Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5c627582-22dd-4a71-a826-171106497f22.roa
File: 5c627582-22dd-4a71-a826-171106497f22.roa (raw, json)
Hash identifier: K6Pj7e3yUVaDZCoE2PbjFq5RuJnOgFVfbbzTf0QvG7A=
Subject key identifier: B3:3A:D1:A0:1C:AA:DC:1E:1C:76:FD:44:44:18:1D:F8:8C:B0:0E:D6
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 44D4E29DA313D15C3915FF45B6A691C4171DDC33
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5c627582-22dd-4a71-a826-171106497f22.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:f000::/24 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:52:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:d4:e2:9d:a3:13:d1:5c:39:15:ff:45:b6:a6:91:c4:17:1d:dc:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=5d5cb2fcd752065df27d2db033711b333c024c9f23921cae441d5ba177949c9b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bc:fd:ab:55:9b:dd:83:9a:d9:9a:a9:13:b8:
fc:fb:1e:95:de:79:bf:39:f2:ef:75:d2:9c:cb:c6:
7b:e7:22:ec:f8:5e:6e:d9:a1:67:39:d7:80:b4:25:
84:30:28:89:6e:8a:b1:a4:01:30:06:68:a8:0d:45:
8d:20:22:0b:f4:42:b2:cc:51:79:ad:23:7d:3d:32:
20:48:f2:b9:26:38:2e:b4:b3:ca:68:8c:4b:43:3b:
62:85:52:23:c7:cb:90:b3:b2:1e:d8:8b:73:07:2f:
0c:cd:d0:84:0d:62:5f:96:88:e1:2b:3a:30:cc:49:
c8:d7:7a:4f:51:ad:3f:e1:40:1e:f9:a2:74:19:cc:
86:ae:86:44:7b:9c:16:86:21:f2:bf:28:57:4a:eb:
dd:73:7f:cd:64:38:69:9a:09:77:86:12:7d:ef:80:
40:ab:0a:b9:eb:09:34:8b:09:7a:75:66:68:a2:a5:
5e:1a:ca:56:9b:a0:e8:4f:9f:77:94:0a:3d:da:27:
6f:4e:1b:42:72:7f:2e:7c:98:4e:32:6f:b1:c3:1b:
a8:34:98:ad:4c:d2:f8:f2:00:33:c7:07:e9:e6:4f:
4c:fa:81:f5:4b:60:10:6b:f1:6e:2b:4e:a6:c7:b5:
bf:cb:c9:63:6f:b4:e6:d7:3f:cf:d3:37:02:6f:a1:
b4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3A:D1:A0:1C:AA:DC:1E:1C:76:FD:44:44:18:1D:F8:8C:B0:0E:D6
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5c627582-22dd-4a71-a826-171106497f22.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f000::/24
Signature Algorithm: sha256WithRSAEncryption
5f:7c:54:25:3c:de:91:3b:52:6c:00:64:3f:07:c0:1e:d6:e8:
2a:7c:e2:bc:08:ea:73:1d:e0:48:86:c9:99:10:4e:ae:99:be:
00:14:d7:09:3e:af:5a:7b:57:7d:75:7c:cf:93:99:a2:8a:f6:
56:3a:97:bb:f7:c8:12:00:24:3f:37:6f:7b:a7:17:0e:77:ac:
c1:e7:d1:69:87:16:0c:ef:80:da:09:5f:e0:04:76:cf:01:b5:
d2:81:7a:e3:6a:3e:cd:30:20:77:db:8f:3a:98:bf:cb:b5:d5:
d9:ff:01:55:a7:d7:5f:f8:93:63:b1:47:b7:e8:0f:d4:e7:39:
13:9f:05:de:88:92:39:69:dc:ef:51:f7:5e:0d:b1:f9:f2:52:
dd:71:d1:ac:c2:1e:de:9e:e1:bb:15:b1:e6:c7:ee:1e:a4:8c:
4f:f6:06:c5:c6:f9:10:22:34:ed:02:20:40:7e:81:52:d6:db:
fd:3d:ca:cb:ce:6b:a2:8f:e9:39:b1:d7:f5:69:46:30:61:5e:
8a:c5:b3:8b:08:1b:18:b8:79:44:34:cb:f1:f6:30:72:f7:38:
f9:d3:18:34:65:00:87:e0:18:08:2e:59:85:29:c9:d7:49:9c:
b5:b5:2c:fa:82:af:c0:cd:30:5a:32:cf:f8:f8:a9:5f:cf:f3:
69:3b:78:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org