Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5cc1388b-8bfd-4999-b677-56c7781ef530.roa
File: 5cc1388b-8bfd-4999-b677-56c7781ef530.roa (raw, json)
Hash identifier: ZApQJtWS8VLxJ1Oo61X4nr9vmgmb5dyFVPkkqiXABUA=
Subject key identifier: 8D:62:B3:70:14:90:92:17:D6:87:A5:EB:88:0C:AB:78:BD:3C:62:57
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 6DE1DD440615BD8F643DF631C61800EDC00C9B13
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5cc1388b-8bfd-4999-b677-56c7781ef530.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:87::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:e1:dd:44:06:15:bd:8f:64:3d:f6:31:c6:18:00:ed:c0:0c:9b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=b14b3caf813772629bcf529fd3586bca1e5f8fc863d2ae9569c1bcf1143bfe81, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6f:fb:94:30:ab:d2:a0:bc:19:39:d7:e1:27:
67:af:24:03:ff:f0:84:87:86:c2:4b:91:10:a9:4e:
2b:81:7a:f4:05:df:1a:c9:66:7b:78:99:e2:58:88:
b5:28:5d:30:c2:24:f0:88:4f:d4:4c:82:ad:5d:c3:
fd:1e:f6:a0:53:3c:86:bb:b6:c3:d5:0a:f7:9a:e3:
85:65:10:97:6e:32:54:4f:36:0a:e2:68:14:7b:eb:
b1:2d:79:09:e3:71:7e:99:41:34:8c:62:fd:38:c4:
57:b6:ee:e0:3c:16:53:d0:62:c0:ac:1a:cf:a8:32:
28:7e:e1:a8:f7:7d:6f:32:8e:36:56:44:6c:07:4d:
30:5a:de:12:f1:3b:5a:9b:d8:21:b8:d2:53:63:09:
50:0e:cc:07:93:11:d0:80:41:67:8b:43:79:89:ed:
f7:e4:a0:a9:7b:b7:7d:be:65:a5:c2:e7:0b:4a:4b:
01:6c:97:c3:1f:5c:bf:0a:17:be:31:00:19:41:44:
48:c2:4c:b0:0b:1c:43:6f:8f:95:78:86:2e:85:cb:
49:c8:5e:c9:8b:f5:81:42:26:9c:5b:3c:6e:68:a9:
ba:57:29:9d:20:49:84:42:95:d1:5f:96:36:2e:93:
ed:81:5a:c6:63:fe:47:75:1b:42:cc:23:9d:e2:f6:
2e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:62:B3:70:14:90:92:17:D6:87:A5:EB:88:0C:AB:78:BD:3C:62:57
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5cc1388b-8bfd-4999-b677-56c7781ef530.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:87::/48
Signature Algorithm: sha256WithRSAEncryption
98:39:3f:bd:2c:62:3b:7d:93:db:0d:49:80:7a:22:2d:a7:fc:
98:89:75:64:87:d5:47:aa:62:c9:ce:bc:c4:2c:df:63:02:ef:
ad:44:eb:17:f2:74:b7:07:84:95:7b:a6:2e:e6:78:c5:16:2d:
9e:e3:8d:81:b8:54:09:16:db:b1:1b:5f:f4:5f:7b:c6:35:31:
75:51:62:22:89:c6:86:ad:20:f5:6c:91:c0:06:85:b6:c9:65:
48:4f:08:95:ac:6a:99:55:0a:5b:84:2e:66:53:c1:15:96:14:
f0:de:61:5b:64:cb:96:0d:ae:53:1b:6d:de:3a:8c:7b:73:12:
7e:6f:cf:a0:97:0d:61:09:be:07:b4:b7:06:dd:d3:5a:36:8e:
ef:a3:a1:7b:d5:03:56:eb:0d:40:ae:47:27:75:c0:c2:13:89:
5a:cf:77:c0:af:8a:1c:f1:4f:1a:5f:63:b8:ee:32:cc:be:d5:
5f:8e:10:d7:86:fa:b2:74:4d:ef:18:0d:3d:43:ab:2c:74:84:
5a:f0:5c:4e:c6:49:25:f6:27:dc:4f:7a:10:9f:27:52:74:ad:
a2:f8:0f:45:16:5d:d3:2d:90:30:96:87:58:95:a1:cc:c9:34:
e7:38:cc:74:c4:bd:9c:d9:dc:21:25:aa:b2:a3:98:17:3a:2c:
01:d5:02:06
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org