Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eab53816-cf5f-49df-8fe5-9e527192f6f6.roa
File: eab53816-cf5f-49df-8fe5-9e527192f6f6.roa (raw, json)
Hash identifier: Ek++34VhJwv11QJPdfEcN9aSXg+/K6DxpoTk9YmAtjQ=
Subject key identifier: E1:1F:E9:48:79:3B:E4:0F:AC:E7:F8:BA:C7:7B:8E:F5:33:32:1F:80
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2AAF16B56770DAC4D3042B6DC1BD01DD3636B812
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eab53816-cf5f-49df-8fe5-9e527192f6f6.roa
Signing time: Sat 31 Aug 2024 00:00:00 +0000
ROA not before: Sat 31 Aug 2024 00:00:00 +0000
ROA not after: Sat 05 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 Aug 2024 15:59:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:af:16:b5:67:70:da:c4:d3:04:2b:6d:c1:bd:01:dd:36:36:b8:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 31 00:00:00 2024 GMT
Not After : Oct 5 23:59:59 2024 GMT
Subject: serialNumber=72469f05958cb5b3c5f28161c6beaae8a8206f45d24c235aac7e6c1652fd7ca6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:85:d7:dd:0b:70:9a:c4:9c:31:7b:e4:ee:de:
82:17:e1:46:6a:41:74:10:e1:e9:e9:df:68:73:e1:
60:70:f2:f7:07:5b:ee:bb:3f:69:d4:3f:3a:6e:8c:
5e:b9:bd:cb:0f:e1:a0:8e:d8:ad:f7:67:bd:75:ef:
a7:b4:00:d2:0d:5c:62:44:41:6f:4c:6d:b0:fb:2f:
6c:63:f9:41:f4:45:16:21:79:f1:40:98:60:43:fb:
49:de:d4:31:9a:c8:aa:b4:38:05:52:15:2d:97:ac:
b1:17:f0:55:99:2a:9a:b3:d2:4b:90:4d:e2:00:6d:
7e:f4:c3:e6:9e:ce:1d:b5:34:2d:c4:1d:90:d8:25:
84:e0:2a:2e:37:58:7d:82:d9:93:4c:6a:35:d1:0d:
fd:74:ea:84:fe:60:7f:01:39:df:29:bb:bc:ee:15:
78:80:3d:2f:ef:e2:a0:6e:83:1c:23:d6:a8:11:4e:
b3:33:7d:e9:f3:4d:79:15:93:32:7c:6f:dc:73:fb:
92:87:26:92:44:04:bb:8e:6f:96:08:2e:ac:d5:a0:
66:bf:de:98:b6:41:66:b3:88:48:20:39:94:b2:bd:
96:c9:95:f6:96:b8:b2:51:23:59:c2:ae:8d:12:65:
b0:9c:ec:32:ca:89:61:ab:ee:a6:3f:4f:7e:24:ac:
fa:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1F:E9:48:79:3B:E4:0F:AC:E7:F8:BA:C7:7B:8E:F5:33:32:1F:80
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/eab53816-cf5f-49df-8fe5-9e527192f6f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:09:d1:41:ee:15:c2:fb:dd:5b:83:3c:95:41:be:46:30:8a:
1e:20:82:c2:e4:50:6d:aa:12:18:f8:01:67:13:e0:47:e1:5c:
0c:59:4f:49:48:fb:86:63:bb:14:c5:4b:e1:e0:d2:5d:07:6c:
4e:3a:33:a0:bf:12:b5:e4:89:44:23:bd:99:da:48:24:7a:f7:
ea:81:1e:2c:d8:73:c9:70:c2:02:2d:81:21:cb:2e:bc:0e:b2:
2a:45:5b:d1:49:fa:87:30:21:a7:fc:8b:0a:b4:ca:16:71:94:
6b:64:a3:87:80:72:6f:e1:4e:9d:6f:9f:cc:5f:b8:17:f4:35:
88:09:dc:9a:b6:e3:ac:fd:b9:df:54:ef:76:fb:5f:bb:a7:1e:
96:a8:07:63:c5:94:9e:68:e1:10:ad:63:45:a6:2a:13:64:36:
fd:4f:ad:9d:5d:9f:14:5d:b8:74:d7:3f:fc:08:e5:31:c9:0c:
00:fa:8f:6e:ab:f5:72:ce:52:bb:28:1c:49:71:f6:e3:2e:dd:
69:2d:07:22:1c:d8:3e:d1:a3:0b:ce:74:cd:e8:cd:87:1f:38:
92:43:e3:b1:c4:40:c6:79:a4:d4:34:db:ae:df:29:5d:14:72:
6d:52:27:0e:b5:94:ef:dc:ea:ff:ea:29:b9:af:d0:9d:29:6e:
41:0b:88:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 17:58:30 2024 by rpki-client on console-ams.rpki-client.org