Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1d838896-b65c-4ebd-b014-d6c33557e7fc.roa
File: 1d838896-b65c-4ebd-b014-d6c33557e7fc.roa (raw, json)
Hash identifier: zvySx66GUAD6uh3ZeTSnk3DdUE24cqWxLokkseHoQ1s=
Subject key identifier: FB:86:B5:0E:9F:09:6D:11:5E:18:E8:5C:5F:DC:F5:F2:67:D2:4B:8F
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5F91DB640F7D4A346DA52E2CC504BEEC7FBCE937
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1d838896-b65c-4ebd-b014-d6c33557e7fc.roa
Signing time: Wed 28 Feb 2024 00:00:00 +0000
ROA not before: Wed 28 Feb 2024 00:00:00 +0000
ROA not after: Wed 03 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 13:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:91:db:64:0f:7d:4a:34:6d:a5:2e:2c:c5:04:be:ec:7f:bc:e9:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 28 00:00:00 2024 GMT
Not After : Apr 3 23:59:59 2024 GMT
Subject: serialNumber=ce3544b68c4dc33f7df66f3ae362f7cb77c0bae02c60f397dbe41ec69b9c08f9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e3:df:9e:a5:5c:39:6c:a6:6d:b7:78:72:5d:
e7:2f:e4:cb:5e:5e:06:4c:c7:77:2a:18:68:1c:5f:
ce:45:13:a3:c0:49:21:dd:52:0b:77:19:aa:6d:be:
6d:76:d4:f1:a6:e1:a9:1c:8d:6e:84:8d:8c:08:ee:
5a:59:86:fa:d9:e4:0d:a1:19:cc:d2:88:b7:ba:c2:
81:e6:ac:b6:a6:3a:80:27:49:fa:cd:2c:7f:a9:60:
55:00:aa:c4:06:d0:1e:46:4a:75:a2:2d:50:77:f1:
a1:49:47:0b:04:a3:e2:a2:21:2b:4d:58:7d:97:e1:
e5:2b:eb:ff:48:01:9a:8e:b3:9c:ed:94:c0:a6:9d:
a5:dc:0a:44:4c:dd:db:85:00:94:95:dc:93:50:b2:
bc:ec:07:8a:47:7c:cb:67:0f:d8:41:d2:7d:b0:10:
01:a9:50:9f:61:24:0b:a6:1e:e7:28:88:22:2c:2e:
a2:c9:d8:ba:fa:b2:98:ea:02:ed:42:b4:85:db:b5:
43:86:35:c7:34:d4:ba:d7:e0:d6:92:da:7e:7c:a1:
58:c5:18:3d:70:72:bc:0d:05:e7:69:b6:bf:fa:b2:
cd:61:88:39:0c:cf:0b:dd:cb:f4:16:26:b6:a7:f2:
b7:1f:0f:24:32:d3:c0:7a:c8:40:f6:e6:7c:35:43:
75:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:86:B5:0E:9F:09:6D:11:5E:18:E8:5C:5F:DC:F5:F2:67:D2:4B:8F
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1d838896-b65c-4ebd-b014-d6c33557e7fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
96:21:a5:b7:3f:8c:a1:74:3a:81:e9:9a:54:da:95:52:01:f4:
38:aa:8c:70:d8:53:4b:ab:39:6b:f0:08:6e:fb:ce:90:9a:21:
53:36:f2:8c:8e:0f:51:e3:ab:45:a9:f9:77:84:a3:54:05:08:
fd:fe:98:b0:eb:07:b6:95:8a:9f:6f:48:6b:69:99:13:4c:d5:
f7:cb:19:e5:1e:df:db:17:0c:53:3f:5b:e3:e2:dc:22:53:0b:
05:d3:c9:75:10:7c:85:cc:16:59:6b:4c:1e:81:58:99:2d:60:
67:8a:e0:0c:b7:99:30:8a:dd:7b:86:ec:5f:92:fa:7d:d5:fc:
26:6e:44:5a:e2:53:27:01:33:80:14:cf:95:d5:18:d9:ff:dd:
5b:c7:43:05:86:52:af:ab:1b:4c:a5:d4:18:77:26:0d:48:40:
f7:b9:ff:f0:e2:69:7b:e3:08:bb:6f:df:c6:19:b3:9e:e7:db:
68:5a:5e:21:cb:a2:e6:86:62:92:a3:52:e6:68:ae:d2:48:14:
f3:eb:c5:f8:b7:85:77:97:bc:7d:9a:80:90:eb:27:22:0e:69:
48:2d:9c:a0:e2:ef:c4:42:35:9d:fb:c4:6a:c5:d5:eb:e9:1e:
89:41:a5:95:04:b7:3e:a8:4f:93:4d:46:47:e6:d8:62:34:f2:
5e:15:25:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 28 16:28:21 2024 by rpki-client on console.sobornost.net