Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c79f2441-8e54-42e4-b3b3-a71db64daf6d.roa
File: c79f2441-8e54-42e4-b3b3-a71db64daf6d.roa (raw, json)
Hash identifier: 8fkBhXhymoznOk3rX5xl/TcmMXHE5zeWSLIknrs/PTE=
Subject key identifier: B7:27:23:4A:78:4C:4F:C1:F8:FB:B7:C0:66:49:DA:86:2B:F6:D0:5D
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 68782C5B2E0C3D0D8A316951887D4237DE3DCD9B
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c79f2441-8e54-42e4-b3b3-a71db64daf6d.roa
Signing time: Fri 19 Apr 2024 00:00:00 +0000
ROA not before: Fri 19 Apr 2024 00:00:00 +0000
ROA not after: Fri 24 May 2024 23:59:59 +0000
asID: 16509
IP address blocks: 2605:9cc0:f035::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 19 Apr 2024 15:41:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:78:2c:5b:2e:0c:3d:0d:8a:31:69:51:88:7d:42:37:de:3d:cd:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Apr 19 00:00:00 2024 GMT
Not After : May 24 23:59:59 2024 GMT
Subject: serialNumber=03d7c489b5266a1ac7b5fd5c47dd32e23a2e94c25c0324b49d2a3d5a7d6f614a, CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7d:7f:47:79:6b:02:ca:16:df:75:d4:7d:c0:
68:bf:7e:b8:3b:e2:9f:4d:82:03:36:73:7a:70:78:
ab:a9:7d:a7:fe:7b:fe:23:f7:f0:fc:63:92:e5:e8:
e6:6e:1a:09:3a:40:9c:92:a5:16:17:6d:de:f3:70:
7a:17:e4:20:64:2a:62:a8:a0:25:54:08:1b:ff:89:
91:47:3d:8f:ad:bf:13:9a:c1:1d:c9:a6:5e:e4:b3:
93:a8:7e:a9:d2:a5:80:ae:7d:3f:44:15:36:ed:92:
ce:1a:f8:f4:6e:2e:3f:dd:e0:da:d9:27:ca:33:56:
31:ff:85:cd:f3:0f:2c:a0:78:58:9f:87:5a:31:1d:
f4:04:0d:57:95:6a:fc:65:3f:f2:2b:6d:fd:50:e8:
24:d9:ff:bf:32:7c:2f:e7:19:18:24:79:82:2a:b5:
bc:1b:01:eb:ad:81:ad:67:09:2a:26:13:0e:0e:65:
67:07:55:05:49:5b:a5:64:f1:eb:19:dd:82:cd:f1:
a3:04:bf:4c:0f:6d:50:96:bb:97:9c:80:3e:b8:9c:
98:33:5b:2e:ef:d3:b5:40:22:36:30:c3:ec:b7:1d:
a1:f1:4e:82:48:b7:9a:65:45:17:55:60:7d:c4:15:
ad:8e:32:58:66:e4:34:0d:2b:b0:07:11:60:fa:af:
57:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:27:23:4A:78:4C:4F:C1:F8:FB:B7:C0:66:49:DA:86:2B:F6:D0:5D
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/c79f2441-8e54-42e4-b3b3-a71db64daf6d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:f035::/48
Signature Algorithm: sha256WithRSAEncryption
71:f5:b8:31:45:59:7d:5a:a9:9e:ed:05:fc:92:47:49:a3:f4:
67:23:ae:17:f2:88:87:29:2c:ad:ff:0d:d3:01:a5:24:ff:87:
6f:2d:6a:e7:81:68:aa:da:e5:0a:2e:b7:ab:19:d9:00:0b:dd:
e3:41:e6:e4:e6:63:db:70:0d:f5:62:d7:17:4d:48:5a:ab:8c:
3e:ba:bf:59:fd:2e:a9:58:bd:3f:80:42:60:3b:b3:d3:4b:3e:
d7:ee:57:ff:57:90:80:d1:a9:14:22:fc:fe:ae:7a:2a:be:d4:
4a:39:1e:e1:02:bf:ae:c1:62:ea:74:3c:98:78:54:8c:45:fd:
dd:d2:94:c7:4e:40:f7:b4:0d:8c:3a:31:4d:e2:49:77:88:5a:
fe:0c:4e:e2:e7:b8:da:31:47:7e:c2:27:b2:da:50:6e:75:cf:
93:67:c2:d9:2f:13:39:6c:5a:f2:d7:f4:51:63:b2:dd:bf:dd:
7c:ea:ba:e2:b2:3c:e5:94:94:57:ff:ba:ab:20:aa:fb:78:c3:
7c:d4:f7:35:58:99:72:3d:a5:9e:9a:bb:c5:c6:c9:aa:49:00:
17:d4:8b:39:1b:b4:27:20:b5:d6:65:8c:cf:a1:c0:f2:62:8a:
5b:d6:fb:c5:ce:74:43:e1:f0:72:85:fb:11:ec:3e:eb:78:35:
f4:fc:e4:64
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 19 18:28:13 2024 by rpki-client on console-ams.rpki-client.org