Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8514ac76-a773-4bba-a49f-d751364d6c95.roa
File: 8514ac76-a773-4bba-a49f-d751364d6c95.roa (raw, json)
Hash identifier: rKO2bAD7Kq3V/bQ4yC2KsKkP16oezuE3Hph0xjMgjno=
Subject key identifier: 75:7C:58:8E:A3:30:3E:C2:57:D3:5F:C4:96:8D:C6:7E:C9:0C:ED:6D
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 2D1B3856FAB3B35D42D49EB047029A09F33226BE
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8514ac76-a773-4bba-a49f-d751364d6c95.roa
Signing time: Fri 11 Oct 2024 00:00:00 +0000
ROA not before: Fri 11 Oct 2024 00:00:00 +0000
ROA not after: Fri 15 Nov 2024 23:59:59 +0000
asID: 8987
IP address blocks: 204.31.80.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 15:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:1b:38:56:fa:b3:b3:5d:42:d4:9e:b0:47:02:9a:09:f3:32:26:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Oct 11 00:00:00 2024 GMT
Not After : Nov 15 23:59:59 2024 GMT
Subject: serialNumber=fe76d850edc84944f738dc84dec3b586ffb97c00ecac905dbec38b24e31b3dda, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b3:1d:56:8f:14:2c:9e:b2:0c:a5:70:c8:24:
b7:77:2e:1a:4a:d4:8a:0c:ac:bf:79:71:b5:2f:d9:
1a:58:59:e6:6c:65:54:a4:cd:2f:04:a6:a7:59:24:
d3:d7:b5:e2:8e:77:0f:d0:5d:7f:24:54:0d:64:97:
2d:07:ea:d8:a8:58:12:5c:dd:dc:3d:06:3a:93:bc:
41:43:cd:2b:e3:4d:23:54:dd:dc:cc:92:c3:47:70:
e7:8c:3d:34:cf:07:8e:64:cd:18:53:df:a9:6b:6e:
ec:ae:29:cf:97:0a:93:ea:32:94:70:3a:78:90:4c:
2f:8d:8b:ce:f7:89:fd:d1:7c:49:07:ce:ce:15:39:
70:9f:3b:ed:bd:1f:f9:27:5e:a3:a7:41:d3:2c:df:
93:2b:7d:7c:78:36:c4:a1:57:c4:ac:e0:b7:b3:a5:
cf:97:2e:71:41:2f:19:97:86:19:1b:1c:51:b0:6e:
0d:99:a0:b6:19:72:5a:c4:6f:0f:9b:ab:c2:95:dc:
b2:7a:7f:1f:0f:b3:3d:b5:98:b1:8f:be:99:f5:47:
48:75:50:03:f0:db:3e:63:cb:00:aa:3e:3b:ef:ae:
88:e8:5c:b2:23:9d:1f:2f:c2:05:d0:b2:d9:43:8c:
e0:e5:2e:bb:e1:92:11:16:58:11:15:cf:39:66:45:
1a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7C:58:8E:A3:30:3E:C2:57:D3:5F:C4:96:8D:C6:7E:C9:0C:ED:6D
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8514ac76-a773-4bba-a49f-d751364d6c95.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
204.31.80.0/20
Signature Algorithm: sha256WithRSAEncryption
b7:3b:87:c4:c5:3c:fb:e2:d1:72:da:44:04:9c:b9:74:31:1d:
8c:bd:08:63:1e:18:b4:29:c6:8c:93:50:fb:5f:40:fa:54:cb:
2b:f1:02:00:3d:b2:4f:13:d7:1f:a2:67:de:71:b0:70:43:17:
20:53:37:68:36:e4:6b:5b:bf:ad:20:a5:ff:aa:ce:b9:c9:cc:
e1:13:3d:28:07:14:9f:c7:aa:52:3b:cb:2f:f5:62:b5:de:07:
80:d1:02:ad:3e:e5:8f:50:d9:bd:f1:51:58:3b:01:27:aa:6a:
e9:a8:a5:59:f9:6d:97:41:f2:c8:2f:06:a8:1e:de:a8:da:87:
52:7d:be:fa:d2:61:4c:3a:c3:a3:a1:c1:cb:40:f1:7c:e3:06:
49:69:5e:96:fc:59:0d:6a:75:7f:05:09:d4:01:ee:90:ab:51:
15:6e:e0:11:d9:25:c9:27:51:9e:6b:a2:7e:3d:06:40:9e:8c:
09:13:4a:8e:7f:52:04:a4:96:e1:84:b2:31:44:ef:3b:2d:87:
f6:7c:cf:f9:e1:87:a3:83:be:5c:51:c5:db:40:59:94:a4:f4:
f3:e5:46:74:1d:66:dc:f0:01:9a:b1:c0:08:b0:30:6e:72:66:
ed:55:db:dd:f2:c9:47:4f:37:4d:68:19:49:36:54:59:2a:3a:
64:8a:ab:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 17:28:40 2024 by rpki-client on console-fra.rpki-client.org