Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa
File: dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa (raw, json)
Hash identifier: TYmBv5WsPA8WaqNwDdyXeHTmHvhvey2tXQWrx8pu/Ks=
Subject key identifier: 70:DA:BE:61:F3:6F:7E:3A:6D:3D:B7:3C:98:FD:9E:EE:86:AD:6B:72
Certificate issuer: /CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Certificate serial: 7D31A239AD62F96757654605E712D7BA42664F07
Authority key identifier: 45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa
Signing time: Fri 27 Sep 2024 00:00:00 +0000
ROA not before: Fri 27 Sep 2024 00:00:00 +0000
ROA not after: Fri 01 Nov 2024 23:59:59 +0000
asID: 14618
IP address blocks: 51.224.0.0/15 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 14:31:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:31:a2:39:ad:62:f9:67:57:65:46:05:e7:12:d7:ba:42:66:4f:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=453f4746354e2ad15ce7ebd8dc21f96c0e5c87cf
Validity
Not Before: Sep 27 00:00:00 2024 GMT
Not After : Nov 1 23:59:59 2024 GMT
Subject: serialNumber=5e601cf0eac30d1b6a1d74b544e576d6aacda4e62753bd1718da9eea993410c2, CN=c336411a-6651-4f13-8ef9-de681c7c9444
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:53:84:5d:91:1e:3f:87:80:30:ba:a1:83:1b:
2d:d4:1b:1b:08:8c:1d:e8:6d:42:0e:c1:89:8c:2a:
01:2c:f6:2b:f4:05:08:6d:ab:b5:89:43:67:3a:93:
16:f5:ad:69:11:5e:6e:a2:d4:9c:1a:6c:12:98:c4:
6a:4f:25:ef:15:40:b0:2f:e4:f9:c9:fa:4a:20:86:
f5:cd:38:a5:2e:11:60:58:c6:eb:60:ea:8e:05:fc:
de:3b:31:9d:8c:2a:94:25:5a:93:30:c3:f4:ea:d2:
28:70:55:20:ff:48:8e:9f:a0:82:af:1c:61:b3:16:
8e:fb:fa:87:3e:be:57:af:ac:f1:26:a7:de:cb:a6:
11:d8:bf:3d:68:ca:8b:48:d4:e1:06:85:59:2e:25:
99:a8:6d:55:2b:e1:ce:d9:92:11:61:8c:c1:8b:32:
b1:8a:72:f8:8f:4a:af:07:a7:5d:49:ff:21:fa:07:
84:80:7b:f3:4c:da:f1:2e:02:fe:f3:86:76:e1:05:
bf:6d:07:19:64:e9:03:ac:e9:ef:83:c9:7f:be:d1:
e6:85:fc:04:78:23:ef:70:78:64:a0:25:2b:d9:97:
51:89:32:7f:ad:93:63:90:5d:b9:2c:0f:55:7d:c4:
8f:b3:9c:a6:55:a8:55:ad:f2:09:dd:27:76:19:5e:
ff:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:DA:BE:61:F3:6F:7E:3A:6D:3D:B7:3C:98:FD:9E:EE:86:AD:6B:72
X509v3 Authority Key Identifier:
keyid:45:3F:47:46:35:4E:2A:D1:5C:E7:EB:D8:DC:21:F9:6C:0E:5C:87:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RT9HRjVOKtFc5-vY3CH5bA5ch88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/dc642b10-5c6d-49f8-aaa2-8850efea8c91.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/967a255c-d680-42d3-9ec3-ecb3f9da088c/_lAi5THDsQdPYA9nmET6olHuVc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.224.0.0/15
Signature Algorithm: sha256WithRSAEncryption
03:ba:d4:98:1e:79:6b:02:e5:f9:14:b7:cb:c6:ff:61:11:0f:
04:db:cd:0a:33:f7:37:30:80:1f:07:04:01:fd:c0:6f:5d:23:
a8:61:3d:4c:26:17:61:ae:ae:32:23:59:58:b6:2f:bb:ae:9f:
82:4a:94:49:98:e5:7a:70:9c:c5:67:4d:da:9c:7e:e7:0f:5a:
d4:d4:cd:1a:29:90:5a:f0:ab:c1:f5:79:f3:34:aa:61:d3:eb:
50:b9:c6:2c:d0:94:d1:4a:a4:91:1d:cf:2b:3f:f7:9c:c7:f5:
af:9d:65:5d:8b:19:56:52:fd:3e:b7:b8:46:16:0b:57:d9:d8:
bc:cb:5b:2a:55:f5:06:1a:46:46:81:9d:93:a8:62:a1:b1:37:
10:c4:10:8c:d1:4a:dc:7f:03:ee:1a:a5:bb:fe:e3:41:16:30:
44:03:8c:5c:ae:84:5e:86:07:07:c3:21:30:54:76:d5:aa:8c:
de:ff:bc:a2:19:17:fa:c0:ac:5f:af:91:9f:51:bd:1a:c3:d1:
2d:cc:14:6c:32:f9:a6:25:fd:18:49:3d:69:28:13:68:0a:22:
2c:56:d9:d3:7c:bf:4e:2b:b3:1c:e0:31:7b:15:07:9b:e8:3a:
c0:cd:43:c4:f1:c2:66:f8:8f:d9:91:13:10:ce:88:f5:dc:ae:
f9:ed:24:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 19:31:42 2024 by rpki-client on console-fra.rpki-client.org