Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73190f62-9cc4-41b1-9886-43452b1bdd75.roa
File: 73190f62-9cc4-41b1-9886-43452b1bdd75.roa (raw, json)
Hash identifier: ilvgOyC+VQDJeMVYz6VK8H7MA93XFlnd3Kk94gtkaUY=
Subject key identifier: 7D:4A:E5:2B:BF:A6:AC:F3:9A:4F:63:60:16:39:EF:82:69:29:09:DE
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 784A089E7064EEF4BAE633A799F4BAB68D4A45F8
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73190f62-9cc4-41b1-9886-43452b1bdd75.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:eb00::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:40:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:4a:08:9e:70:64:ee:f4:ba:e6:33:a7:99:f4:ba:b6:8d:4a:45:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: serialNumber=36b9a42a7d793252bdbe0c25a301e62f22f89ae27b32c5943d1ff4f9c85e6a24, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3a:b1:42:b7:1b:26:63:03:18:3e:07:17:b4:
06:d3:43:eb:a2:15:2d:2a:9b:2a:b3:51:ec:85:47:
07:e5:03:14:93:ee:d6:b8:51:52:0d:a8:23:1c:f8:
fc:8f:f9:0b:b9:65:03:e9:5f:0a:96:38:ff:b0:ff:
fc:e4:a3:c5:e7:2c:f6:d6:af:71:85:aa:84:c1:a2:
6d:a9:ad:ca:53:d4:f1:b0:9c:0b:a2:87:0f:17:f1:
3e:1b:fb:6e:c2:80:a2:b5:be:fe:79:20:f9:a1:24:
01:68:ff:4f:c1:77:b5:2d:43:d8:15:14:a0:4a:66:
3f:3a:9b:ec:ef:df:e6:10:cc:fb:08:38:48:e3:47:
5d:78:e0:eb:72:bf:9f:4d:74:63:d9:8c:3f:7a:68:
8a:3a:1b:ac:01:a3:f1:6a:3f:b3:45:6c:aa:11:73:
1b:aa:64:d0:75:58:e9:77:28:24:3c:63:7a:4b:f1:
8a:72:7a:f2:13:d9:f5:b2:8f:b7:61:39:ac:f0:22:
b0:d0:ea:2f:7b:7a:65:f4:6a:c1:f9:84:43:76:77:
4e:2d:21:0c:ef:cd:85:51:46:33:f0:29:51:22:ff:
f5:50:d1:9d:31:de:41:2f:9f:04:90:87:28:59:8b:
0f:46:78:d9:0a:6e:e4:d1:ef:e2:8e:d9:4f:e7:52:
de:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4A:E5:2B:BF:A6:AC:F3:9A:4F:63:60:16:39:EF:82:69:29:09:DE
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73190f62-9cc4-41b1-9886-43452b1bdd75.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:eb00::/40
Signature Algorithm: sha256WithRSAEncryption
3a:94:91:b5:c9:31:e7:62:6e:23:86:d2:9f:95:15:e4:4d:07:
d5:5d:f4:b7:10:bf:b3:91:92:cf:54:d0:fc:f3:82:0e:ff:f7:
8d:d8:08:79:95:9e:4d:ef:3a:a7:ec:00:a7:45:d6:0d:39:ff:
1d:ea:31:2e:d5:f5:96:c9:f2:26:db:c4:14:d5:2d:f9:d4:23:
79:4b:94:fb:1f:5b:c0:ed:5c:d8:ef:c1:8f:8e:ed:99:ff:7a:
e0:c7:b2:a9:73:98:03:25:e6:39:21:ce:03:18:95:1e:5b:d5:
a9:e3:e1:bd:3d:fb:01:0a:77:dc:55:ca:68:23:c2:01:ea:e8:
69:bf:48:8b:af:ab:d3:40:ed:94:99:03:0f:3a:a6:5e:fd:2b:
08:72:7c:12:33:e2:d4:a2:13:03:76:71:60:bd:7e:e9:04:53:
4f:8b:b7:66:b5:36:ab:40:56:00:d5:11:da:82:e1:3e:4e:f4:
20:a1:bd:92:22:4c:c7:8a:a3:2f:3e:89:2a:25:5e:a5:5e:df:
e7:83:91:8b:4c:75:ee:dd:7f:2d:75:98:06:9b:71:ea:bc:da:
45:ce:a0:81:e4:79:2a:77:db:af:1b:e7:67:23:2a:7c:97:94:
38:e7:4f:f4:42:7e:42:f2:f0:66:7b:3c:39:3d:3e:78:bd:4e:
bb:3a:2d:35
-----BEGIN CERTIFICATE-----
MIIF+jCCBOKgAwIBAgIUeEoInnBk7vS65jOnmfS6to1KRfgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi
MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwMTAzMDAwMDAwWhcNMjUwMjA3MjM1OTU5
WjB6MUkwRwYDVQQFE0AzNmI5YTQyYTdkNzkzMjUyYmRiZTBjMjVhMzAxZTYyZjIy
Zjg5YWUyN2IzMmM1OTQzZDFmZjRmOWM4NWU2YTI0MS0wKwYDVQQDEyRmYmIyNzU3
Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDSOrFCtxsmYwMYPgcXtAbTQ+uiFS0qmyqzUeyFRwflAxST
7ta4UVINqCMc+PyP+Qu5ZQPpXwqWOP+w//zko8XnLPbWr3GFqoTBom2prcpT1PGw
nAuihw8X8T4b+27CgKK1vv55IPmhJAFo/0/Bd7UtQ9gVFKBKZj86m+zv3+YQzPsI
OEjjR1144Otyv59NdGPZjD96aIo6G6wBo/FqP7NFbKoRcxuqZNB1WOl3KCQ8Y3pL
8YpyevIT2fWyj7dhOazwIrDQ6i97emX0asH5hEN2d04tIQzvzYVRRjPwKVEi//VQ
0Z0x3kEvnwSQhyhZiw9GeNkKbuTR7+KO2U/nUt6bAgMBAAGjggKzMIICrzAdBgNV
HQ4EFgQUfUrlK7+mrPOaT2NgFjnvgmkpCd4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ
fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h
Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4
YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk
NjJlNDhmMDU2LzczMTkwZjYyLTljYzQtNDFiMS05ODg2LTQzNDUyYjFiZGQ3NS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3
LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC
MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAOpSRtckx52JuI4bSn5UV5E0H
1V30txC/s5GSz1TQ/POCDv/3jdgIeZWeTe86p+wAp0XWDTn/HeoxLtX1lsnyJtvE
FNUt+dQjeUuU+x9bwO1c2O/Bj47tmf964MeyqXOYAyXmOSHOAxiVHlvVqePhvT37
AQp33FXKaCPCAeroab9Ii6+r00DtlJkDDzqmXv0rCHJ8EjPi1KITA3ZxYL1+6QRT
T4u3ZrU2q0BWANUR2oLhPk70IKG9kiJMx4qjLz6JKiVepV7f54ORi0x17t1/LXWY
Bptx6rzaRc6ggeR5KnfbrxvnZyMqfJeUOOdP9EJ+QvLwZns8OT0+eL1OuzotNQ==
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org