Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa
File: f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa (raw, json)
Hash identifier: q/K3+a4+ZABCo0TARgIFtxyMhYEiXwv7gb26e+bIjsU=
Subject key identifier: 08:D0:89:A7:7A:3C:31:40:17:BA:C1:9A:A0:D4:3D:9F:03:33:DA:F4
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 725EC0E3FFD2C83922B5FFC9697C7FE7328369FF
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa
Signing time: Tue 21 Jan 2025 00:00:00 +0000
ROA not before: Tue 21 Jan 2025 00:00:00 +0000
ROA not after: Tue 25 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 209.54.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Jan 2025 14:38:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:5e:c0:e3:ff:d2:c8:39:22:b5:ff:c9:69:7c:7f:e7:32:83:69:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 21 00:00:00 2025 GMT
Not After : Feb 25 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:c3:18:b1:7a:92:cc:b9:6d:c9:e7:ac:4b:
36:de:de:16:6f:9c:99:6e:51:06:a2:c2:e3:6c:04:
e7:67:f4:24:fe:b0:f6:b1:03:7a:13:b9:0a:2c:b5:
0e:5f:ef:bd:19:a8:ca:da:73:13:ec:f5:13:41:3e:
cb:e9:ac:ac:b4:40:f1:e3:77:c1:d6:7b:86:15:39:
fb:4b:4e:9e:20:67:8f:ed:d3:ac:cd:cf:90:03:1d:
e7:0f:50:65:55:cb:b1:e6:75:0a:15:bd:ad:dc:33:
f0:63:52:02:df:a9:41:3a:19:d4:2c:8f:04:3b:95:
36:e4:55:1e:e3:13:78:b3:d2:65:3f:02:5f:8f:cf:
1b:be:cd:b7:f3:21:68:27:ba:0c:74:18:e6:07:e8:
ac:84:68:b6:d0:05:7b:49:3f:56:af:64:ff:c9:82:
82:90:3d:62:8c:d2:26:1b:7f:62:44:68:99:f0:2c:
6b:33:1b:a1:d2:0f:fc:f9:7a:22:7e:38:08:4d:d8:
66:2f:15:d3:5f:0c:ab:55:08:f5:59:0f:cc:c7:a5:
59:0b:d4:1f:f9:7e:f2:1c:e2:ef:5b:44:95:21:a2:
10:dd:f8:32:10:4a:8d:57:bb:43:f0:7e:d1:54:31:
cd:c5:c4:78:e9:2c:10:5b:0f:a1:61:a6:40:72:56:
b4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D0:89:A7:7A:3C:31:40:17:BA:C1:9A:A0:D4:3D:9F:03:33:DA:F4
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2ad3121-7e1e-4e90-b0a2-3352c5db99e1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.54.176.0/21
Signature Algorithm: sha256WithRSAEncryption
b4:26:8d:29:4c:38:06:01:d7:f6:24:9d:59:ff:01:ae:c5:83:
cd:60:2f:d1:ff:71:49:de:82:f3:84:da:36:9f:66:3d:6b:02:
b3:1e:27:7c:18:4f:40:9f:7c:b5:f2:64:6d:6f:7d:e9:d8:25:
6c:2d:65:de:21:5a:70:e4:f6:8f:df:c8:11:ae:36:6f:fb:83:
79:77:00:40:e9:c7:05:f1:04:b4:36:8e:5c:20:a7:2f:ea:19:
a6:30:8b:7d:27:7a:01:89:5f:0e:01:08:c9:bd:71:96:ab:66:
30:24:79:1d:ff:b5:08:e4:06:90:2f:36:6a:49:bd:c5:9e:26:
b8:ff:88:3f:b1:7b:cf:e0:1a:59:f9:59:bd:4d:e0:8f:65:24:
31:f2:b5:7c:f8:be:f3:bb:7a:68:72:55:3a:05:29:17:42:48:
78:64:91:eb:91:81:eb:e8:44:a6:b2:76:56:05:b4:2e:1f:06:
0c:c9:19:91:89:31:6f:31:35:84:c7:9a:84:93:27:c9:ab:53:
b1:58:9c:9a:ce:7a:0f:4b:6f:c4:19:a0:bd:aa:f4:52:5b:b7:
7b:d5:25:89:c7:94:b5:00:2c:5b:e2:13:82:04:72:21:3a:18:
b9:99:69:60:e4:eb:f5:5f:29:f3:ff:75:6e:29:f7:b4:1a:97:
49:74:8a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:29:10 2025 by rpki-client