Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65649c04-0115-4320-9008-f7f0ddd275cc.roa
File: 65649c04-0115-4320-9008-f7f0ddd275cc.roa (raw, json)
Hash identifier: 0Wu738I+Mr42rXnPDGAnM9vnAIFQK/clbPmkUX7X33c=
Subject key identifier: DD:00:D0:26:BB:0C:0E:4A:ED:7C:37:30:15:2F:C9:09:AD:84:FD:9A
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 433149D5C407C731AD5C49CF145B7DE6D5557304
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65649c04-0115-4320-9008-f7f0ddd275cc.roa
Signing time: Fri 11 Oct 2024 00:00:00 +0000
ROA not before: Fri 11 Oct 2024 00:00:00 +0000
ROA not after: Fri 15 Nov 2024 23:59:59 +0000
asID: 16509
IP address blocks: 207.95.192.0/19 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 15:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:31:49:d5:c4:07:c7:31:ad:5c:49:cf:14:5b:7d:e6:d5:55:73:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 11 00:00:00 2024 GMT
Not After : Nov 15 23:59:59 2024 GMT
Subject: serialNumber=9c732d92f4dfa672edc3421960c9869efbb01f1d8d03590e0211dd5b6f4529f4, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d4:fe:81:7a:d2:2d:0e:c5:e0:c5:6f:af:b8:
79:80:b3:cb:59:1f:b7:69:e7:ec:8d:26:ff:d4:fc:
ec:53:02:7d:3e:6c:42:73:bd:cb:a2:f5:11:ed:cf:
2b:40:9c:5c:68:59:ca:97:3b:f1:a4:6f:6f:fb:6e:
21:af:1a:9c:98:26:33:ec:2e:5b:2c:59:6d:02:23:
3c:56:2d:07:f3:a7:b1:9c:25:df:2a:16:49:b0:ed:
83:65:d6:6a:ef:8a:cf:43:0f:e3:5a:13:3a:6c:8b:
ce:60:4d:ac:17:af:b6:8c:c2:40:90:06:47:04:d1:
79:ef:4a:44:be:a2:cb:fa:8c:b5:ad:17:5f:75:80:
7f:6d:88:13:e6:de:0a:bc:19:f2:8b:f2:5d:2f:19:
40:15:fa:d8:92:d1:9b:fe:70:8f:30:d1:60:aa:bf:
5f:09:92:da:3d:96:7d:11:d7:d7:c7:7a:9e:00:77:
3d:91:86:49:6f:9a:5e:00:65:4a:90:f1:a1:17:35:
4d:46:9d:6d:eb:be:b2:26:70:3b:99:40:79:02:75:
11:0a:2c:c7:87:18:d4:bb:b2:88:ef:e0:0e:27:bc:
72:62:4c:8e:29:8b:5b:43:ff:9c:83:e3:04:fa:90:
b9:4d:c2:76:67:d0:82:d3:66:30:41:20:85:73:1c:
cd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:00:D0:26:BB:0C:0E:4A:ED:7C:37:30:15:2F:C9:09:AD:84:FD:9A
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65649c04-0115-4320-9008-f7f0ddd275cc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
207.95.192.0/19
Signature Algorithm: sha256WithRSAEncryption
17:36:f7:e5:f3:ad:8c:b9:93:d2:8d:ca:af:3d:84:9a:45:14:
2d:09:39:50:74:28:6d:8d:60:b5:62:24:36:33:bc:47:13:51:
e4:60:bf:f3:41:6e:88:9c:76:1b:5b:54:df:a8:85:6c:d0:43:
95:d2:72:79:5d:b8:9e:1d:81:f8:f0:c8:d7:be:1e:45:62:4b:
8e:2d:48:0b:85:b0:1c:47:c4:ce:3e:63:58:0d:b8:e5:c9:53:
c2:8b:ef:1a:d6:b2:5d:06:6c:04:08:01:f8:6c:b4:82:bc:ec:
2e:63:29:b1:76:a9:1d:ba:b6:5a:c2:f0:a3:0d:61:69:3b:97:
f0:9a:8f:f8:94:77:8a:67:16:af:38:24:4f:4c:a3:67:55:56:
07:06:29:47:6c:af:7c:43:f5:19:db:ef:f9:f4:f9:4e:74:0d:
7c:52:e9:47:e8:cb:9d:1a:cf:42:3e:54:ea:69:e5:cd:b9:0d:
b7:98:95:7d:fb:54:9d:22:df:34:23:b9:ef:2c:94:85:7c:3c:
32:1c:e6:96:a2:2a:59:6a:4d:38:87:3c:6c:5e:8f:0f:e2:68:
83:7f:bd:4a:31:bd:73:55:94:3f:41:f4:c7:c2:4d:d0:95:62:
52:03:b0:cb:78:91:6d:53:d1:03:02:7e:e5:24:7d:8a:2e:f2:
92:ec:72:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 19:18:18 2024 by rpki-client on console-ams.rpki-client.org