Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/18ecf38c-a577-451f-99c1-642b389fa257.roa
File: 18ecf38c-a577-451f-99c1-642b389fa257.roa (raw, json)
Hash identifier: J06k6CBEZHudoJ5TFq5B+ZYcVTrYbXlLsO3uDoP7H60=
Subject key identifier: 7B:41:49:87:E6:C5:2B:75:76:F0:BE:C8:23:30:3B:0E:C1:9C:A1:F5
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0CBE3CFCA9D025B22126D46B92C1E3655D54BB
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/18ecf38c-a577-451f-99c1-642b389fa257.roa
Signing time: Sat 30 Dec 2023 00:00:00 +0000
ROA not before: Sat 30 Dec 2023 00:00:00 +0000
ROA not after: Sat 03 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:be:3c:fc:a9:d0:25:b2:21:26:d4:6b:92:c1:e3:65:5d:54:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 30 00:00:00 2023 GMT
Not After : Feb 3 23:59:59 2024 GMT
Subject: serialNumber=72b3ee74c17e7bb69b9a0bc6d4e0913b6cb689d0881dfdd0959e12c035317f19, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f0:bf:ce:4e:81:ea:0d:bd:2d:08:c8:c5:7f:
df:f3:e4:2e:1b:9f:e2:f1:32:40:ef:09:38:06:ef:
fc:98:1a:94:f0:28:1b:41:01:f6:56:e0:5c:ce:a8:
e4:11:66:9c:6a:ad:86:e0:27:cb:0a:d2:24:e7:9f:
36:64:e0:a4:43:5d:a3:43:07:cb:2a:a4:01:60:23:
1e:88:0f:0a:43:86:9b:48:29:c3:20:bb:35:b3:1b:
ab:d7:a8:e0:d6:d4:85:13:2f:b9:8e:a9:d7:9c:43:
f5:df:da:a0:06:cd:55:fb:95:a7:86:8f:90:f8:1e:
a6:2a:12:18:af:0b:52:4b:25:d8:18:5f:0d:45:d5:
e4:81:1b:da:55:c2:6d:b5:e7:1e:cc:28:f8:d7:22:
a5:9f:8e:c8:f0:f8:53:58:1d:7e:f8:81:0b:d8:8f:
cc:79:20:11:ac:4f:20:c1:48:85:31:9a:99:f3:f1:
bc:f9:46:37:11:e9:c1:82:7b:f7:6b:38:77:fa:93:
8b:4b:08:f5:31:cd:b4:8a:3f:0b:0b:ad:a8:e3:8a:
4d:e9:8e:23:8f:f8:67:ca:05:17:74:18:d2:fc:5d:
6e:2c:ca:c2:e3:0b:96:ff:81:fa:8f:cd:07:68:84:
02:9c:48:f0:ef:e6:24:ea:17:c3:75:7a:a4:80:4e:
5c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:41:49:87:E6:C5:2B:75:76:F0:BE:C8:23:30:3B:0E:C1:9C:A1:F5
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/18ecf38c-a577-451f-99c1-642b389fa257.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:5f:e4:78:38:8e:57:df:2d:6a:37:1c:3e:25:15:c2:5b:1b:
d2:8f:5c:54:92:50:78:90:c8:79:01:66:bf:c1:33:ef:64:ad:
cb:2d:5e:a2:5f:8a:62:3f:c9:3e:9b:92:cc:ae:8e:5e:72:a6:
7e:be:b8:11:c2:5b:2b:41:8f:19:b7:9c:59:c4:d0:29:76:3f:
07:d8:00:e6:da:da:d1:10:40:82:a0:f9:26:8d:24:ae:c7:2d:
5a:f9:d8:c4:99:f4:e5:bd:d1:d2:51:1b:fc:e5:38:67:17:17:
de:33:97:dc:91:bd:b8:68:0c:7c:4c:16:42:ab:2a:0e:b0:b8:
82:bd:38:18:06:52:24:ba:05:c4:2c:5e:3a:cd:f0:a4:05:83:
e5:a4:f6:06:33:7a:83:d5:42:f9:da:cc:6c:e6:13:56:c2:b9:
28:50:c1:c8:70:de:53:f2:1e:a7:d4:9d:05:71:e0:b4:01:93:
78:d0:63:ac:a9:5f:bf:8e:6f:65:5d:f3:3d:23:43:8a:bd:25:
f5:8b:eb:e6:36:dd:a1:47:1f:07:8c:32:e9:96:bb:f4:07:83:
7e:6e:2c:40:c5:2f:58:4f:01:d0:b9:6b:bb:1f:d2:5f:c1:8e:
ad:29:a3:b8:e7:60:6e:59:0b:6d:82:14:07:ad:13:7b:46:21:
bb:6c:9a:e3
-----BEGIN CERTIFICATE-----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Generated at Sat Dec 30 18:46:27 2023 by rpki-client on console.sobornost.net