Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6df7bef5-f878-4122-9545-de0f9e8e05d4.roa
File: 6df7bef5-f878-4122-9545-de0f9e8e05d4.roa (raw, json)
Hash identifier: X/OCljAP/+kSxaVWoWbct3RnLou0o5gMb938UOeXWSI=
Subject key identifier: 22:4E:49:4E:D4:17:11:79:AE:A8:A5:FF:D7:B0:25:F1:14:5B:8B:6D
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 05064FA0A3C08CBEBF13E9F29FADB2D63EA98E0E
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6df7bef5-f878-4122-9545-de0f9e8e05d4.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:f0fb:e600::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:40:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:06:4f:a0:a3:c0:8c:be:bf:13:e9:f2:9f:ad:b2:d6:3e:a9:8e:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: serialNumber=6e149297b03698e37fd12cb35b2c9d0ef65dca7675db63903b699a05c0b35b59, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a0:08:96:01:6d:6d:58:d6:d5:f3:a5:24:14:
2a:fa:2f:78:64:cf:e5:44:64:6c:dc:be:b3:b5:03:
de:12:24:e8:b1:ad:90:3d:1f:23:4e:f8:48:b4:b4:
73:24:83:dc:c5:6b:09:8f:f7:39:24:d5:cc:74:6d:
57:cb:36:4e:2b:c7:a5:e0:07:21:14:c8:1e:c9:6d:
8f:30:18:62:cf:af:7d:01:78:32:7e:dc:ae:09:c6:
01:0d:bb:d9:26:be:d0:2d:06:bc:c3:72:62:9b:5d:
30:81:ec:0d:0f:58:dc:38:cf:d4:12:b1:a3:16:94:
98:28:7d:a4:d4:c2:9f:d4:41:2b:b7:47:8d:d2:26:
a2:33:70:6a:cf:2b:0b:f2:be:e0:fa:e3:4b:66:f8:
26:b4:04:d1:7a:d1:aa:74:77:86:27:97:f4:db:5a:
21:df:98:c8:a1:8c:9f:5e:2e:6b:b1:50:99:2d:b1:
63:6a:0e:84:93:da:3e:cb:39:35:25:00:d3:d1:fc:
ed:f4:77:53:76:21:b1:98:f8:97:82:7f:8c:d1:4e:
b1:96:9e:ca:29:ae:ee:4a:db:3d:b4:46:84:56:94:
f9:80:be:9e:a1:2e:9d:5e:14:30:a5:d2:b8:2f:5f:
86:39:1d:5d:4f:bc:f7:c8:4a:74:f5:f9:90:f5:fd:
98:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:4E:49:4E:D4:17:11:79:AE:A8:A5:FF:D7:B0:25:F1:14:5B:8B:6D
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6df7bef5-f878-4122-9545-de0f9e8e05d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e600::/40
Signature Algorithm: sha256WithRSAEncryption
7d:d9:e2:07:6a:8f:3c:67:a1:63:9a:de:a4:f1:03:cb:d3:1d:
06:7e:53:c7:e2:8c:ab:41:39:2e:c3:59:14:53:07:b2:0c:ba:
be:c4:69:6c:86:90:fe:f6:dc:60:56:97:15:c5:64:de:00:da:
ff:b2:19:db:76:19:a3:bf:97:81:2a:5b:8e:f4:28:45:ac:2c:
6d:4f:3a:cf:ed:88:7a:9b:af:64:cf:09:98:a9:65:09:50:cb:
ba:12:74:84:a7:85:84:63:21:f5:52:7a:ad:9e:6f:1f:12:3c:
ba:fb:25:b9:64:91:a4:80:85:62:e7:5d:2f:8c:ac:4e:17:ec:
1a:0e:a8:de:f2:61:f0:dc:79:e5:92:f1:80:b0:5b:d9:10:d4:
b7:5e:83:21:a1:eb:86:8c:f1:8f:7b:af:76:cd:fa:5a:58:cf:
29:ba:30:f6:cf:0e:ab:05:3d:89:11:50:69:82:db:bb:a2:16:
89:71:3e:9e:ef:b3:b7:1a:58:4e:5b:ec:36:4c:0f:b6:23:3b:
0b:81:61:d7:f4:7b:48:b9:3c:86:d0:e3:ac:c5:83:45:f5:a1:
d7:d2:bb:7d:3a:86:35:61:7a:8b:eb:15:39:41:96:52:29:d0:
35:d2:5e:b2:74:04:54:67:dc:70:b4:30:1c:ab:46:92:51:2a:
77:f4:fd:c5
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org