Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fbcb9cba-b88b-4c78-aced-eccad7188455.roa
File: fbcb9cba-b88b-4c78-aced-eccad7188455.roa (raw, json)
Hash identifier: DZb8N8OBIES42ZwRJ41ETZwBLgS7DeaIM+Zd73V14IA=
Subject key identifier: E9:64:5E:71:0D:F7:6A:BF:A9:E5:90:8F:08:33:7F:FD:A9:BB:35:25
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0B44811D38655F7D5CAB639BCA26A95FED87F19E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fbcb9cba-b88b-4c78-aced-eccad7188455.roa
Signing time: Fri 16 Aug 2024 00:00:00 +0000
ROA not before: Fri 16 Aug 2024 00:00:00 +0000
ROA not after: Fri 20 Sep 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 10:58:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:44:81:1d:38:65:5f:7d:5c:ab:63:9b:ca:26:a9:5f:ed:87:f1:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Aug 16 00:00:00 2024 GMT
Not After : Sep 20 23:59:59 2024 GMT
Subject: serialNumber=32380e5455ac71adcb3a4e06889c0858ad045eb7437db7e7368fdd3cb64a2ae6, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c5:b7:9f:09:1d:18:c3:ab:57:e7:5c:51:b5:
9e:21:f6:dd:ee:f7:8d:fa:39:e1:e9:be:ee:79:c8:
5b:0d:f4:27:1e:98:69:05:7b:0c:a1:9a:d0:41:31:
2e:e9:f6:d2:73:10:68:17:28:4a:98:b2:f2:ff:b8:
1e:13:f2:7c:82:3b:fc:62:d6:31:df:6b:0e:65:52:
d3:aa:eb:95:de:66:5c:59:5f:41:8b:21:fa:a0:c6:
21:5a:e3:48:a2:85:b7:7e:b9:aa:22:07:fc:0b:89:
02:36:e8:87:23:fd:61:72:ab:ac:11:66:28:3f:2e:
58:bc:3c:1b:8a:7c:a2:62:77:6b:cc:7a:2a:05:2f:
29:d2:48:4e:5b:9a:20:1d:49:5e:83:86:7a:43:be:
cf:d2:6a:ee:18:56:31:5e:7d:49:89:b6:67:e4:a4:
b8:a0:53:eb:83:21:22:9a:91:66:4b:2c:02:d3:07:
16:5b:c1:8d:90:8d:14:eb:ec:74:bf:ac:d0:dd:04:
a6:ae:a5:34:ad:36:19:d4:d4:51:f8:72:a4:55:45:
84:cf:f5:da:c3:b2:3b:c7:8e:85:35:ce:ea:f8:a9:
36:7c:7f:37:9d:86:6b:c5:0a:0b:b4:bd:89:3b:bf:
2e:89:c7:8d:44:00:e9:d4:8b:e0:bf:3c:0b:c3:e4:
c5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:64:5E:71:0D:F7:6A:BF:A9:E5:90:8F:08:33:7F:FD:A9:BB:35:25
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fbcb9cba-b88b-4c78-aced-eccad7188455.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
52:72:bf:01:cf:a4:1e:83:cb:72:cc:c2:d1:ea:1e:9a:38:70:
1d:ee:ad:6f:3a:52:c4:62:9b:20:30:bd:61:a1:b5:81:dc:d2:
b5:10:3d:bf:90:d2:64:53:10:88:3c:f5:0b:b0:cb:69:7a:7b:
37:77:66:b2:44:4e:b9:1a:54:a5:cf:b3:af:f8:e5:41:0c:bf:
21:c8:3c:6b:78:18:60:ab:1d:0d:57:f7:a8:60:aa:df:ef:5a:
16:53:a6:26:58:ca:f5:64:cb:4b:10:38:cf:27:da:68:76:42:
50:c8:3b:00:0e:60:0a:db:ea:42:9e:c0:5f:03:46:03:47:84:
b5:10:70:84:24:cb:3a:55:ca:13:5c:0d:21:d3:8a:b5:09:14:
1e:fd:63:0f:05:8b:2f:51:c8:03:d1:fb:d4:81:cd:c0:c5:29:
35:85:ac:99:f0:79:01:cf:05:89:99:60:b8:61:55:15:19:74:
5b:da:3e:b4:19:0d:2a:37:c0:d9:ec:b9:a5:82:82:8c:49:c1:
be:18:cc:c8:d1:31:df:3f:a7:0e:c1:93:0f:1f:84:b1:76:d3:
18:4e:d8:0c:7e:56:cc:b3:6e:2a:3f:9f:10:d4:19:0d:ca:ef:
ce:7b:0e:47:f8:c8:a3:ec:3b:44:6f:d7:55:5a:f9:12:30:59:
22:fa:72:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 15:30:37 2024 by rpki-client on console-ams.rpki-client.org