Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f975daee-1583-4e98-910f-7c01822d13c4.roa
File: f975daee-1583-4e98-910f-7c01822d13c4.roa (raw, json)
Hash identifier: ezrITbMRH20z3Jde/Niu0aV0wrx730ZTDAciw73OZsw=
Subject key identifier: E9:05:B6:A4:E2:41:71:E3:69:33:D5:02:A9:38:D5:8C:62:6C:88:DE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 77743D68C50A591CBFEF5143647AA28F240ED357
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f975daee-1583-4e98-910f-7c01822d13c4.roa
Signing time: Tue 05 Nov 2024 00:00:00 +0000
ROA not before: Tue 05 Nov 2024 00:00:00 +0000
ROA not after: Tue 10 Dec 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 13:43:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:74:3d:68:c5:0a:59:1c:bf:ef:51:43:64:7a:a2:8f:24:0e:d3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 5 00:00:00 2024 GMT
Not After : Dec 10 23:59:59 2024 GMT
Subject: serialNumber=b9124c59f0d556c416a8f54efa89db5973ac1dd72dce4a5a962b5510e519db6d, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c9:01:34:d2:b3:57:c4:48:6b:e3:f4:b3:0b:
49:65:9a:6e:03:30:fe:65:ae:18:c5:84:99:91:8f:
7e:b9:4b:7e:52:5d:d9:42:5e:eb:d3:bf:3d:f1:d7:
96:aa:a9:60:4a:75:18:b2:b8:9f:d0:a7:02:a4:2e:
8f:36:c5:ef:27:04:da:2f:ea:93:76:35:0d:0e:61:
54:f1:42:67:ac:cc:e8:2f:44:93:a6:55:df:79:35:
f3:61:67:86:1c:88:6a:3d:6c:76:f7:6b:73:c2:65:
1f:1e:07:6a:91:e2:f1:2c:ea:e3:ba:2b:ca:fb:f7:
80:b6:e7:fa:18:aa:9f:1e:e1:5a:ce:c9:08:e0:74:
5c:12:ab:af:70:cc:81:10:b5:28:e8:28:c9:10:0b:
c4:88:f3:30:9c:be:9f:50:be:20:3e:f8:85:c4:81:
01:51:2b:42:61:15:6f:d5:bb:12:4f:39:81:52:ce:
2d:3a:3e:f0:e3:ae:b1:a2:a6:05:bc:98:10:3a:bf:
b8:aa:ea:5c:67:e7:c7:07:4f:7f:e2:96:dd:fb:d0:
d2:04:e8:51:a4:dc:5f:74:63:ab:19:34:40:50:57:
c5:bb:e6:a0:5d:77:c9:98:b2:21:2d:04:f9:4f:11:
90:ca:64:06:9b:f2:9c:aa:27:b3:e3:5d:31:7b:56:
e4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:05:B6:A4:E2:41:71:E3:69:33:D5:02:A9:38:D5:8C:62:6C:88:DE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f975daee-1583-4e98-910f-7c01822d13c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
47:f9:18:e7:95:3c:80:4d:b6:3a:1d:12:44:3f:08:74:ca:e4:
8e:bf:ae:39:bd:66:e6:50:06:03:5b:14:69:bb:c0:90:d1:d1:
18:63:79:4a:4a:54:b8:63:ab:54:56:e3:96:78:a6:54:8f:a9:
7a:63:9c:42:a7:0f:bb:d9:21:7c:e0:10:b5:1c:7e:d4:f2:7b:
67:70:f1:de:ea:ed:fe:a3:88:0a:3c:9d:5c:db:4a:d9:b6:f0:
da:20:57:a8:2e:47:95:3b:17:5c:70:93:11:f8:a4:ba:a6:98:
5f:ae:96:70:1c:39:bd:1b:d4:fe:1f:ce:e7:b4:5b:67:dd:1c:
f8:29:8a:5d:c6:9b:b6:d1:8e:6b:27:be:74:a0:e2:69:c1:42:
37:c5:07:b2:7a:6d:f4:11:09:2b:12:ee:70:56:73:ef:3f:c9:
b4:1b:7d:a3:5c:67:1c:74:d0:78:7a:7a:12:ea:b1:29:c7:bb:
f9:65:fd:d5:19:7d:e2:a8:61:ba:33:3c:c0:32:28:78:07:d7:
59:6b:c7:15:6b:62:6b:a2:f4:51:a7:2c:48:d9:6b:94:59:34:
6c:3d:90:a7:e4:58:0e:81:d0:31:d1:ff:cc:72:b6:41:ab:82:
2c:fc:8b:39:0b:6f:5e:e6:86:49:d8:bb:7e:23:91:98:d1:7c:
66:6d:5c:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 19:27:09 2024 by rpki-client on console-ams.rpki-client.org