Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa
File: 958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa (raw, json)
Hash identifier: YoG18w4X3g+qVodegrsRndtYBoyBXvNGxkK9McGA9KI=
Subject key identifier: DC:F7:23:CF:89:5A:B2:DB:9C:96:B0:51:69:34:54:B6:85:D2:D1:C7
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 13A60A316C5541693A2F092302F87196C7024C94
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:5527::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:a6:0a:31:6c:55:41:69:3a:2f:09:23:02:f8:71:96:c7:02:4c:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=df8134bb83cf0e246a21794c2146714bd40a35f027f7323c195a0692c32d0730, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bf:eb:40:3b:a2:2e:11:f9:98:19:a4:82:74:
b3:7e:1e:bb:5d:3c:8a:51:ec:e4:f6:44:78:a2:bc:
0c:5b:06:b8:53:51:34:9a:b1:de:d8:a5:ef:76:21:
4f:a6:e0:80:7d:04:d1:f9:7c:4b:72:60:10:94:d9:
c9:25:a9:50:de:53:11:49:74:23:5c:5c:cc:fa:01:
e3:9a:15:a3:b7:ca:74:b8:aa:d1:3e:be:82:cd:c9:
b2:fa:20:4b:60:cd:ca:e3:02:4e:bd:c7:a6:a2:19:
26:01:b4:dd:a0:24:b4:fd:70:79:78:27:96:e2:63:
3a:09:a0:21:1f:6c:ae:d2:1f:23:2b:91:d4:35:ee:
59:97:b5:f2:13:84:e8:52:11:3f:62:9c:f8:6c:72:
90:5b:24:92:bb:a6:98:52:dc:21:77:21:0b:8a:61:
f5:10:a7:fb:5d:d6:df:4f:39:36:67:41:ea:9e:f5:
3e:7a:42:87:e6:3a:91:7b:df:f0:94:0f:f7:38:33:
23:5b:16:9d:76:67:de:95:cd:9a:fa:99:95:92:04:
ee:0f:6d:1e:6b:ab:ac:03:48:9c:28:bc:f1:4e:77:
cd:a4:02:ab:df:7b:8d:65:85:49:f8:46:5c:88:a7:
8d:52:95:2b:f6:4c:8f:0a:36:95:f8:c4:f2:05:7f:
34:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F7:23:CF:89:5A:B2:DB:9C:96:B0:51:69:34:54:B6:85:D2:D1:C7
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/958ff9b2-2a71-408a-a63d-bf8515b23c8e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:5527::/48
Signature Algorithm: sha256WithRSAEncryption
2e:5a:4c:df:63:1e:dc:8e:06:d6:93:07:63:d3:65:6b:30:99:
7f:62:60:97:32:25:b9:24:24:f2:c0:23:0c:83:63:38:69:35:
22:2a:b0:4f:d0:0a:69:f1:39:2d:19:9e:54:75:30:c8:a2:da:
89:44:fc:a1:62:d3:8d:d3:9b:2d:08:dd:45:6d:dd:f0:4a:07:
2d:af:f2:a5:01:f5:0d:e1:f2:8d:8c:18:39:17:b7:dd:42:5d:
a1:ee:8b:c1:23:25:8c:88:e6:11:d1:a4:16:0b:0f:31:0c:67:
4b:c1:e8:28:99:4d:5b:cf:a8:ab:3e:8d:4a:75:9f:85:0b:57:
a0:c9:43:cb:5f:69:20:63:2e:6c:fd:0d:61:ae:ec:68:76:c1:
d7:2d:16:23:e0:bf:eb:67:89:ad:e2:6d:5b:53:49:ab:fe:be:
a4:8e:dc:d5:b5:d7:55:11:0e:8e:98:35:c7:49:ea:c2:3e:3f:
20:a4:97:a2:20:4f:9e:e2:8f:70:fe:5f:25:70:f7:a7:69:65:
05:f4:89:2d:6c:c7:78:41:47:52:d5:8b:03:18:39:2c:a7:8b:
e5:6c:c9:43:e1:ff:fc:84:a9:73:49:e3:4a:4a:cd:dd:ac:0c:
c0:fe:c8:ea:90:8d:a9:5b:cf:ec:f4:11:f8:5d:43:a4:e6:82:
ff:de:58:b8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org