Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e7a769f6-8dd5-4179-a653-99ec82616621.roa
File: e7a769f6-8dd5-4179-a653-99ec82616621.roa (raw, json)
Hash identifier: jNe+1qeQCFav7biFmYoWI2bSYoBnjib8iVTizayazpo=
Subject key identifier: 45:AE:15:CF:BA:D0:0E:27:E3:07:C0:AD:99:8C:01:B7:5B:DE:21:55
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 53074D53A447E849B98F0EDF9E35D25F4D0CC756
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e7a769f6-8dd5-4179-a653-99ec82616621.roa
Signing time: Fri 03 Jan 2025 00:00:00 +0000
ROA not before: Fri 03 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0fb:e800::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:40:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:07:4d:53:a4:47:e8:49:b9:8f:0e:df:9e:35:d2:5f:4d:0c:c7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 3 00:00:00 2025 GMT
Not After : Feb 7 23:59:59 2025 GMT
Subject: serialNumber=43402c7b411c49133758b7de1da00486bea3cef46d077a83bbd2e3c3d5c7d87e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:61:f6:c1:6d:06:82:6c:1c:2d:a2:8e:9b:e9:
9e:6b:c7:d2:a5:0e:c2:5d:e2:a9:9f:04:11:86:6b:
2f:39:e5:42:1d:bf:b6:8f:48:d3:73:d8:10:7f:18:
08:ee:bf:b5:88:43:7e:e9:88:3e:eb:08:37:37:3f:
62:fd:da:d3:5f:a0:de:b2:5d:dd:07:71:5a:ac:60:
cd:bb:ce:54:85:24:6c:47:cf:ae:3d:ff:fc:f3:69:
1c:93:20:04:b7:0b:5d:ef:d4:0e:4c:4e:ca:f1:77:
63:ec:58:c0:07:22:98:db:b0:8d:03:d4:00:23:6c:
6a:07:9d:9c:d5:07:37:a2:11:01:17:e9:ba:ae:15:
df:71:86:83:7c:55:2e:6b:6d:6b:58:e1:7a:0c:a9:
10:06:1f:cd:12:30:84:e5:b5:24:8f:49:50:07:45:
5c:0e:05:c8:39:3b:55:43:3d:0a:9e:07:3e:cf:44:
52:d1:ae:09:08:38:88:6f:14:a8:e1:a3:9b:f0:00:
14:11:b5:9b:47:34:30:4b:f0:8e:27:92:54:50:b8:
d1:2a:4a:00:24:2a:5c:26:84:34:81:23:e0:4a:13:
89:5f:a3:a5:4b:57:30:4c:80:22:cb:4e:f5:89:20:
3e:95:81:8c:47:ae:7b:4b:69:1e:cc:78:a2:e7:54:
85:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:AE:15:CF:BA:D0:0E:27:E3:07:C0:AD:99:8C:01:B7:5B:DE:21:55
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e7a769f6-8dd5-4179-a653-99ec82616621.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0fb:e800::/40
Signature Algorithm: sha256WithRSAEncryption
a3:18:a5:6b:94:40:e6:f0:9d:ba:c4:e1:ee:b8:a5:32:57:e3:
c5:d7:11:58:fe:bc:be:37:65:ff:c8:a2:1b:84:83:41:c4:c6:
1e:d5:38:a2:58:a1:56:6d:e0:b9:94:f3:d7:67:b9:37:16:fa:
d8:81:ce:a2:50:64:00:12:1c:3a:0f:f5:c5:b1:9a:5f:9e:35:
b8:42:13:ce:3b:8e:ec:57:42:b6:95:c3:1c:2f:5a:43:f5:e9:
04:65:3e:d8:22:aa:50:c3:91:67:86:3d:4f:25:17:40:96:e7:
10:6e:66:98:18:7e:f1:87:00:4e:b8:4f:29:87:fc:f4:30:94:
03:53:4e:fa:2d:68:f9:2b:d9:78:c1:f7:62:c3:b3:62:1a:39:
a0:50:c7:49:29:f2:88:b8:10:52:e2:1a:89:65:40:8f:58:0e:
f7:83:75:2b:fd:63:c0:45:c8:45:de:0f:f9:ed:ef:9b:f7:7b:
89:93:d1:8d:66:f2:2b:be:c2:f1:e1:11:3a:ec:d2:cd:cd:f4:
57:f1:11:1a:db:14:c6:fe:65:28:d3:02:2c:ba:69:63:f1:49:
22:c8:25:8d:66:7d:b9:b0:41:a1:22:89:6e:a9:d9:ce:60:39:
e3:b9:8a:23:80:c7:bb:36:ce:bd:95:14:33:d5:26:46:12:41:
e7:2f:f5:b2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org