Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9fded231-716b-4fdc-a800-fd1e332cb487.roa
File: 9fded231-716b-4fdc-a800-fd1e332cb487.roa (raw, json)
Hash identifier: i4iqo2v2UvkUjd95Wi805aDy4d9oSUwC7iBkznmK1V0=
Subject key identifier: 69:5C:64:A3:F8:3E:81:C6:EE:56:8C:7A:7E:55:D6:DA:CD:3F:A1:1F
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 09D632AEB9E92C10ACA2CDDE2AD113B92C7416ED
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9fded231-716b-4fdc-a800-fd1e332cb487.roa
Signing time: Fri 27 Sep 2024 00:00:00 +0000
ROA not before: Fri 27 Sep 2024 00:00:00 +0000
ROA not after: Fri 01 Nov 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.0.0.0/19 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 14:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:d6:32:ae:b9:e9:2c:10:ac:a2:cd:de:2a:d1:13:b9:2c:74:16:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 27 00:00:00 2024 GMT
Not After : Nov 1 23:59:59 2024 GMT
Subject: serialNumber=a5525abe1778691991d8679f9614e03007613486ef5e0adde4ceaa60e8eb5ab8, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:14:10:a6:b1:6e:c1:bd:d1:ca:72:60:d7:
9b:5a:f2:ea:e4:c2:8d:f9:e0:8c:0f:81:8a:64:cd:
1d:52:48:10:e1:b7:2a:16:38:b1:d8:51:11:4a:4e:
dd:ef:fd:0b:37:2b:f9:74:95:3b:6c:1c:60:55:9e:
47:67:c3:97:93:86:d7:cf:fb:b8:ca:53:aa:c0:26:
ab:23:ad:04:a4:d1:70:c8:49:30:45:71:50:6b:d0:
28:2d:9f:66:fe:5c:a2:43:59:e0:55:17:d6:4a:0a:
fe:f0:08:2e:37:49:48:e9:e9:fe:d2:9b:a3:31:50:
d6:f5:9a:a5:9b:80:b2:36:00:c9:45:9e:cb:6e:62:
1b:d1:ff:c8:95:cb:38:74:c3:68:c6:78:b5:ef:eb:
df:02:7f:69:a0:d2:fc:99:66:58:0a:17:70:d6:3b:
22:3c:7b:19:55:b6:73:ec:0e:37:8d:ff:4c:e1:7d:
0d:21:fd:87:99:46:06:a4:37:99:26:d0:2b:ef:7f:
f2:a5:65:b9:d1:36:30:e0:4d:be:37:c4:17:20:ec:
2c:5e:69:db:4c:86:7b:76:46:77:84:87:fd:d1:6a:
b5:90:4b:7d:25:bc:6a:d3:25:ca:44:7d:57:de:a1:
0e:3c:2f:6d:2d:b1:a0:78:c0:02:1c:02:68:b9:5f:
5b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5C:64:A3:F8:3E:81:C6:EE:56:8C:7A:7E:55:D6:DA:CD:3F:A1:1F
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/9fded231-716b-4fdc-a800-fd1e332cb487.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.0.0.0/19
Signature Algorithm: sha256WithRSAEncryption
23:7f:83:1b:85:6b:af:c5:e3:51:1f:52:8d:9c:a9:96:b3:50:
8a:fa:21:7b:3c:1b:e1:56:08:fc:74:b9:59:b4:af:e6:68:87:
b1:0c:49:ae:7c:50:a0:29:bc:88:a7:7e:0a:9b:f4:3d:16:77:
0e:ef:c2:2c:f5:7e:ee:28:8e:3a:72:52:73:d3:60:fa:85:c5:
cd:20:61:2f:09:09:35:ac:21:8c:bc:e1:05:02:1f:f6:70:f8:
d6:5f:da:cf:d8:5d:09:91:cf:5a:cd:25:89:e0:d9:59:31:0f:
94:23:69:ae:98:a7:4a:93:95:15:b4:80:e2:44:12:06:ec:d2:
a0:44:e2:2f:bb:85:2e:84:31:7d:0f:7a:42:0e:ab:75:5a:8d:
38:cd:82:d3:89:0b:c9:70:85:52:df:6f:f0:37:bf:08:28:78:
8e:17:e3:7f:f5:5d:ca:51:a7:83:e3:ec:36:f1:fa:fb:4e:ec:
63:fb:ca:20:de:61:aa:60:93:e0:20:27:e2:82:7e:db:7b:60:
0f:dd:1e:5f:fb:41:f4:9f:d7:44:be:75:dc:11:fc:43:0c:57:
5b:57:b3:d6:b3:83:06:20:d0:78:1c:32:c4:60:b7:1e:88:02:
07:53:86:f1:5e:a9:d8:9e:05:bc:de:2b:0c:cb:5b:3e:47:90:
9e:bb:be:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 19:31:42 2024 by rpki-client on console-fra.rpki-client.org