
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/126de986-01c8-490c-bf22-c5770a1efd7c.roa
File: 126de986-01c8-490c-bf22-c5770a1efd7c.roa (raw, json)
Hash identifier: a0lo8WCYLxAF3fK9EtGOvXtVgzP41KZZUQHGOhBJumI=
Subject key identifier: 4C:0F:A8:C9:F4:CC:99:1E:4A:28:ED:2E:C1:4F:3E:3E:F0:D7:26:F1
Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial: 1E2B5EC865737277B2CA99F9CE956C0C1DA27AEF
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/126de986-01c8-490c-bf22-c5770a1efd7c.roa
Signing time: Fri 31 Jan 2025 00:00:00 +0000
ROA not before: Fri 31 Jan 2025 00:00:00 +0000
ROA not after: Fri 07 Mar 2025 23:59:59 +0000
asID: 14618
IP address blocks: 54.196.0.0/15 maxlen: 15
Validation: Failed, certificate revoked on Fri 31 Jan 2025 18:10:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:2b:5e:c8:65:73:72:77:b2:ca:99:f9:ce:95:6c:0c:1d:a2:7a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Validity
Not Before: Jan 31 00:00:00 2025 GMT
Not After : Mar 7 23:59:59 2025 GMT
Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:10:ac:1e:c5:42:99:dc:2f:29:9e:bd:84:b2:
a0:fc:8f:38:8b:c1:6b:91:0e:d7:3e:54:8b:8f:c2:
4e:d9:c0:03:88:e1:20:da:71:03:d9:e1:45:50:ee:
f7:99:cd:03:09:d4:46:41:75:dd:46:00:9c:1e:bb:
8c:fc:e9:5c:91:cb:d2:00:c0:90:43:e5:1a:3e:8a:
1c:53:4f:a4:87:b2:11:4f:67:89:91:a9:d8:4c:9b:
d6:7a:e2:01:b2:9b:5b:8f:35:42:6e:d8:3d:9a:9f:
c1:ec:48:4f:dc:a2:47:52:81:d4:7a:29:34:13:f1:
4c:42:aa:f3:ed:f7:2b:5f:c1:95:9c:6b:43:42:2d:
18:46:48:68:6a:24:2e:ba:56:9b:13:2b:26:0e:b9:
c6:9b:02:62:04:8d:ae:e0:f2:dd:3d:8a:ef:fe:62:
de:33:ee:70:f2:bd:80:9b:61:7a:39:04:ec:7f:1d:
b1:61:94:a9:46:60:68:e5:21:35:63:15:ff:ad:ad:
d3:41:09:0a:fe:ec:7f:ac:01:ff:40:3b:f3:b9:6e:
0b:39:aa:4d:23:35:d8:ac:14:40:40:30:f6:e3:26:
07:0b:cb:d4:2f:3a:cc:5e:4b:f0:87:90:80:eb:26:
ee:c5:24:b0:43:cf:46:5e:6f:cd:58:23:a9:39:7b:
a7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:0F:A8:C9:F4:CC:99:1E:4A:28:ED:2E:C1:4F:3E:3E:F0:D7:26:F1
X509v3 Authority Key Identifier:
keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/126de986-01c8-490c-bf22-c5770a1efd7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
54.196.0.0/15
Signature Algorithm: sha256WithRSAEncryption
53:38:a6:b3:be:f7:39:0d:1f:03:93:1d:0b:ca:61:c8:ab:13:
4b:a0:ad:32:16:1e:61:6e:2b:f4:9c:f9:c7:50:7c:e7:39:9f:
