Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2f0149f0-c984-4579-a478-0c4e7147bcd1.roa
File: 2f0149f0-c984-4579-a478-0c4e7147bcd1.roa (raw, json)
Hash identifier: lJfZkxZmPmGsJsztiJN5lAzaPtRcM8oL875PgRQT+EU=
Subject key identifier: 62:13:4B:F1:45:D9:D1:EE:C7:D3:2D:92:1E:1C:AD:82:14:4C:3F:CA
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 22FED4C145CABF750D7B89DBD72252A2BB93D61A
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2f0149f0-c984-4579-a478-0c4e7147bcd1.roa
Signing time: Fri 27 Sep 2024 00:00:00 +0000
ROA not before: Fri 27 Sep 2024 00:00:00 +0000
ROA not after: Fri 01 Nov 2024 23:59:59 +0000
asID: 16509
IP address blocks: 51.0.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 14:31:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:fe:d4:c1:45:ca:bf:75:0d:7b:89:db:d7:22:52:a2:bb:93:d6:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 27 00:00:00 2024 GMT
Not After : Nov 1 23:59:59 2024 GMT
Subject: serialNumber=1d4d4ef8f8278c2a691c4df2c5f9d1610dd53238c6fb2e9f36bf7de72c539418, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b2:c8:23:11:71:5b:a5:ab:3f:fc:b4:dc:88:
ab:71:74:00:7c:1a:c8:2d:2c:17:54:84:59:ba:0c:
38:c1:64:31:69:be:22:4b:a1:9d:dc:ca:30:47:a1:
76:b5:72:7c:2d:db:26:19:9f:9b:13:1c:7a:a2:78:
8d:09:8d:1b:cf:ee:4f:35:07:15:ae:38:6d:64:38:
b7:41:e9:53:98:2d:07:e2:08:8d:39:a9:ad:b0:d5:
88:ee:1e:e8:da:b4:a3:63:7d:c9:05:96:92:24:a7:
10:9a:91:de:97:cb:fa:d1:96:38:ea:cc:db:a2:f8:
47:8b:d4:b1:c5:49:99:8f:12:92:6f:25:6d:1e:50:
de:bb:25:24:17:22:03:39:69:1f:b5:86:9b:6c:29:
f2:35:ae:ed:c0:d9:23:42:4b:bf:57:23:82:6c:b0:
3f:cb:36:30:4d:12:af:21:78:47:58:a5:52:53:2f:
d0:fd:4d:ba:ca:58:4e:7a:e9:ba:22:e3:5f:04:95:
c7:11:4c:26:6e:d3:ae:23:a5:ac:51:a7:f8:54:83:
1d:d2:5b:51:84:29:cf:43:14:13:57:0e:4c:28:0f:
85:40:4e:8b:41:73:c2:02:e9:90:77:1b:c4:34:79:
36:76:c9:92:35:19:47:36:cb:df:49:23:98:5e:fe:
46:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:13:4B:F1:45:D9:D1:EE:C7:D3:2D:92:1E:1C:AD:82:14:4C:3F:CA
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/2f0149f0-c984-4579-a478-0c4e7147bcd1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.128.0/17
Signature Algorithm: sha256WithRSAEncryption
b9:9d:20:da:f7:47:d7:a0:02:13:3b:de:8e:84:7e:1f:f1:68:
18:50:72:46:49:e4:97:89:d5:d7:6b:0a:af:9e:78:f0:38:4c:
05:ea:4b:94:82:9b:7f:d5:f2:92:17:0a:3e:50:b5:de:7c:b5:
7b:2e:db:64:0f:24:92:98:5c:69:3c:4b:6e:a1:9b:aa:7a:57:
c0:aa:6e:25:50:1b:76:b4:30:93:99:1c:7f:80:e9:1f:13:92:
45:26:c3:a2:84:90:39:90:ba:52:2f:18:a9:40:ed:58:b0:73:
ec:95:00:9e:4b:37:36:99:b5:37:af:1b:ca:69:74:cb:76:59:
f8:23:3c:d3:08:a4:90:f9:9b:43:b6:ac:88:de:0b:70:dc:09:
26:bf:b4:14:ed:f6:c8:e0:1c:c4:98:c8:df:ae:0c:cb:df:0b:
fe:71:60:3a:50:54:df:e7:06:ec:ee:ad:b6:9a:c9:cd:d1:c2:
0c:ac:fd:6a:81:35:8b:8e:99:2b:ee:50:2c:33:b7:01:a6:b9:
b3:dd:90:db:f5:01:44:0f:73:58:39:a3:12:31:6f:d1:18:ac:
f1:96:9e:e4:4b:d8:ce:0a:e1:10:81:8b:52:6a:49:b1:9d:96:
6d:f1:78:84:cc:b3:e9:0d:cf:d0:83:5c:d8:92:27:36:93:70:
b3:a2:29:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 19:31:42 2024 by rpki-client on console-fra.rpki-client.org