Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa
File: 29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa (raw, json)
Hash identifier: x2+aILJC/MhDvJpvLTFKAfRanQ1V+aJg2uoY+VSJyC0=
Subject key identifier: CC:07:FC:9D:01:17:41:2F:81:AF:06:17:00:EF:BC:67:BB:5B:48:EE
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 3AB2D531D2C6C7D610E666A2903DBC877C25BDFB
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:5523::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:b2:d5:31:d2:c6:c7:d6:10:e6:66:a2:90:3d:bc:87:7c:25:bd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=798e882aba66edd69af27550938512b265f0130b2d61203119ce8243acb4cc9b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a3:17:27:2d:90:b1:a2:c2:51:c3:ac:a5:51:
09:0e:eb:54:18:04:5c:58:63:2a:93:df:b9:d5:f3:
e3:7c:8a:03:84:d4:7b:69:ac:18:96:6e:9d:d3:4d:
5e:39:ba:18:41:1a:e1:1b:fc:1c:8d:32:ca:35:37:
65:5b:c5:8b:3f:31:99:e9:ba:b0:ee:0f:30:54:1c:
b3:42:07:44:35:8c:24:71:45:f0:8e:6c:32:48:03:
a5:bb:a8:5f:dc:58:80:9f:d2:db:1c:49:bb:19:8c:
e6:60:06:67:42:b2:3b:4d:d3:65:42:54:ab:32:66:
8d:4d:aa:64:0a:69:f1:70:7a:c7:04:1f:f2:76:10:
1a:26:fa:41:ad:11:e3:22:80:0c:24:43:66:7e:de:
c8:fe:1c:5a:dc:b3:7d:97:01:e8:6c:b8:51:63:80:
c1:84:dd:c1:c6:ca:f1:b0:48:aa:99:46:2b:98:85:
88:15:b9:21:a3:c9:0e:53:77:1f:b2:5b:63:7a:f2:
e4:45:f5:ae:ee:b3:61:27:70:3e:c4:d3:60:0a:d9:
de:4b:2e:52:37:91:1b:45:d3:e4:7b:25:a1:8d:7e:
78:19:b9:01:1b:57:53:6b:0e:a5:ef:16:a3:91:f1:
9b:a5:8d:0a:d4:75:e1:82:04:16:0e:9c:43:a9:8e:
b2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:07:FC:9D:01:17:41:2F:81:AF:06:17:00:EF:BC:67:BB:5B:48:EE
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/29c4a1ba-28eb-4346-8889-a97d5186a1ff.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:5523::/48
Signature Algorithm: sha256WithRSAEncryption
3a:1b:ce:1d:0b:b1:89:1c:12:dc:38:30:22:5d:62:9e:c0:9d:
18:a2:35:10:50:4a:a8:5b:7f:92:7c:26:9e:fb:1e:35:ab:44:
8b:b7:f8:ba:fa:d9:d7:07:ce:81:c6:83:b8:bc:c8:cb:4d:e7:
73:34:d9:4f:5f:ec:eb:ca:69:de:ea:e9:df:21:58:ed:f2:45:
10:7f:28:5b:88:e8:7b:6d:84:82:70:75:af:7d:8b:f7:39:00:
5b:40:b4:1a:f4:50:32:68:0d:7a:c3:ae:9e:1d:a7:68:30:31:
4e:ca:b8:c3:57:a2:83:82:e4:3b:eb:e5:c7:32:a6:8d:3d:32:
d3:e0:f3:25:ad:83:e9:d2:59:27:6d:19:48:22:df:ac:05:8e:
16:f9:00:fe:43:bc:6e:8d:b6:af:1c:5a:06:65:85:f6:a3:84:
a9:e3:25:41:b5:58:17:7d:6b:71:f7:13:bc:7d:10:1e:ba:89:
5a:1c:0b:a6:3c:9c:5b:4a:78:0e:e4:b7:94:f0:69:41:3c:ff:
06:f4:26:53:b3:b1:57:40:c3:69:4f:ca:75:f8:5c:25:b1:7c:
42:2f:f9:a2:40:31:90:f8:34:ff:6c:80:fa:5d:2c:d7:35:c2:
4d:37:83:fb:35:7c:8d:45:be:57:22:8d:a9:c6:7c:96:09:bd:
5e:7d:86:ad
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jan 7 05:36:24 2025 by rpki-client on console-fra.rpki-client.org