5F:ED
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3EE665611D8745B293089E494A4A89D7E77A6914
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dab8dfbf-5b31-4296-8db4-c113beac8618.roa
Signing time: Thu 21 Nov 2024 00:00:00 +0000
ROA not before: Thu 21 Nov 2024 00:00:00 +0000
ROA not after: Thu 26 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 15:13:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:e6:65:61:1d:87:45:b2:93:08:9e:49:4a:4a:89:d7:e7:7a:69:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 21 00:00:00 2024 GMT
Not After : Dec 26 23:59:59 2024 GMT
Subject: serialNumber=48a62cf8b01fbef3a95b4546c7988c445303400527b7ef2b8fb384270b3cac05, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:71:58:b2:80:97:28:05:46:51:cd:e8:91:78:
0a:2d:3c:40:ce:46:f7:2b:e9:27:a9:49:85:25:ce:
41:21:7b:44:c6:61:79:4e:88:21:05:d1:8c:62:15:
5e:c6:e4:68:a6:78:9a:9e:2c:3e:32:6b:32:1e:34:
ae:01:0b:77:b6:80:e3:c6:28:36:0d:a9:95:c8:17:
3b:32:f1:79:a4:66:f1:f9:47:e6:51:b6:41:a2:ec:
76:c3:37:e0:99:d3:8f:b5:a5:e3:0b:59:d5:49:93:
a1:94:a5:b3:2a:eb:5b:cd:48:12:c1:67:48:85:34:
92:c6:7d:6a:56:fa:97:f8:1c:98:aa:bc:3a:dc:01:
6d:b4:ca:a9:d1:9b:dd:13:2d:18:ca:09:f5:f5:0b:
d9:fe:a6:6c:21:ae:db:dc:fb:39:d4:00:93:64:8c:
83:98:00:ee:b4:a2:c4:b1:7d:a5:d7:8e:c7:2d:58:
8f:57:f3:73:d2:33:e8:2f:85:cf:05:d3:1f:9d:cf:
8c:91:ab:7b:9d:7e:b7:af:84:64:51:f9:48:5f:a7:
2d:c0:f7:36:f3:f8:88:4a:4d:c7:5f:60:97:2a:0d:
98:e2:ce:65:b3:0d:77:02:7a:99:24:2b:f7:87:d1:
fc:fd:91:e8:34:58:32:43:02:a9:0c:c0:b1:05:69:
9a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F5:AA:03:09:0D:06:3E:D1:BF:EE:0B:F9:E6:FB:BD:EF:92:5F:ED
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/dab8dfbf-5b31-4296-8db4-c113beac8618.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:6d:77:e2:f8:93:93:b1:48:0e:4f:f7:e9:9b:30:9e:99:6c:
aa:93:9c:94:43:da:a8:67:80:0c:94:d1:0a:09:1a:3d:c8:dc:
31:4f:f6:77:c2:91:c1:8c:a7:46:c1:5f:22:80:ec:ec:fa:ff:
e6:40:53:a4:04:95:48:31:d8:6d:41:e3:e8:cd:fd:ff:6e:6b:
91:ae:9c:9f:2a:6b:62:2f:a0:19:8e:65:48:d7:a9:ed:9e:ee:
87:44:eb:7a:79:5d:8d:a0:27:13:3a:a7:18:9a:c4:3b:54:de:
bc:6d:bc:49:f7:7d:f1:27:39:17:34:c8:40:9d:e8:29:d6:a4:
58:be:39:e0:69:e2:d6:a7:fb:3e:7b:11:c1:19:58:0e:50:2b:
8e:f0:0d:cf:cf:85:90:59:9e:ba:fc:75:a3:75:6b:ae:06:41:
69:95:39:23:e3:a0:d0:3a:b3:36:d7:58:fc:8c:65:0a:33:d2:
ab:a4:06:ac:3f:08:eb:e9:ad:f3:75:1d:39:ec:46:b2:48:1e:
62:02:82:67:c6:cf:d7:75:a7:8f:c7:6f:f8:73:2e:6b:7d:91:
20:e7:69:a3:ca:a1:5f:6c:9b:99:af:e3:50:dc:75:cd:d2:51:
61:66:76:b8:c0:6e:1e:8c:bd:10:47:56:44:11:f2:6f:2a:d7:
67:9e:f8:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 19:35:48 2024 by rpki-client on console-ams.rpki-client.org