Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/016e420a-914e-4e9d-812b-60560ee60df0.roa
File: 016e420a-914e-4e9d-812b-60560ee60df0.roa (raw, json)
Hash identifier: Oe4u9qMZWd9SAyeQzGO7F+9TlTQxehTA8a4l2ExgQjk=
Subject key identifier: F7:6C:22:35:E5:C4:61:D8:E6:33:A0:84:BE:B6:A8:9B:41:CA:41:79
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 75F86664E2D94CC1B06A14BC806F737DD108367B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/016e420a-914e-4e9d-812b-60560ee60df0.roa
Signing time: Sat 06 Apr 2024 00:00:00 +0000
ROA not before: Sat 06 Apr 2024 00:00:00 +0000
ROA not after: Sat 11 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 16:50:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:f8:66:64:e2:d9:4c:c1:b0:6a:14:bc:80:6f:73:7d:d1:08:36:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 6 00:00:00 2024 GMT
Not After : May 11 23:59:59 2024 GMT
Subject: serialNumber=ba9c74400698bd8cc7462811ed86ece5e12540ceea8e973cb04223d596ef8bb4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:78:7d:72:fa:ee:bb:ac:f8:24:fa:1e:28:6f:
9c:d4:82:44:3d:2d:c3:1d:b0:59:a2:6d:83:da:72:
2b:7a:53:7a:c3:1b:4f:a6:49:1f:86:19:f4:10:f6:
e1:cc:e6:9e:81:ac:dc:41:af:af:0d:2c:b0:36:79:
f2:b5:86:58:17:01:6a:43:49:a9:53:16:59:df:b2:
8b:85:e5:fb:3f:b2:63:19:67:6c:36:f8:41:d6:cf:
51:02:f6:6a:d9:06:4b:02:f6:6d:2e:ec:9d:63:13:
13:79:c9:45:2b:73:1e:9d:ef:66:2f:5f:6e:95:91:
36:72:5d:76:57:5e:ab:c8:d9:8d:b2:19:9e:66:ae:
49:85:5d:53:56:f1:f3:66:f2:33:80:53:70:8b:14:
a4:81:10:b7:0a:e7:7d:8a:29:db:da:44:18:ae:89:
48:61:2d:9e:01:b9:83:78:ab:08:5d:2c:e5:6f:6d:
97:78:9e:a3:01:d1:61:67:a3:d1:37:47:d8:9d:e1:
6d:66:e5:f2:80:3d:f7:7d:1d:59:0d:29:d7:31:ef:
80:5a:42:62:1f:13:a8:6a:45:f8:3b:ce:34:04:7a:
05:e3:3b:53:11:59:e2:fc:8b:24:5d:de:57:eb:93:
63:5c:8e:c9:41:e9:4e:fe:20:9e:e6:5d:aa:22:54:
a0:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:6C:22:35:E5:C4:61:D8:E6:33:A0:84:BE:B6:A8:9B:41:CA:41:79
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/016e420a-914e-4e9d-812b-60560ee60df0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d5:6d:8e:41:95:b0:64:7e:16:f0:e4:17:5f:c6:1a:25:37:
3e:8a:91:81:3a:1d:7b:da:e4:bc:43:9f:fd:1e:2e:5a:6f:0a:
a5:c6:3c:ae:2f:f9:a2:ba:4a:a0:1f:3b:bc:bb:55:c8:9c:db:
c3:fb:98:3e:54:1f:dc:57:fc:e6:c1:1f:00:06:51:2e:8b:13:
35:13:f3:80:c1:da:95:f5:09:74:b5:fc:54:3c:e4:37:72:0c:
b4:74:cb:a6:00:f1:51:a0:59:c5:19:83:25:db:f3:4b:b0:96:
28:cb:73:ac:c1:56:d4:bd:2f:fe:ba:9b:87:28:a9:b7:82:46:
2b:d7:20:f0:63:3a:22:be:08:15:07:c0:a6:1a:41:1c:59:b0:
68:39:14:7d:b5:e1:3d:6c:ed:b3:86:f5:f0:7a:5c:61:e0:10:
c4:d7:a5:de:f5:b9:f6:8d:d3:4a:57:90:0e:4f:d9:2d:ce:7a:
5c:eb:41:af:cd:5c:a5:4e:23:8b:9f:51:d8:00:72:93:80:d4:
85:9f:79:ba:3b:0e:ea:f3:6d:79:20:49:be:eb:87:c5:e4:9b:
90:73:a8:df:c0:3f:9b:45:b3:8e:96:79:6d:20:c1:98:db:3a:
1b:f8:4e:31:16:ba:29:e0:57:dc:32:c4:d8:0f:d2:e2:39:6b:
b2:6c:3e:a2
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUdfhmZOLZTMGwahS8gG9zfdEINnswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNDA2MDAwMDAwWhcNMjQwNTExMjM1OTU5
WjB6MUkwRwYDVQQFE0BiYTljNzQ0MDA2OThiZDhjYzc0NjI4MTFlZDg2ZWNlNWUx
MjU0MGNlZWE4ZTk3M2NiMDQyMjNkNTk2ZWY4YmI0MS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQD7eH1y+u67rPgk+h4ob5zUgkQ9LcMdsFmibYPacit6U3rD
G0+mSR+GGfQQ9uHM5p6BrNxBr68NLLA2efK1hlgXAWpDSalTFlnfsouF5fs/smMZ
Z2w2+EHWz1EC9mrZBksC9m0u7J1jExN5yUUrcx6d72YvX26VkTZyXXZXXqvI2Y2y
GZ5mrkmFXVNW8fNm8jOAU3CLFKSBELcK532KKdvaRBiuiUhhLZ4BuYN4qwhdLOVv
bZd4nqMB0WFno9E3R9id4W1m5fKAPfd9HVkNKdcx74BaQmIfE6hqRfg7zjQEegXj
O1MRWeL8iyRd3lfrk2NcjslB6U7+IJ7mXaoiVKCRAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU92wiNeXEYdjmM6CEvraom0HKQXkwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzAxNmU0MjBhLTkxNGUtNGU5ZC04MTJiLTYwNTYwZWU2MGRmMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAGHVbY5BlbBkfhbw5BdfxholNz6K
kYE6HXva5LxDn/0eLlpvCqXGPK4v+aK6SqAfO7y7Vcic28P7mD5UH9xX/ObBHwAG
US6LEzUT84DB2pX1CXS1/FQ85DdyDLR0y6YA8VGgWcUZgyXb80uwlijLc6zBVtS9
L/66m4coqbeCRivXIPBjOiK+CBUHwKYaQRxZsGg5FH214T1s7bOG9fB6XGHgEMTX
pd71ufaN00pXkA5P2S3OelzrQa/NXKVOI4ufUdgAcpOA1IWfebo7DurzbXkgSb7r
h8Xkm5BzqN/AP5tFs46WeW0gwZjbOhv4TjEWuingV9wyxNgP0uI5a7JsPqI=
-----END CERTIFICATE-----
Generated at Sat Apr 6 20:08:01 2024 by rpki-client on console.sobornost.net