66:f4:a2:80:bd:97:1e:8f:2f:40:ea:fc:b0:ba:f7:99:bc:85:
03:ce:89:ef:f2:28:e0:16:82:83:a2:c0:08:2b:31:16:c6:29:
d0:c1:7f:3a:9d:60:b5:23:29:d5:b5:d2:86:9d:e4:10:d6:37:
c7:4e:6a:ea:d8:ab:fe:32:f4:ba:e3:46:2f:06:de:0a:30:33:
7f:5a:d1:3a:2e:5a:68:cb:8e:90:5a:b1:54:ae:b8:4a:10:86:
ce:60:99:fb:59:69:8c:52:cd:e3:e0:f1:22:0b:01:af:c6:6c:
e7:90:72:13:37:0d:e0:45:b4:87:a0:36:c4:6a:27:62:fa:c0:
37:f0:9e:b3:df:24:97:9d:c6:51:40:b9:77:c4:bd:c4:2e:fd:
91:8b:74:38:b8:cf:cd:b9:1f:9c:62:a2:01:45:4e:6d:1a:e5:
b4:58:ce:36:87:82:dd:d4:9f:09:57:11:ff:cd:15:22:41:f8:
a6:27:2a:ae:2e:54:a2:c2:09:6b:48:c2:be:39:7f:40:a5:2d:
87:03:e5:67:9f:a9:ae:1d:d3:62:3a:0b:54:98:51:2d:54:d5:
a6:f0:22:90
-----BEGIN CERTIFICATE-----
MIIF9zCCBN+gAwIBAgIUHiteyGVzcneyypn5zpVsDB2ieu8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz
MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMTMxMDAwMDAwWhcNMjUwMzA3MjM1OTU5
WjB6MUkwRwYDVQQFE0BkYzEzYTFlYTk2ZDczMWZmOTE1N2EyNmVlYmM1OTg5ZTc2
NWU1NGNiODdmODhkYjQ2NDk5OGQ3NGNjOGIxYzFmMS0wKwYDVQQDEyQ1ZjI3NjA0
NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCzEKwexUKZ3C8pnr2EsqD8jziLwWuRDtc+VIuPwk7ZwAOI
4SDacQPZ4UVQ7veZzQMJ1EZBdd1GAJweu4z86VyRy9IAwJBD5Ro+ihxTT6SHshFP
Z4mRqdhMm9Z64gGym1uPNUJu2D2an8HsSE/cokdSgdR6KTQT8UxCqvPt9ytfwZWc
a0NCLRhGSGhqJC66VpsTKyYOucabAmIEja7g8t09iu/+Yt4z7nDyvYCbYXo5BOx/
HbFhlKlGYGjlITVjFf+trdNBCQr+7H+sAf9AO/O5bgs5qk0jNdisFEBAMPbjJgcL
y9QvOsxeS/CHkIDrJu7FJLBDz0Zeb81YI6k5e6cRAgMBAAGjggKwMIICrDAdBgNV
HQ4EFgQUTA+oyfTMmR5KKO0uwU8+PvDXJvEwHwYDVR0jBBgwFoAUJa3TQrAet6WO
rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x
MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk
OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4
MDkwNGU0MmQyLzEyNmRlOTg2LTAxYzgtNDkwYy1iZjIyLWM1NzcwYTFlZmQ3Yy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz
LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwE2xDANBgkqhkiG9w0BAQsFAAOCAQEAUzims773OQ0fA5MdC8phyKsTS6Ct
MhYeYW4r9Jz5x1B85zmfZvSigL2XHo8vQOr8sLr3mbyFA86J7/Io4BaCg6LACCsx
FsYp0MF/Op1gtSMp1bXShp3kENY3x05q6tir/jL0uuNGLwbeCjAzf1rROi5aaMuO
kFqxVK64ShCGzmCZ+1lpjFLN4+DxIgsBr8Zs55ByEzcN4EW0h6A2xGonYvrAN/Ce
s98kl53GUUC5d8S9xC79kYt0OLjPzbkfnGKiAUVObRrltFjONoeC3dSfCVcR/80V
IkH4picqri5UosIJa0jCvjl/QKUthwPlZ5+prh3TYjoLVJhRLVTVpvAikA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 05:08:39 2025 by rpki-client