Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/18b361ec-783e-4c7a-b676-630b9f1d1c6a.roa
File: 18b361ec-783e-4c7a-b676-630b9f1d1c6a.roa (raw, json)
Hash identifier: AomlQNXQ6LDQzusUcrVwAoroUPB4u8lojqMiaRxNJSs=
Subject key identifier: 1F:91:AB:92:1F:DA:86:D1:02:6E:AD:14:18:19:B3:2F:1A:1E:3C:10
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 41AB068327C90B1352E030C07C4730343C21EE
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/18b361ec-783e-4c7a-b676-630b9f1d1c6a.roa
Signing time: Fri 27 Sep 2024 00:00:00 +0000
ROA not before: Fri 27 Sep 2024 00:00:00 +0000
ROA not after: Fri 01 Nov 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.0.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:ab:06:83:27:c9:0b:13:52:e0:30:c0:7c:47:30:34:3c:21:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 27 00:00:00 2024 GMT
Not After : Nov 1 23:59:59 2024 GMT
Subject: serialNumber=b645e3ad3b6bc8f9ffd9f95ba8e3aa99bed78353753fd49c70ba383fdfe307e7, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:69:96:3e:a8:5d:04:6d:93:be:bc:e7:3d:62:
e2:2d:13:3b:9f:0c:79:a9:0f:8a:72:cd:13:1c:85:
ae:9a:12:63:63:87:78:13:11:d5:8d:a7:9c:14:0f:
db:68:fd:ca:ac:ff:69:73:c2:61:8a:fe:6f:9c:b6:
77:93:72:3a:e8:75:94:cf:75:78:35:9d:ce:b6:96:
1c:4e:a6:f6:57:42:51:0a:b0:a2:4d:25:4b:b6:ec:
90:1c:a4:2a:50:4b:c1:03:7b:46:92:31:70:16:ac:
4e:87:ef:ad:8e:2a:a6:3d:0a:a9:b2:1a:e4:73:8f:
eb:31:c9:d0:36:c7:8c:ae:41:2f:46:ab:b3:87:6f:
9a:73:98:22:4a:5c:d5:26:df:05:16:2f:3f:27:6b:
c0:b8:c7:41:19:99:f4:8f:d3:39:d2:f4:1e:6f:30:
a4:f9:63:54:ab:51:b0:6f:7b:7b:b0:9a:e5:d7:fc:
ab:47:31:75:a1:ad:51:d0:3e:84:0b:7d:c6:d1:09:
82:ea:09:d7:21:46:15:5d:13:45:ff:e8:c3:05:19:
29:2c:7b:3d:19:b3:06:d2:ec:ed:bc:ae:3d:d9:c9:
49:64:59:55:61:8f:0d:1f:5b:62:eb:b5:7d:9a:30:
23:c8:93:e5:1b:c2:bc:fc:db:4f:ff:eb:b6:89:68:
3f:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:91:AB:92:1F:DA:86:D1:02:6E:AD:14:18:19:B3:2F:1A:1E:3C:10
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/18b361ec-783e-4c7a-b676-630b9f1d1c6a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.0.0/16
Signature Algorithm: sha256WithRSAEncryption
47:c5:12:4f:62:42:9e:01:34:b9:d7:41:cc:e5:c1:7e:60:96:
32:b9:d3:ee:84:a6:7e:f3:38:b2:2a:61:c7:7c:0a:b0:41:30:
10:fd:05:f0:b0:24:9c:91:e3:20:b6:dd:c4:0b:7b:85:c9:43:
4d:bc:94:63:eb:bf:7c:ad:97:f7:64:b1:0d:a0:dc:81:a5:6d:
d2:a5:16:b1:42:5b:d2:25:5d:ec:64:5e:6a:ac:72:e8:ce:d5:
48:fc:98:7c:ce:35:17:5d:a5:dd:81:b2:1c:1e:e1:80:03:a6:
