Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0b53a10c-96c2-472e-abf3-56c7708611bf.roa
File: 0b53a10c-96c2-472e-abf3-56c7708611bf.roa (raw, json)
Hash identifier: 16QGN5DvA8fq/RCx3Qt555GWsIDKCiE1ujL303Xg4M0=
Subject key identifier: A0:F4:3F:C3:6D:68:5B:0F:CA:A2:E2:1E:AC:9A:1E:53:64:EB:D3:D6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3D16461B7224F7B1C29B5E0FFA374DB3B4B83DCA
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0b53a10c-96c2-472e-abf3-56c7708611bf.roa
Signing time: Mon 27 Nov 2023 00:00:00 +0000
ROA not before: Mon 27 Nov 2023 00:00:00 +0000
ROA not after: Mon 01 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:16:46:1b:72:24:f7:b1:c2:9b:5e:0f:fa:37:4d:b3:b4:b8:3d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 27 00:00:00 2023 GMT
Not After : Jan 1 23:59:59 2024 GMT
Subject: serialNumber=0b4a90cfe7d1ab77ce5f7f344eb6355e347a868bb2147620a9d98c3b5626645f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:18:c4:69:f7:eb:d5:ac:91:9c:10:98:52:c6:
31:11:84:de:cd:b3:61:bb:ae:56:78:8c:c3:1b:19:
80:43:e1:24:fd:8c:5f:d6:bc:1f:c8:90:fc:09:c1:
38:ef:bf:96:3a:c2:8e:58:65:7a:54:cd:6d:ce:16:
be:cb:f6:f9:48:5d:be:4d:45:1e:1e:4b:3a:a9:ac:
72:c0:cf:56:92:64:f7:a1:e7:ca:e5:5a:dd:4d:d8:
2c:a0:8b:c2:3d:e4:50:d8:06:a0:b6:11:25:7f:83:
03:fe:6b:3e:a9:83:e3:8d:08:1f:d4:18:12:47:fc:
a8:96:26:6a:ee:6a:98:5b:fe:59:79:57:81:14:0a:
04:0c:e9:df:aa:55:a7:f2:c4:55:4e:4d:09:ef:f6:
49:4f:a4:be:f4:5f:2a:8e:95:c4:52:63:8c:a1:1f:
43:af:c5:b1:45:f3:32:96:da:99:ee:6f:44:a4:b2:
de:4d:28:7c:a2:c9:fd:c5:5f:26:46:0f:35:c8:7c:
bd:10:90:20:53:05:60:d3:93:35:dd:6b:c5:25:52:
26:67:9c:c6:9c:92:9a:e7:3b:d7:eb:ae:1a:6b:00:
7c:f2:b5:ff:c9:74:5e:86:d7:8e:b8:b7:89:7a:64:
e6:f9:b5:2d:15:3d:da:5c:e1:dd:df:ee:f2:3d:9c:
bc:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F4:3F:C3:6D:68:5B:0F:CA:A2:E2:1E:AC:9A:1E:53:64:EB:D3:D6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0b53a10c-96c2-472e-abf3-56c7708611bf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:71:67:45:f9:58:e0:5f:01:71:2a:66:16:9c:08:5c:e3:5a:
f0:87:b2:d6:f5:53:9d:04:77:b9:ad:b4:fc:18:2b:e2:95:08:
d4:cd:e1:78:d0:ec:77:6c:c7:3d:19:c2:71:3f:95:d8:c4:5c:
31:30:fc:59:5e:05:30:3b:ab:dd:00:e1:5b:f6:80:91:23:94:
0c:0b:2b:c0:50:b6:78:cb:11:2a:f3:91:e2:28:22:fe:d5:7c:
6b:e6:14:48:d4:95:d3:5c:eb:62:a9:34:c3:60:23:e0:ae:28:
24:ad:a9:b6:0a:77:a2:6a:4f:60:78:28:0b:a6:23:49:ae:d7:
ae:ec:12:70:ae:fa:e7:a8:a4:3d:e0:9a:53:e6:b1:30:0b:d6:
3c:3c:6d:fe:a1:95:f4:bb:a6:19:fa:fa:3d:81:a2:be:5e:ac:
61:e5:63:66:2c:6e:de:a8:d3:e6:d1:5c:38:55:f7:f2:61:3e:
b4:d8:14:10:6c:fe:53:21:57:3e:6f:06:b9:1a:ac:8a:8d:5a:
29:31:41:3e:8d:2c:2a:d1:ef:0e:0d:56:6e:bb:95:f1:fa:d4:
33:10:25:ea:61:5a:ab:06:cf:88:4b:70:6c:50:da:0e:08:c8:
cd:07:8b:65:91:1c:d3:d9:af:b9:3c:b5:32:06:38:49:7b:2c:
0a:38:b8:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:07 2023 by rpki-client on console.sobornost.net