Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa
File: a057d928-cbb8-42a7-8833-36c45fa2a922.roa (raw, json)
Hash identifier: 0vTfnqYoWhoxZ4GrtVpaGD9e1yVRuUD2aPAmJm9kWEU=
Subject key identifier: 3C:CA:A9:92:50:FB:95:C4:0E:13:2A:20:1F:FA:73:91:12:23:18:BA
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 2658D409023DF857E64344A410FD13979531D425
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:86::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:23:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:58:d4:09:02:3d:f8:57:e6:43:44:a4:10:fd:13:97:95:31:d4:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=759865da3069f3cda27606e01a8064745725a55aaf15ae4e8a6139b7ac9a7a10, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b3:43:73:bb:03:67:2e:b2:11:40:82:e8:d2:
7c:0e:4d:10:e4:27:bd:1e:0d:f4:1d:7e:8d:d7:cb:
d8:2c:81:2b:76:49:dd:3d:ff:86:fd:9a:4b:a3:2e:
8b:eb:89:d2:a3:7b:a0:f2:94:a1:25:49:ae:97:fa:
b4:25:1a:ff:fc:84:33:9b:a1:3e:2b:82:aa:42:4e:
08:43:2d:3f:0f:8b:aa:86:03:d6:bd:2f:04:03:e4:
75:25:d5:c6:ef:c4:61:d6:54:02:74:e1:85:dc:12:
bb:84:bc:94:c2:86:54:a9:f5:1c:a0:e2:9f:41:0b:
ed:af:6a:30:a6:b0:3f:5c:d6:b7:91:39:36:47:8a:
fc:5d:c8:c4:00:6d:78:05:00:45:73:d2:2b:15:6f:
4a:52:37:c3:e1:57:02:f8:01:94:d6:86:93:42:83:
f4:f0:60:20:c2:78:92:49:b9:01:c6:38:6c:02:3c:
d5:1a:c7:76:90:67:04:06:ee:da:7b:95:74:ac:26:
24:2d:ce:db:0f:b2:3f:ce:d2:36:70:b9:80:b8:0f:
4c:aa:01:82:2c:fd:44:72:59:2b:01:2c:ca:fb:a1:
44:f5:d1:5a:74:5b:ec:ca:c4:97:9e:8c:55:5b:7a:
45:07:db:45:cc:7e:57:66:27:e8:ec:4d:4a:9f:75:
92:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:CA:A9:92:50:FB:95:C4:0E:13:2A:20:1F:FA:73:91:12:23:18:BA
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a057d928-cbb8-42a7-8833-36c45fa2a922.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:86::/48
Signature Algorithm: sha256WithRSAEncryption
46:93:43:50:9d:36:97:16:2e:31:5c:b4:fc:4a:5f:37:38:6e:
48:c3:ff:6d:a3:62:2c:f4:35:d6:09:f6:e8:2f:2f:00:91:7e:
fb:e5:2b:0c:8f:fd:13:2b:06:a6:56:44:6a:d1:03:72:55:8a:
3a:91:14:77:11:b4:4a:b1:2d:ff:01:98:e8:f5:e6:c4:53:89:
04:43:7b:14:25:83:9c:c9:f7:a4:38:68:18:ba:a8:45:74:d1:
48:f4:7e:a2:61:36:29:03:1f:33:4d:91:39:57:5f:b7:01:fc:
f9:96:3a:24:57:87:b4:9f:4e:c3:70:3a:68:9e:0e:7d:31:ad:
c9:96:b0:8b:49:60:66:07:41:96:91:fc:ec:19:2f:4d:32:24:
4e:b2:24:a0:13:ca:ec:9a:3b:ef:98:57:79:d0:89:e5:55:f0:
53:f9:24:05:5e:9b:77:1e:9d:2e:99:f5:bb:34:94:c0:c9:65:
8a:9f:67:d6:2f:35:5a:ec:3f:2b:67:d9:13:f8:b5:95:cf:f3:
02:d8:d9:6e:6d:40:58:4a:44:ef:8f:05:98:3f:bd:35:f3:be:
63:fe:38:a8:8d:c6:83:eb:08:18:f6:c0:5d:61:2e:6b:a4:e4:
ed:67:fb:fa:7d:d1:aa:65:5a:f3:e7:bf:21:33:c2:b5:9c:ff:
c3:72:02:64
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org