85:f8:da:98:bd:c6:8a:ff:ca:c0:13:10:fd:7f:39:c4:ef:bc:
e7:cc:ab:cd:d9:34:42:af:cd:99:04:b8:1d:92:37:7c:2f:98:
d1:a5:10:d2:44:65:a0:17:40:54:65:6d:d0:b4:78:ac:db:26:
63:0a:12:a9:8c:46:1f:ce:d1:f6:ba:be:88:6e:56:40:bf:36:
3a:cb:0f:8f:c7:4b:ca:eb:ce:8a:27:47:f2:be:a5:a2:b5:69:
27:9a:e3:0f:27:e3:ee:cc:d8:aa:bb:8a:d7:dd:5e:ee:8b:28:
a5:c9:95:ec:a3:d9:38:75:c5:99:6f:91:0f:b4:97:87:b6:84:
1d:af:c7:20:0b:b9:b3:90:8f:28:bf:a6:59:c2:e8:91:50:8d:
94:9c:5c:55
-----BEGIN CERTIFICATE-----
MIIFXDCCBESgAwIBAgITQasGgyfJCxNS4DDAfEcwNDwh7jANBgkqhkiG9w0BAQsF
ADAzMTEwLwYDVQQDEyg0NTNmNDc0NjM1NGUyYWQxNWNlN2ViZDhkYzIxZjk2YzBl
NWM4N2NmMB4XDTI0MDkyNzAwMDAwMFoXDTI0MTEwMTIzNTk1OVowejFJMEcGA1UE
BRNAYjY0NWUzYWQzYjZiYzhmOWZmZDlmOTViYThlM2FhOTliZWQ3ODM1Mzc1M2Zk
NDljNzBiYTM4M2ZkZmUzMDdlNzEtMCsGA1UEAxMkYzMzNjQxMWEtNjY1MS00ZjEz
LThlZjktZGU2ODFjN2M5NDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAo2mWPqhdBG2TvrznPWLiLRM7nwx5qQ+Kcs0THIWumhJjY4d4ExHVjaecFA/b
aP3KrP9pc8Jhiv5vnLZ3k3I66HWUz3V4NZ3OtpYcTqb2V0JRCrCiTSVLtuyQHKQq
UEvBA3tGkjFwFqxOh++tjiqmPQqpshrkc4/rMcnQNseMrkEvRquzh2+ac5giSlzV
Jt8FFi8/J2vAuMdBGZn0j9M50vQebzCk+WNUq1Gwb3t7sJrl1/yrRzF1oa1R0D6E
C33G0QmC6gnXIUYVXRNF/+jDBRkpLHs9GbMG0uztvK492clJZFlVYY8NH1ti67V9
mjAjyJPlG8K8/NtP/+u2iWg/nQIDAQABo4ICIDCCAhwwHQYDVR0OBBYEFB+Rq5If
2obRAm6tFBgZsy8aHjwQMB8GA1UdIwQYMBaAFEU/R0Y1TirRXOfr2Nwh+WwOXIfP
MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvUlQ5SFJqVk9L
dEZjNS12WTNDSDViQTVjaDg4LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsG
AQUFBzALhn9yc3luYzovL3Jwa2ktcnN5bmMudXMtZWFzdC0yLmFtYXpvbmF3cy5j
b20vdm9sdW1lLzk2N2EyNTVjLWQ2ODAtNDJkMy05ZWMzLWVjYjNmOWRhMDg4Yy8x
OGIzNjFlYy03ODNlLTRjN2EtYjY3Ni02MzBiOWYxZDFjNmEucm9hMIGIBgNVHR8E
gYAwfjB8oHqgeIZ2cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5hbWF6b25h
d3MuY29tL3ZvbHVtZS85NjdhMjU1Yy1kNjgwLTQyZDMtOWVjMy1lY2IzZjlkYTA4
OGMvX2xBaTVUSERzUWRQWUE5bm1FVDZvbEh1VmM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAMwAwDQYJ
KoZIhvcNAQELBQADggEBAEfFEk9iQp4BNLnXQczlwX5gljK50+6Epn7zOLIqYcd8
CrBBMBD9BfCwJJyR4yC23cQLe4XJQ028lGPrv3ytl/dksQ2g3IGlbdKlFrFCW9Il
XexkXmqscujO1Uj8mHzONRddpd2Bshwe4YADpoX42pi9xor/ysATEP1/OcTvvOfM
q83ZNEKvzZkEuB2SN3wvmNGlENJEZaAXQFRlbdC0eKzbJmMKEqmMRh/O0fa6vohu
VkC/NjrLD4/HS8rrzoonR/K+paK1aSea4w8n4+7M2Kq7itfdXu6LKKXJleyj2Th1
xZlvkQ+0l4e2hB2vxyALubOQjyi/plnC6JFQjZScXFU=
-----END CERTIFICATE-----
Generated at Thu Oct 10 22:45:50 2024 by rpki-client on console-ams.rpki-client.org