Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6110b096-0b79-46f4-aced-71a2852c64c0.roa
File: 6110b096-0b79-46f4-aced-71a2852c64c0.roa (raw, json)
Hash identifier: hHiMpznVrFRtgFp/RxKH/OWMYwN9ZVhfdxIdbAhCAIw=
Subject key identifier: A9:65:B9:81:42:A8:65:E8:41:13:97:43:7D:FA:25:3A:E7:68:82:E9
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 0D5E80111D13E147ED8CFF929EBBA910A27B001B
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6110b096-0b79-46f4-aced-71a2852c64c0.roa
Signing time: Tue 14 Jan 2025 00:00:00 +0000
ROA not before: Tue 14 Jan 2025 00:00:00 +0000
ROA not after: Tue 18 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 142.4.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Jan 2025 18:38:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:5e:80:11:1d:13:e1:47:ed:8c:ff:92:9e:bb:a9:10:a2:7b:00:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 14 00:00:00 2025 GMT
Not After : Feb 18 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:90:8e:8d:41:57:f2:05:a3:1b:1c:48:f2:d6:
b6:e4:2b:4a:14:c7:13:2b:24:27:65:70:5f:73:ad:
66:a6:37:a6:c0:45:1e:f5:0f:bb:2d:ba:ca:3e:20:
a1:26:c4:67:1d:25:3e:d3:18:94:69:af:51:1d:d8:
1b:f3:76:01:97:8d:cf:a5:01:f5:92:fd:02:db:42:
0f:9a:be:03:43:03:ef:07:c4:10:33:04:be:94:de:
75:87:e4:88:53:02:40:95:3a:50:33:73:74:77:21:
97:aa:21:75:6b:77:2d:e5:e8:5f:90:c4:f7:de:49:
58:86:66:4d:27:ab:40:e6:30:aa:41:32:0e:28:ee:
ee:b7:ae:d1:88:06:a0:e7:0c:06:54:d1:2c:77:ee:
22:54:10:e0:ec:de:5b:93:eb:e1:dc:2d:fe:b0:3c:
a8:a8:38:8c:80:b2:49:b5:a9:16:8d:26:43:f0:2d:
53:5a:2a:b8:9c:03:c1:e2:f6:fc:35:ee:28:6e:20:
66:1b:4e:10:e7:31:d2:10:a9:6e:e5:63:07:60:27:
cb:6b:29:91:8d:13:fb:33:b8:35:0d:38:73:77:ec:
f5:a9:64:c9:84:13:3b:40:f4:9a:42:93:79:00:5d:
a0:4e:3e:6b:4b:4e:a2:be:a1:d3:10:5b:35:95:5a:
13:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:65:B9:81:42:A8:65:E8:41:13:97:43:7D:FA:25:3A:E7:68:82:E9
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6110b096-0b79-46f4-aced-71a2852c64c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
142.4.164.0/24
Signature Algorithm: sha256WithRSAEncryption
97:45:49:29:bf:fa:4f:fd:c9:a0:22:04:db:35:a6:4a:60:91:
ce:95:3f:22:53:3e:dd:53:d4:d4:f5:2f:c0:36:28:e1:05:87:
e1:a3:e6:d7:49:88:6a:b2:cf:b0:ff:46:ab:88:b0:3e:25:00:
ed:c0:f5:3f:9e:23:48:a1:df:30:b6:c5:d6:3a:77:e8:82:20:
d9:11:03:69:8d:03:3a:aa:19:44:3a:41:c7:05:ba:c4:ba:49:
a8:67:d6:67:6e:b4:48:e6:b3:de:ec:8e:8e:d1:2a:84:67:ce:
d9:38:5c:cd:36:39:9f:4d:c6:6b:34:39:23:3b:c6:c2:39:d8:
1e:90:15:6f:87:f6:09:29:3f:d1:6c:cc:f4:8a:a6:9d:f1:23:
60:da:92:25:a8:7f:ef:b6:a8:69:24:8a:b8:4c:e8:39:07:9a:
87:52:76:89:b3:1d:a3:74:51:4d:b9:f8:03:21:b3:74:f4:84:
6f:ad:f5:a2:55:cc:63:9b:d5:27:83:c5:36:bc:ed:63:95:67:
61:7b:ba:63:e1:b1:2b:aa:2b:b2:32:58:66:df:5e:dc:fa:34:
58:6a:17:8e:dd:67:a0:a0:e5:05:6b:f4:ee:53:ea:31:1b:a7:
b4:5f:0b:e6:b2:e1:a8:73:77:03:ec:88:b9:a5:22:ba:ff:89:
65:00:c0:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:17:23 2025 by rpki-client