Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f881137a-18dd-4923-8bf4-193a94267ea1.roa
File: f881137a-18dd-4923-8bf4-193a94267ea1.roa (raw, json)
Hash identifier: Si/TXEWzt0X2ZGr2KNkmzbSWq+itvZqQskWWgJgutSY=
Subject key identifier: 6A:E1:B1:28:06:A7:37:A8:EC:A2:87:13:33:DB:0A:D1:D8:3C:3A:3D
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 5FD143539A5B71A61CC4B1F96A95C5194B3954F1
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f881137a-18dd-4923-8bf4-193a94267ea1.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:552e::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:d1:43:53:9a:5b:71:a6:1c:c4:b1:f9:6a:95:c5:19:4b:39:54:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=ff0a408c33822c113172dd61ac1ddd58e80ec4747122b9cb5c1989566aaaeabf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e4:65:f7:23:f1:31:19:6d:de:28:30:3c:b0:
e1:94:25:5c:da:88:68:8d:53:1d:cc:69:5c:29:c1:
43:90:e7:50:bd:43:b7:3c:0d:e8:6a:ad:8d:b3:97:
48:ae:ab:6c:a0:cb:fd:30:9c:9f:d0:a1:70:e8:49:
ce:b9:33:9e:80:4c:c0:42:8b:02:31:da:f4:8c:89:
6f:e8:5e:7a:60:d8:2a:79:8e:21:69:38:66:45:d7:
6f:32:ea:fd:91:e1:0e:83:c9:4e:0b:47:a7:7e:63:
b9:0d:c3:b2:bb:4f:23:f3:0a:84:67:7a:62:81:00:
63:82:21:2c:a5:f4:1d:1b:a2:45:94:a5:83:7d:2a:
cc:55:ef:95:b0:f5:92:f1:95:c8:34:45:21:f4:7c:
46:9a:fe:01:6c:30:41:cd:b3:b7:bb:e2:a4:0f:d4:
0d:c6:86:f5:4d:d2:56:b2:8c:4a:a2:1b:0c:ad:e6:
5a:1f:b8:49:d8:66:59:a3:26:b9:38:52:69:67:2e:
71:c2:0e:4f:98:49:6d:79:5d:2d:2c:08:9c:a0:35:
f7:fb:f3:36:ad:f7:37:f9:fb:26:3f:47:ae:e7:1d:
b0:39:ff:94:1e:a5:90:c2:1c:ff:e6:a5:1b:97:fc:
21:41:4d:94:a3:11:33:25:0e:e5:fd:f1:ea:83:79:
12:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E1:B1:28:06:A7:37:A8:EC:A2:87:13:33:DB:0A:D1:D8:3C:3A:3D
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f881137a-18dd-4923-8bf4-193a94267ea1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:552e::/48
Signature Algorithm: sha256WithRSAEncryption
3e:27:3e:20:c4:f9:a1:e4:52:75:ae:60:bd:58:a9:7b:56:bf:
ad:df:5d:92:66:7e:aa:86:f4:b7:e5:2e:0b:13:f9:2f:1c:bf:
02:f4:ad:bd:81:44:01:b9:bd:fc:f0:2c:0a:2e:99:c6:7a:f7:
1a:77:55:69:f2:1f:f7:72:21:de:6c:a0:62:3b:e8:ab:41:2c:
52:f5:7c:27:25:08:08:26:97:50:eb:f1:93:6e:28:56:a4:5a:
60:02:32:09:29:da:e5:45:47:d0:40:96:76:2f:57:ca:56:97:
dc:58:94:04:73:c1:44:25:0d:91:35:94:50:7c:8c:ce:a5:93:
a2:2d:58:5b:d0:41:17:d4:23:04:aa:3f:99:52:71:05:3e:e6:
9d:7e:da:21:b1:ab:cf:59:9c:26:4a:a9:e6:41:b6:30:09:75:
80:a0:49:fd:8b:65:f6:9d:42:9d:d4:91:0a:71:61:92:52:ec:
81:1f:5c:f9:08:45:1d:4f:24:87:ae:50:16:c1:81:67:b4:d8:
1c:1f:d6:36:a6:1f:df:31:5b:96:09:13:f9:0f:00:ec:ca:9b:
1e:26:e6:3e:54:40:2d:6d:35:7c:f5:85:83:98:3b:74:13:07:
02:5f:e2:21:de:82:84:73:2e:5b:97:57:eb:1b:12:fb:c1:17:
19:1a:7d:c8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jan 7 05:36:24 2025 by rpki-client on console-fra.rpki-client.org