Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa
File: 3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa (raw, json)
Hash identifier: VLevHO2qvIsdTUywNDaIu+UcnOu3OJi8VG1DrtaDNmU=
Subject key identifier: 66:A3:3D:05:2A:CC:20:0B:49:43:F7:2C:73:FC:8D:FD:F2:F1:B9:96
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 26371C914ECAC49E890FEB2E3344D6A5D8FDC550
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa
Signing time: Tue 24 Dec 2024 00:00:00 +0000
ROA not before: Tue 24 Dec 2024 00:00:00 +0000
ROA not after: Tue 28 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f002::/39 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:40:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:37:1c:91:4e:ca:c4:9e:89:0f:eb:2e:33:44:d6:a5:d8:fd:c5:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Dec 24 00:00:00 2024 GMT
Not After : Jan 28 23:59:59 2025 GMT
Subject: serialNumber=d31a0a428f326a4e843f0176def39b149233974c00a0f836815baa096bca6cba, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ca:f8:f5:67:80:f0:7d:a7:22:ef:d8:30:52:
41:4a:98:a5:d9:ec:82:97:02:fb:00:45:c1:e0:80:
bb:2e:8b:e9:82:9e:d8:4c:f1:06:3e:8f:20:f2:46:
57:00:c1:12:ae:fc:f8:92:50:ce:f1:41:6c:f2:4b:
63:d7:26:97:7e:ea:dd:d9:c6:73:d3:a6:f6:94:fe:
3a:81:8e:3d:4c:5f:87:7a:ca:3d:29:6d:bc:5d:2b:
24:68:24:ee:fd:e9:28:36:28:a5:8c:84:ef:c6:ed:
68:37:f4:cb:7f:34:69:d4:a7:26:39:8c:bc:5a:17:
de:b9:30:05:9f:b8:45:b7:17:87:1a:4e:24:a5:69:
17:63:47:2a:49:4d:5a:bc:4a:ed:99:1e:b5:5e:2d:
a2:bf:43:ec:ef:91:c3:d2:2f:54:89:e5:80:45:92:
a4:d2:80:58:ce:34:84:7e:48:c1:61:78:5d:e8:e8:
58:c2:bb:fe:7a:73:17:c2:80:be:47:a1:9c:a7:28:
a4:05:d3:e8:cb:48:75:eb:42:5c:58:46:1e:c6:ec:
cf:5f:44:86:11:89:d3:45:53:f7:41:36:b4:73:c7:
90:19:ee:6e:e0:41:73:90:5b:9a:b4:65:06:30:85:
d6:01:50:77:a6:bb:3a:76:54:2d:3f:c5:4c:06:31:
d0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A3:3D:05:2A:CC:20:0B:49:43:F7:2C:73:FC:8D:FD:F2:F1:B9:96
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3ac85cf5-b248-416b-ab30-5a430f3fa40e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f002::/39
Signature Algorithm: sha256WithRSAEncryption
71:81:c2:80:d5:32:64:34:fc:b3:6a:8e:c2:8c:e3:0c:61:47:
2b:2b:35:5c:e7:38:9e:b7:8d:48:1c:e6:ca:45:af:8a:ff:29:
4a:f1:38:01:81:60:81:22:7e:bd:d4:91:78:89:6c:4f:3a:01:
3b:9e:b2:89:6b:17:fa:47:11:f3:fa:13:b2:48:2c:9c:f0:6c:
76:f6:1e:85:95:49:46:4b:a9:a0:9d:a7:cf:80:7b:b6:e5:c1:
16:75:5d:8d:58:6d:87:38:df:00:60:03:14:9a:39:13:37:c6:
8c:57:ea:ad:a0:2e:b9:54:d4:e4:65:04:00:83:f1:16:75:f5:
81:97:f0:9e:ca:8e:b7:d3:f8:e1:f4:b6:75:07:8b:58:99:ac:
cd:f8:a9:19:89:df:92:e8:47:32:16:a7:fa:8a:e6:68:f2:87:
d9:1f:ca:d0:7e:a5:cd:4f:7b:00:8c:3f:e1:13:49:11:ba:b6:
9c:62:80:35:c7:a2:6e:f0:13:a5:5f:aa:d1:99:b4:9f:8d:04:
41:14:77:6e:d2:a3:4e:7a:5b:52:f5:b5:e1:6f:08:0f:0f:23:
b6:9a:17:d4:27:5d:08:f3:30:21:cd:ad:df:d2:19:52:37:41:
52:4a:0b:41:a5:ce:6a:70:04:8b:9d:69:3f:90:a5:10:06:7a:
dc:c1:20:a5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Jan 7 05:36:24 2025 by rpki-client on console-fra.rpki-client.org