Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6b7035cb-ebb3-4385-8acb-b5b7e59bc8c2.roa
File: 6b7035cb-ebb3-4385-8acb-b5b7e59bc8c2.roa (raw, json)
Hash identifier: Sjg3qrFrQGDdFImyYbvK7B4q4jnvrtyruBup/7GH7to=
Subject key identifier: 75:E9:3F:77:0A:35:C4:0F:4C:FB:E6:DC:F0:AE:F1:A8:91:49:D6:E9
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 1E270077DC57B736781FE0F3B678AA08E637B322
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6b7035cb-ebb3-4385-8acb-b5b7e59bc8c2.roa
Signing time: Fri 19 Apr 2024 00:00:00 +0000
ROA not before: Fri 19 Apr 2024 00:00:00 +0000
ROA not after: Fri 24 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2605:9cc0:f025::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 Apr 2024 15:41:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:27:00:77:dc:57:b7:36:78:1f:e0:f3:b6:78:aa:08:e6:37:b3:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Apr 19 00:00:00 2024 GMT
Not After : May 24 23:59:59 2024 GMT
Subject: serialNumber=e4d25233fac7fcb2cd8999b0dd56d8dfb47c9168745c6acc601f7f2f3beb7c77, CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:02:d5:8f:f9:6e:04:13:1f:ec:1d:47:06:40:
0c:cc:16:c5:98:d0:de:a9:78:9f:ed:1d:14:e1:a6:
ee:4a:75:5c:a0:49:48:dc:ce:1f:99:73:7d:6e:48:
42:c8:99:42:d2:f6:8f:4c:27:1d:ae:47:7d:bf:73:
a7:88:eb:26:b4:3f:10:9f:40:df:cb:13:0e:7c:e5:
86:f5:fd:a4:70:e6:a4:ad:86:1d:f0:f1:72:d5:61:
e6:be:9a:31:61:e4:95:bb:50:53:47:e4:53:94:b7:
5b:d2:79:96:5c:84:96:05:3a:91:a3:50:c3:f2:eb:
02:21:b3:1d:d3:21:04:8a:aa:5a:f7:07:49:ef:b8:
62:4f:50:38:5b:45:d8:78:b2:a4:1a:0d:b7:ad:32:
e5:4f:9a:49:ca:16:3c:bd:e5:e1:65:64:1b:aa:76:
d7:69:b1:d9:c4:3e:7d:84:09:f1:a2:e6:93:53:8b:
93:c6:23:71:b7:1c:01:e0:2d:c7:85:3c:d1:3c:d9:
41:b2:64:b6:ae:de:4f:8c:a3:fa:23:15:f9:7e:45:
23:8b:fd:80:c3:48:ea:5d:04:2d:ec:0f:60:3f:3a:
67:89:f8:2f:54:a2:97:6d:0b:64:7c:86:99:c3:05:
40:47:ca:40:46:d8:ba:4a:58:b2:4e:6b:dc:81:93:
de:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:E9:3F:77:0A:35:C4:0F:4C:FB:E6:DC:F0:AE:F1:A8:91:49:D6:E9
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/6b7035cb-ebb3-4385-8acb-b5b7e59bc8c2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:f025::/48
Signature Algorithm: sha256WithRSAEncryption
6e:a2:98:eb:87:43:8b:8a:de:72:ba:c9:c9:cf:b5:33:66:57:
4b:7d:37:6e:a0:31:30:07:5b:13:d3:4a:3e:73:b7:d2:73:d1:
36:1a:58:1b:61:ce:87:e5:f3:aa:9e:af:2b:c0:f1:15:5b:c4:
d7:7d:76:fd:6f:b6:46:a0:b7:1b:c1:9e:23:00:06:d1:32:df:
8f:54:58:a2:ce:ad:fb:29:90:4a:16:72:f6:cb:5f:55:b3:da:
32:3c:e5:26:1f:2a:2f:5c:01:01:ed:a2:53:81:ca:3f:12:c0:
4d:90:53:a0:f3:01:fb:31:b3:5d:1c:43:35:03:2d:22:5a:1f:
69:56:c3:c1:5d:cb:09:8f:d2:00:39:b8:eb:fb:51:59:3b:6a:
c3:a6:91:9d:5b:44:37:c4:0c:c3:f9:9b:a8:32:a5:0b:ca:d0:
f5:18:c4:ec:f8:2c:7f:73:27:52:d1:f3:d4:32:ea:2b:ec:42:
03:de:ea:a0:e1:f8:aa:be:a7:70:07:f6:87:45:b6:24:49:21:
c6:3c:8c:f4:e9:08:3e:a4:55:3d:a2:a7:85:38:3a:2a:25:ee:
81:72:83:6e:20:32:c3:ee:80:80:a5:9f:59:14:06:d1:a1:66:
a7:8e:25:3d:eb:02:5e:d4:6b:84:57:03:39:1b:81:72:5e:c4:
b7:62:1c:18
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUHicAd9xXtzZ4H+DztniqCOY3syIwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw
MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjQwNDE5MDAwMDAwWhcNMjQwNTI0MjM1OTU5
WjB6MUkwRwYDVQQFE0BlNGQyNTIzM2ZhYzdmY2IyY2Q4OTk5YjBkZDU2ZDhkZmI0
N2M5MTY4NzQ1YzZhY2M2MDFmN2YyZjNiZWI3Yzc3MS0wKwYDVQQDEyRmNzI0Mzc4
NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDBAtWP+W4EEx/sHUcGQAzMFsWY0N6peJ/tHRThpu5KdVyg
SUjczh+Zc31uSELImULS9o9MJx2uR32/c6eI6ya0PxCfQN/LEw585Yb1/aRw5qSt
hh3w8XLVYea+mjFh5JW7UFNH5FOUt1vSeZZchJYFOpGjUMPy6wIhsx3TIQSKqlr3
B0nvuGJPUDhbRdh4sqQaDbetMuVPmknKFjy95eFlZBuqdtdpsdnEPn2ECfGi5pNT
i5PGI3G3HAHgLceFPNE82UGyZLau3k+Mo/ojFfl+RSOL/YDDSOpdBC3sD2A/OmeJ
+C9UopdtC2R8hpnDBUBHykBG2LpKWLJOa9yBk97vAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUdek/dwo1xA9M++bc8K7xqJFJ1ukwHwYDVR0jBBgwFoAUugzhfiM/vHHU
MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m
NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5
YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy
YTEzOWVhOTJiLzZiNzAzNWNiLWViYjMtNDM4NS04YWNiLWI1YjdlNTliYzhjMi5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh
LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmBZzA8CUwDQYJKoZIhvcNAQELBQADggEBAG6imOuHQ4uK3nK6ycnPtTNm
V0t9N26gMTAHWxPTSj5zt9Jz0TYaWBthzofl86qeryvA8RVbxNd9dv1vtkagtxvB
niMABtEy349UWKLOrfspkEoWcvbLX1Wz2jI85SYfKi9cAQHtolOByj8SwE2QU6Dz
Afsxs10cQzUDLSJaH2lWw8FdywmP0gA5uOv7UVk7asOmkZ1bRDfEDMP5m6gypQvK
0PUYxOz4LH9zJ1LR89Qy6ivsQgPe6qDh+Kq+p3AH9odFtiRJIcY8jPTpCD6kVT2i
p4U4Oiol7oFyg24gMsPugICln1kUBtGhZqeOJT3rAl7Ua4RXAzkbgXJexLdiHBg=
-----END CERTIFICATE-----
Generated at Fri Apr 19 18:28:12 2024 by rpki-client on console-ams.rpki-client.org