Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/df8f99d9-c8cc-42fb-b225-8c934d29253e.roa
File: df8f99d9-c8cc-42fb-b225-8c934d29253e.roa (raw, json)
Hash identifier: AmQG1pbzk9EVAAQdALeWk8EOTN8iMcPSam67dLZittc=
Subject key identifier: 31:20:AA:9F:F2:D6:22:67:DA:6A:87:2B:9C:A4:BF:B7:F9:FC:36:71
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 236EA68374256CC613B87586655B88F1F77F8BFF
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/df8f99d9-c8cc-42fb-b225-8c934d29253e.roa
Signing time: Thu 08 Aug 2024 00:00:00 +0000
ROA not before: Thu 08 Aug 2024 00:00:00 +0000
ROA not after: Thu 12 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 16:38:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:6e:a6:83:74:25:6c:c6:13:b8:75:86:65:5b:88:f1:f7:7f:8b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 8 00:00:00 2024 GMT
Not After : Sep 12 23:59:59 2024 GMT
Subject: serialNumber=ce670d9b3bf7e5bc6fd8f495a86e72b26b335b06301c4b241849fc12e11f7e9b, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:aa:ee:59:41:4d:57:a5:9e:73:19:48:26:38:
f5:33:47:34:6a:98:a5:05:af:50:9e:80:d8:3b:d9:
91:16:59:d9:49:ef:a1:f5:4f:f4:a5:0b:49:64:30:
a8:7a:ff:5b:84:a2:89:22:c1:30:e3:db:a2:da:40:
87:59:e2:07:1d:2e:cc:b5:ed:e4:97:5b:30:a8:a1:
b0:35:f6:0b:8b:a4:8e:58:e1:2d:d8:bf:9f:43:99:
9c:18:fd:be:43:bd:7f:0f:e6:dd:74:a5:b9:0d:67:
54:19:45:fa:68:f4:6f:eb:7d:2a:c1:0b:2f:85:57:
a3:b6:37:1e:22:24:9e:42:f1:7e:62:6f:28:7d:79:
3c:71:3e:fd:fe:ed:d4:f9:f3:da:3e:81:f1:fc:c0:
4a:10:48:20:9a:85:b1:39:80:42:56:7c:3b:62:ab:
44:2b:69:8f:f1:5f:b1:80:39:82:5e:2c:e3:37:55:
a8:00:77:99:6e:e0:21:7e:3f:29:f9:e4:92:e9:59:
77:ab:9d:44:32:81:38:81:e9:82:93:c7:46:bf:d9:
d2:c8:f0:65:4a:f0:ff:f2:8e:e1:ce:d6:c0:ca:d1:
ca:58:29:fa:a4:95:64:66:7e:2c:ba:0f:6d:24:bd:
f1:c4:1f:c3:e4:3a:15:75:85:2a:bd:2e:fd:5f:f1:
a4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:20:AA:9F:F2:D6:22:67:DA:6A:87:2B:9C:A4:BF:B7:F9:FC:36:71
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/df8f99d9-c8cc-42fb-b225-8c934d29253e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
01:df:c3:16:76:e3:0f:8e:89:76:f1:cb:d9:8d:25:8c:e0:fe:
d8:a3:54:09:af:2a:3e:7b:c8:3e:fa:0e:2c:2d:d2:fa:a2:a1:
40:cc:bd:90:f9:44:67:23:34:62:53:b5:52:09:15:6c:7d:47:
91:10:40:49:19:73:48:ea:0b:43:9e:9a:02:8a:ca:17:fa:98:
91:d5:75:86:2c:13:c2:36:c5:80:1a:ae:27:4f:6c:08:b0:c5:
b2:27:c4:cd:f9:fa:cb:47:b9:1f:97:fa:28:0a:91:8a:b1:16:
10:4a:af:da:39:7c:51:c8:4b:21:53:f3:37:75:2f:81:d8:86:
3b:f5:6c:12:49:7a:26:4b:66:64:97:7c:fe:96:3f:77:8d:c2:
28:bb:f3:44:3c:23:91:52:b0:7e:c7:3c:14:53:a0:ba:89:30:
ae:2c:e2:b0:07:1e:54:7d:f9:3e:3f:10:9e:9f:30:02:e4:a8:
e9:f4:87:c8:e3:aa:5e:71:85:ec:db:93:b9:71:39:b8:61:ba:
90:ce:9f:cc:fc:d4:0f:d9:47:a6:c2:b4:0f:62:6d:82:79:ef:
b0:4a:f9:db:61:f0:f9:08:dd:61:71:35:77:1c:fd:e8:7f:c6:
de:87:b4:84:a2:c3:6a:50:eb:51:25:17:6a:4e:12:17:b9:64:
97:f2:f9:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 20:08:09 2024 by rpki-client on console-ams.rpki-client.org