Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/82b8cb0f-1f1e-4873-8e8e-203cbf0f2bc6.roa
File: 82b8cb0f-1f1e-4873-8e8e-203cbf0f2bc6.roa (raw, json)
Hash identifier: RMNdoQjgGIrObBoEh3st5dlUfdS9Uy3r/T20eGhbCWQ=
Subject key identifier: E3:AF:95:B8:41:B5:C4:47:0A:5E:86:99:50:A1:C2:3A:4F:AD:AD:DE
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 09765CACB06A339E2665F49760F3853394BC0EBD
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/82b8cb0f-1f1e-4873-8e8e-203cbf0f2bc6.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:f0f3:ce00::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Jan 2025 18:37:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:76:5c:ac:b0:6a:33:9e:26:65:f4:97:60:f3:85:33:94:bc:0e:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: serialNumber=abd3507bc3dc376e44744a07a28fc108fdf20d74270c20bb40fd3db7b8305b42, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0e:be:f0:a3:d1:e0:c2:ed:22:e9:b1:e9:04:
29:71:71:05:af:7e:cc:ed:5d:c5:af:5e:b7:85:b7:
6e:80:70:ea:99:5d:1c:39:e5:f7:1f:a4:6a:63:4f:
2e:36:46:d9:1a:6f:e5:ca:36:f6:4c:63:b7:23:6a:
08:b9:f1:c8:b4:c2:49:2b:a2:b5:57:b1:2f:18:ea:
2f:2c:7d:27:4e:72:99:f3:49:97:d6:31:8a:20:bc:
03:b1:14:4a:49:bf:b0:d5:77:f1:7e:c5:b9:f3:64:
06:5a:22:14:c1:48:38:4e:2f:33:a3:e3:78:5e:f4:
46:ff:50:dc:81:22:fe:1f:86:0e:8b:f6:e8:86:85:
de:89:dd:86:3e:89:a0:b8:9c:99:6c:71:6f:23:b6:
67:12:1d:fb:3c:e3:3d:fb:09:5f:30:e4:d8:fe:d2:
d5:87:09:55:f4:1f:45:41:e6:b6:e6:fd:88:40:40:
93:10:12:7e:36:e3:ca:b8:a1:53:7d:2e:7e:f3:b6:
fb:df:f0:03:b0:3e:bb:0a:fb:80:cf:d1:77:f5:a5:
aa:ce:49:e9:a6:62:30:35:7e:86:3d:35:2d:23:52:
51:3d:8a:4a:0c:bc:82:20:bf:1d:7a:67:a4:5e:dc:
01:e6:aa:7e:f3:9f:af:fa:12:99:8a:7a:5d:fe:93:
81:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AF:95:B8:41:B5:C4:47:0A:5E:86:99:50:A1:C2:3A:4F:AD:AD:DE
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/82b8cb0f-1f1e-4873-8e8e-203cbf0f2bc6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f3:ce00::/48
Signature Algorithm: sha256WithRSAEncryption
19:db:8b:21:1f:d8:a1:a3:4a:bc:d4:e1:51:a3:60:5f:b3:4d:
42:d3:6b:a9:52:5b:fd:d9:fd:7a:d8:01:53:2d:e9:3f:85:43:
d2:9a:c6:19:03:35:7f:5d:e9:91:20:2b:fb:a7:0e:af:f1:8c:
45:98:60:5d:d0:b2:d2:51:06:f6:3e:bc:5b:ae:e0:a7:65:64:
55:75:bc:69:e9:a9:f0:ae:65:3f:84:99:89:e4:35:38:61:93:
39:7e:0d:57:c4:82:e9:9d:d5:6e:55:72:22:90:27:ec:97:9b:
2f:ac:14:5d:09:77:73:84:93:94:70:36:9f:2b:2e:2a:d9:1f:
f6:90:9f:89:f0:83:b8:e6:98:5a:0d:50:70:24:43:77:8f:02:
10:6b:d3:09:d9:71:e3:7d:b5:76:8a:2d:38:81:d1:7e:2a:ff:
7b:c3:c5:5c:ec:d5:d2:04:35:5d:57:2f:1e:56:86:5d:ca:91:
7d:59:df:6a:52:41:95:49:db:61:f0:50:10:04:a0:00:2e:d9:
72:05:de:44:d0:59:b0:1d:23:c1:59:6b:93:cc:d6:8a:d3:52:
d8:a3:85:e8:2c:6a:cf:1e:c8:b3:97:0e:61:9a:51:e1:ae:72:
69:5f:f4:90:42:11:01:1a:5b:75:80:d7:a0:af:7f:0e:e4:b2:
ce:d5:6e:25
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Jan 17 21:35:14 2025 by rpki-client on console-fra.rpki-client.org