Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2dc01e0-46f0-442f-9781-7cfe4eef20c1.roa
File: f2dc01e0-46f0-442f-9781-7cfe4eef20c1.roa (raw, json)
Hash identifier: r2NabWZXWRIO10rxCS6jgXoaATWfVCk7Wz1iFWJCRRo=
Subject key identifier: 93:2C:08:1C:0A:61:6D:C4:8B:D2:F9:3F:8E:C3:90:7D:70:A8:29:85
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 610CAAEAD4113005D4DDE5444F7EC7E0F4EC7827
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2dc01e0-46f0-442f-9781-7cfe4eef20c1.roa
Signing time: Wed 15 Jan 2025 00:00:00 +0000
ROA not before: Wed 15 Jan 2025 00:00:00 +0000
ROA not after: Wed 19 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 104.144.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Jan 2025 12:56:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:0c:aa:ea:d4:11:30:05:d4:dd:e5:44:4f:7e:c7:e0:f4:ec:78:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 15 00:00:00 2025 GMT
Not After : Feb 19 23:59:59 2025 GMT
Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b1:c3:bf:0a:19:c8:e7:cf:91:02:51:9a:63:
7f:bd:d2:9a:a4:c3:28:7e:87:1c:ee:f8:2d:0e:13:
d9:92:29:5a:ac:c7:bc:cb:5f:fc:85:0d:36:d9:6f:
fd:c2:18:79:16:73:31:19:e1:47:99:ee:29:f4:34:
58:82:b4:70:12:0d:8a:1f:04:65:ca:5d:91:79:f3:
4c:f2:a3:a9:1f:fa:a1:43:4d:7a:5a:1e:21:eb:c9:
ff:d2:75:a3:31:49:d8:50:86:73:c7:0e:4f:cc:8c:
4f:8c:99:1e:e8:4b:53:e7:27:bf:dc:a4:2e:83:d4:
0f:55:c4:44:cb:fa:a4:f8:f2:c6:66:99:5c:db:4d:
66:4b:16:fb:7d:d4:21:ee:41:41:a4:83:69:28:35:
1e:00:83:c8:f7:00:3e:18:dc:d1:8d:37:15:d3:db:
66:e8:a9:21:5e:e1:b3:41:73:e7:95:ef:25:8f:13:
82:ac:3a:c9:85:9e:81:ef:ec:ff:3c:40:57:8a:64:
ad:5e:4f:d8:c7:81:bc:20:06:23:1e:9f:4f:e5:3c:
c3:ea:8c:c5:fd:7a:3e:4d:28:7a:f9:ed:ff:f2:8b:
4b:f6:0f:c9:a2:d4:14:09:c4:a6:80:a1:19:1b:ce:
c6:b2:b2:ab:99:99:75:ec:fc:ef:03:fd:b9:c7:5d:
5e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2C:08:1C:0A:61:6D:C4:8B:D2:F9:3F:8E:C3:90:7D:70:A8:29:85
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2dc01e0-46f0-442f-9781-7cfe4eef20c1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.144.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6e:c8:1f:81:82:ae:75:44:d9:20:2f:07:9d:4b:6a:7a:e0:d9:
e6:4b:f2:15:74:7d:65:d4:fe:e9:7d:4c:1e:62:31:db:03:77:
67:0c:3e:7d:49:f1:75:43:6e:ab:f5:68:48:55:f4:18:cb:36:
10:ec:10:92:20:41:2d:f2:d4:12:74:ce:44:1f:15:fa:ff:6b:
9c:24:48:2b:0b:9b:5a:aa:83:ed:d3:17:c2:2c:dd:ad:22:09:
8e:ce:7b:18:a6:ee:26:78:8b:81:91:7d:f5:00:bc:50:f5:fa:
4b:6b:d9:37:50:af:30:d7:bd:22:26:42:f2:4f:5e:7d:c0:c7:
65:e2:6f:f1:fc:39:3d:78:31:66:23:0a:e8:1b:c8:37:25:43:
1b:00:da:16:94:78:f0:f2:59:3a:e9:50:37:b7:60:ca:7b:21:
28:db:58:1c:5f:aa:85:86:b5:74:ab:90:57:02:65:47:c0:d7:
0e:37:f2:6a:65:f4:a1:c2:7c:a2:84:bb:70:3a:db:3c:e7:38:
a5:5b:39:68:c6:b0:b8:ed:25:0c:8c:e9:7f:42:2a:9d:84:92:
de:a9:02:4f:79:8d:47:2a:4a:ba:5e:d0:9f:81:f1:96:e5:91:
46:cd:05:09:2a:f1:d0:fc:57:3d:5b:b1:11:f8:4c:66:ad:e2:
b2:0c:01:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:56:20 2025 by rpki-client