Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c5efc4b-f494-480e-9cb4-c0dc5221861f.roa
File: 6c5efc4b-f494-480e-9cb4-c0dc5221861f.roa (raw, json)
Hash identifier: to+hmqHkImRdCpCYsEY6vU86WkYQNc1S0xUw8cgGG6o=
Subject key identifier: A5:53:D0:9F:74:EC:B1:20:8B:85:5B:A2:87:61:EE:2A:5A:23:7D:0D
Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Certificate serial: 130537482C5408C4BA3E67434A1C1F20A0B151B9
Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c5efc4b-f494-480e-9cb4-c0dc5221861f.roa
Signing time: Tue 14 Jan 2025 00:00:00 +0000
ROA not before: Tue 14 Jan 2025 00:00:00 +0000
ROA not after: Tue 18 Feb 2025 23:59:59 +0000
asID: 14618
IP address blocks: 136.135.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Jan 2025 04:26:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:05:37:48:2c:54:08:c4:ba:3e:67:43:4a:1c:1f:20:a0:b1:51:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476
Validity
Not Before: Jan 14 00:00:00 2025 GMT
Not After : Feb 18 23:59:59 2025 GMT
Subject: serialNumber=f028e237ac131452040969b617dffe0879953e5aa81d32a04dc678bd1eba74d8, CN=5f276045-5b9f-45ef-923d-f3fce24a6225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:80:32:b5:42:2a:e0:c0:5e:33:10:4b:31:2e:
70:be:56:f3:77:29:ac:ab:38:93:0a:e7:f1:e8:04:
45:83:4e:a2:38:40:b1:cf:a7:85:3a:64:c9:8d:d0:
c0:e8:e9:17:cd:bc:a9:47:d0:34:8c:d6:e9:bb:c7:
ab:4d:1c:35:56:f0:44:a5:b4:92:38:62:cc:d0:fd:
7e:b9:ff:d7:89:f3:2f:79:76:95:b4:ac:ed:5f:e4:
6e:ef:56:fd:c8:08:da:bd:41:d1:3d:41:57:90:4f:
7c:4b:a4:de:9b:7d:e5:fb:41:28:ca:74:5b:96:79:
d7:bb:36:c3:d8:25:55:6f:86:ca:63:f8:a9:47:36:
1d:96:bb:da:48:f7:91:40:56:b9:34:bf:24:ab:53:
a9:70:65:b7:ab:21:cf:cb:d7:34:21:80:67:bf:e9:
1f:b2:5b:42:a5:4f:49:77:bd:c6:2f:11:2d:85:7f:
3e:9f:d8:28:33:0b:4d:b1:11:11:66:be:80:02:73:
70:6d:7f:13:a1:69:01:7b:8f:af:ea:1c:3d:b7:86:
a9:d9:cc:24:c9:19:c9:51:e4:8e:fd:a8:ad:29:ab:
0e:9d:85:e5:95:c3:32:60:a2:9f:1e:9a:48:c4:28:
39:13:a3:ad:24:ac:2f:f7:58:fb:10:05:5f:77:94:
ca:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:53:D0:9F:74:EC:B1:20:8B:85:5B:A2:87:61:EE:2A:5A:23:7D:0D
X509v3 Authority Key Identifier:
keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6c5efc4b-f494-480e-9cb4-c0dc5221861f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
136.135.0.0/16
Signature Algorithm: sha256WithRSAEncryption
84:80:4d:73:e3:d5:2d:bf:6f:1e:64:65:32:81:6c:7d:d6:ec:
a2:c8:ee:4b:c0:0d:26:ed:e6:37:93:6f:ce:04:58:22:78:65:
32:32:ed:e6:13:ff:d2:c5:65:ca:fc:e8:6d:34:1f:98:4c:03:
41:db:dc:fd:82:7c:47:7f:9c:f7:15:c1:b8:e2:1e:59:76:fc:
da:25:99:b9:82:7c:97:51:5b:15:90:62:15:36:37:b6:b1:56:
db:fc:60:ae:f3:fd:d9:cf:22:29:d3:01:5a:66:32:f3:21:a4:
3b:96:dd:d6:91:a2:d1:08:ea:6f:de:ee:78:87:60:ab:d5:af:
84:55:d9:ad:da:09:80:7a:ca:d5:d9:92:d1:aa:91:37:50:32:
25:c8:b0:d2:c4:13:56:7c:3a:c0:0a:9b:9d:98:ae:68:9f:d7:
a8:7e:ea:4f:62:60:13:f4:6b:88:1f:6c:19:34:92:38:63:a9:
47:1a:62:1c:97:f7:75:ed:bc:88:4b:43:62:6a:0b:b4:f0:8e:
fe:ed:17:7a:93:fd:89:7a:9c:6e:81:08:50:e8:5a:59:bd:1c:
c7:e2:fb:f0:11:cd:98:c8:d2:2c:5c:84:20:03:ff:dd:dc:c4:
e4:01:28:e7:e5:b4:14:93:1d:f4:ed:72:f3:b5:fb:df:ab:3d:
f9:c2:8c:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 15 06:46:53 2025 by rpki-client on console-ams.rpki-client.org