Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa
File: cb318461-987d-4c0e-bf7e-c0523f561e38.roa (raw, json)
Hash identifier: //hPpzsH6xGppykdpXzqt02ICyU0cuccX4AptFnj3nY=
Subject key identifier: B2:EF:0C:C4:30:A0:56:BB:93:A8:6B:11:B7:69:C2:83:B7:F8:48:69
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 046990C28B9555A20849D5207CCCDD297458BC9A
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:83::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:22:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:69:90:c2:8b:95:55:a2:08:49:d5:20:7c:cc:dd:29:74:58:bc:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=2e862341727e8b5d381daaab4ec0d70ec3c3d021ae13fa4c6d9f23e3afbf1bc5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bf:58:1f:b2:ad:d2:83:b4:9f:de:1b:31:e6:
bb:06:4d:bd:47:3a:6a:e3:95:95:7e:89:90:de:25:
5a:50:8d:77:2c:44:d1:03:72:46:7a:17:e0:77:2c:
d3:1a:e0:24:17:90:ef:82:ff:44:0c:89:72:13:7c:
21:b9:3f:da:23:5d:aa:85:e2:57:e6:38:5a:3e:de:
52:33:c3:9e:9a:9c:87:88:4a:e6:5b:63:bd:c4:79:
b7:ec:03:0e:6c:5a:b7:d1:17:6b:70:b5:fd:f5:4c:
2e:79:8d:c6:b3:39:f4:a1:93:bb:08:9e:8f:18:b5:
88:03:43:a1:41:75:d1:f9:13:c7:e0:70:97:3d:68:
b0:eb:fc:53:25:e8:80:55:a6:0c:92:4b:13:21:70:
70:44:06:59:ee:86:7f:94:98:c5:8d:e8:f2:1a:76:
4e:c9:62:05:a7:78:d9:91:c0:69:f0:ed:34:ae:14:
01:d0:4e:00:dc:d4:2b:0e:d5:9e:0c:f9:bc:e5:5e:
99:08:46:28:ff:6b:97:d7:3e:86:41:08:63:00:f5:
38:97:9c:91:7a:4e:53:2c:5d:a9:1d:c4:c6:ad:9c:
1d:00:62:6e:e6:13:3a:4b:31:67:c2:75:bc:7e:00:
ef:b2:d5:6e:d3:61:39:8c:0e:44:45:97:0f:60:a9:
9b:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EF:0C:C4:30:A0:56:BB:93:A8:6B:11:B7:69:C2:83:B7:F8:48:69
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cb318461-987d-4c0e-bf7e-c0523f561e38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:83::/48
Signature Algorithm: sha256WithRSAEncryption
30:47:e0:f1:48:b6:4f:cb:99:59:6c:1a:5b:9c:24:1a:6b:b3:
53:ff:1f:1a:c5:e0:70:e3:af:78:1b:88:44:6b:ba:46:1c:4a:
a4:4a:47:02:a5:c3:77:95:53:36:59:2c:25:47:82:2d:f2:e2:
c4:98:fd:c9:a0:ea:6c:03:11:86:48:42:50:14:99:32:01:e0:
97:86:e0:c8:81:b6:31:f9:dc:0a:9c:ee:00:ba:1f:87:1e:78:
67:e3:f1:a6:4f:8d:e8:54:bc:c7:18:af:cc:31:a1:fe:bf:73:
15:0e:93:0b:87:9f:30:4a:6b:35:25:72:51:76:21:b6:97:d7:
40:e1:fb:eb:af:82:fd:35:36:5c:3e:8c:0d:00:93:60:1a:e0:
db:59:5a:40:6e:3b:3b:ab:ff:66:d3:a0:29:5b:c1:0b:a1:29:
9d:43:a9:16:cf:a1:da:73:d3:15:7d:e0:29:c7:6b:e2:7e:8e:
4f:ac:d2:c6:76:2f:05:e9:c1:5f:c8:81:b9:57:ce:e3:7a:3b:
d7:1d:86:58:ea:3d:19:3d:6c:5c:5e:cd:d9:f6:eb:99:15:0f:
0e:ce:ea:c8:eb:90:60:4c:b4:1a:16:bf:b4:31:d2:dd:42:82:
24:71:8c:9e:b4:ac:fc:32:e9:07:b6:b8:f8:36:ce:15:c2:ed:
66:f0:3e:cf
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUBGmQwouVVaIISdUgfMzdKXRYvJowDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi
MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMjEzMDAwMDAwWhcNMjUwMTE3MjM1OTU5
WjB6MUkwRwYDVQQFE0AyZTg2MjM0MTcyN2U4YjVkMzgxZGFhYWI0ZWMwZDcwZWMz
YzNkMDIxYWUxM2ZhNGM2ZDlmMjNlM2FmYmYxYmM1MS0wKwYDVQQDEyRmYmIyNzU3
Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQC7v1gfsq3Sg7Sf3hsx5rsGTb1HOmrjlZV+iZDeJVpQjXcs
RNEDckZ6F+B3LNMa4CQXkO+C/0QMiXITfCG5P9ojXaqF4lfmOFo+3lIzw56anIeI
SuZbY73EebfsAw5sWrfRF2twtf31TC55jcazOfShk7sIno8YtYgDQ6FBddH5E8fg
cJc9aLDr/FMl6IBVpgySSxMhcHBEBlnuhn+UmMWN6PIadk7JYgWneNmRwGnw7TSu
FAHQTgDc1CsO1Z4M+bzlXpkIRij/a5fXPoZBCGMA9TiXnJF6TlMsXakdxMatnB0A
Ym7mEzpLMWfCdbx+AO+y1W7TYTmMDkRFlw9gqZs7AgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUsu8MxDCgVruTqGsRt2nCg7f4SGkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ
fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h
Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4
YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk
NjJlNDhmMDU2L2NiMzE4NDYxLTk4N2QtNGMwZS1iZjdlLWMwNTIzZjU2MWUzOC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3
LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmAPDwAIMwDQYJKoZIhvcNAQELBQADggEBADBH4PFItk/LmVlsGlucJBpr
s1P/HxrF4HDjr3gbiERrukYcSqRKRwKlw3eVUzZZLCVHgi3y4sSY/cmg6mwDEYZI
QlAUmTIB4JeG4MiBtjH53Aqc7gC6H4ceeGfj8aZPjehUvMcYr8wxof6/cxUOkwuH
nzBKazUlclF2IbaX10Dh++uvgv01Nlw+jA0Ak2Aa4NtZWkBuOzur/2bToClbwQuh
KZ1DqRbPodpz0xV94CnHa+J+jk+s0sZ2LwXpwV/IgblXzuN6O9cdhljqPRk9bFxe
zdn265kVDw7O6sjrkGBMtBoWv7Qx0t1CgiRxjJ60rPwy6Qe2uPg2zhXC7WbwPs8=
-----END CERTIFICATE-----
Generated at Tue Jan 7 05:36:24 2025 by rpki-client on console-fra.rpki-client.org