Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa
File: 69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa (raw, json)
Hash identifier: KSKTWplQ1ptjLLz6stLPJRZqOQxStlGY0a2WfRVG1Mw=
Subject key identifier: BD:B8:18:D1:7D:AD:C0:D4:BB:73:CA:89:E3:5F:8A:FB:D2:EF:6A:DC
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 54D30F0A6D08BC6A8EDE4371B807433A3D3A8133
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:ed00::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:40:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:d3:0f:0a:6d:08:bc:6a:8e:de:43:71:b8:07:43:3a:3d:3a:81:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: serialNumber=89cc2ce8d0c18444d8ac0c7bf6328df32a20cf013839e55ef929192496914ee5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:26:fe:8a:e6:32:1b:29:fd:92:96:5a:a7:a3:
a3:35:bd:f8:f7:5a:6e:3f:27:74:af:f9:05:02:ca:
4d:05:8d:62:b2:ca:08:46:2f:ea:66:5a:82:19:5d:
39:70:be:96:f4:a8:cd:a5:b4:1e:02:d4:aa:fb:d7:
26:a0:96:d7:e3:3a:fc:fb:49:2b:df:c2:54:2f:78:
56:68:a3:63:43:8d:ac:d3:ad:3b:5e:f4:b2:e4:b1:
72:a1:dc:5b:fd:01:fb:57:b3:36:ae:42:67:89:4d:
12:93:c3:96:f5:07:9b:11:24:4d:a7:65:a5:36:c8:
b3:88:3c:77:9b:c2:c5:17:1a:df:ae:7e:c0:71:a2:
79:d9:e0:25:4a:09:e7:7a:9c:b3:23:ce:9a:d1:54:
91:dc:cf:55:33:81:9a:76:d1:6d:d7:88:bc:67:f6:
e4:c8:cc:cb:18:82:61:87:ba:ee:08:52:82:d2:68:
ea:8e:13:a3:6b:3e:1a:0d:f5:4b:78:19:4e:34:92:
aa:81:44:db:9f:72:32:ea:4d:84:10:69:b5:a3:66:
8a:ba:d9:05:b5:6e:4f:94:aa:67:40:d8:92:be:5c:
7f:26:58:5f:3e:86:f7:6e:10:92:ec:60:79:00:43:
a4:9c:52:c8:ef:9f:6a:06:da:ae:89:94:ea:24:c0:
b5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B8:18:D1:7D:AD:C0:D4:BB:73:CA:89:E3:5F:8A:FB:D2:EF:6A:DC
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/69850bb0-f26d-4624-a949-fdc9b29a2ac4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:ed00::/40
Signature Algorithm: sha256WithRSAEncryption
72:ab:12:a8:44:3e:14:b0:78:48:0f:7b:25:ef:a7:9c:74:da:
02:a8:be:e1:69:5b:0f:b6:11:0e:a4:97:76:3c:4f:8d:cc:a5:
2b:c7:7a:b4:ac:73:07:a1:62:f8:cd:c0:5c:b7:0f:89:1b:5e:
39:fa:d3:75:84:b3:99:84:3b:49:24:3d:50:14:66:49:61:7e:
22:dc:bc:fc:b6:21:16:6a:ba:42:db:0e:82:64:7d:8f:68:bf:
51:cd:26:0d:2f:5e:17:b1:df:61:d7:4d:82:c7:30:ad:3f:e2:
b9:3e:88:82:50:6f:33:69:e6:0f:6b:2a:1e:9d:f7:26:e5:31:
f4:f9:a2:71:1b:37:b6:e2:fe:d1:a8:6f:b9:d0:69:e8:16:55:
2b:72:5b:67:c1:cf:4c:d9:78:79:8e:8d:5d:a4:99:58:d3:70:
82:85:92:cd:4a:86:f0:03:4a:e3:62:26:cb:37:b2:c9:90:74:
65:1e:e8:30:1e:19:f2:a9:60:25:3f:d5:a8:90:0b:08:8b:d9:
61:53:d8:89:c3:27:d8:94:5d:52:13:35:1a:c6:f7:6c:cd:eb:
b4:26:f0:cf:7c:4f:4f:4c:75:95:eb:13:d2:07:b4:27:c1:14:
56:2c:5f:a0:37:01:3c:5d:bd:fa:2b:d8:03:e1:3a:b0:c5:d5:
8e:57:84:00
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUVNMPCm0IvGqO3kNxuAdDOj06gTMwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi
MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTAzMDAwMDAwWhcNMjUwMjA3MjM1OTU5
WjB6MUkwRwYDVQQFE0A4OWNjMmNlOGQwYzE4NDQ0ZDhhYzBjN2JmNjMyOGRmMzJh
MjBjZjAxMzgzOWU1NWVmOTI5MTkyNDk2OTE0ZWU1MS0wKwYDVQQDEyRmYmIyNzU3
Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC4Jv6K5jIbKf2Sllqno6M1vfj3Wm4/J3Sv+QUCyk0FjWKy
yghGL+pmWoIZXTlwvpb0qM2ltB4C1Kr71yagltfjOvz7SSvfwlQveFZoo2NDjazT
rTte9LLksXKh3Fv9AftXszauQmeJTRKTw5b1B5sRJE2nZaU2yLOIPHebwsUXGt+u
fsBxonnZ4CVKCed6nLMjzprRVJHcz1UzgZp20W3XiLxn9uTIzMsYgmGHuu4IUoLS
aOqOE6NrPhoN9Ut4GU40kqqBRNufcjLqTYQQabWjZoq62QW1bk+UqmdA2JK+XH8m
WF8+hvduEJLsYHkAQ6ScUsjvn2oG2q6JlOokwLWHAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUvbgY0X2twNS7c8qJ41+K+9LvatwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ
fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h
Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4
YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk
NjJlNDhmMDU2LzY5ODUwYmIwLWYyNmQtNDYyNC1hOTQ5LWZkYzliMjlhMmFjNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3
LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAPD77TANBgkqhkiG9w0BAQsFAAOCAQEAcqsSqEQ+FLB4SA97Je+nnHTa
Aqi+4WlbD7YRDqSXdjxPjcylK8d6tKxzB6Fi+M3AXLcPiRteOfrTdYSzmYQ7SSQ9
UBRmSWF+Ity8/LYhFmq6QtsOgmR9j2i/Uc0mDS9eF7HfYddNgscwrT/iuT6IglBv
M2nmD2sqHp33JuUx9PmicRs3tuL+0ahvudBp6BZVK3JbZ8HPTNl4eY6NXaSZWNNw
goWSzUqG8ANK42ImyzeyyZB0ZR7oMB4Z8qlgJT/VqJALCIvZYVPYicMn2JRdUhM1
Gsb3bM3rtCbwz3xPT0x1lesT0ge0J8EUVixfoDcBPF29+ivYA+E6sMXVjleEAA==
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org