Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25a3bb85-9451-4474-9c50-a7613744098d.roa
File: 25a3bb85-9451-4474-9c50-a7613744098d.roa (raw, json)
Hash identifier: MG1Cj32DgwUstkQHrMytq2qJ2N1EKVRpQcpjvpUmz0s=
Subject key identifier: B0:FD:12:AE:39:C8:A3:7B:B5:2C:0F:5B:AE:4B:59:CC:53:BA:70:23
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 60C674AF6492A3CD448D78DA0586530E99735CE9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25a3bb85-9451-4474-9c50-a7613744098d.roa
Signing time: Mon 27 Nov 2023 00:00:00 +0000
ROA not before: Mon 27 Nov 2023 00:00:00 +0000
ROA not after: Mon 01 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:c6:74:af:64:92:a3:cd:44:8d:78:da:05:86:53:0e:99:73:5c:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 27 00:00:00 2023 GMT
Not After : Jan 1 23:59:59 2024 GMT
Subject: serialNumber=eebb9aef3c19b51a7cdcad766c5705888fb7bfa47513952d7b56e182d42047eb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1a:b4:8f:22:df:b1:dc:12:60:f4:67:3b:d9:
13:4a:11:49:1e:97:92:88:6a:c1:c4:d6:7e:7f:c2:
fd:c6:a2:f5:96:d8:76:cf:a7:55:88:92:3f:e1:91:
d1:8e:16:60:d0:31:1d:38:4c:bc:20:66:da:ab:3f:
0f:44:28:5e:99:1a:de:88:b9:0f:b1:1f:77:a3:ab:
36:fa:2f:ff:d4:d1:ef:30:f0:de:2c:1a:e4:ec:30:
1e:a6:65:9b:c4:fc:a7:99:42:50:b0:15:08:97:4b:
32:a8:90:fd:8c:52:13:fe:c6:ef:a1:69:fb:36:02:
22:d1:dd:c6:7c:85:98:92:75:b6:a7:68:86:9c:94:
6c:bd:62:a0:25:04:6a:e0:53:3a:5b:37:14:a6:62:
b1:56:04:8e:fe:81:ec:a4:da:58:26:46:8f:fb:d1:
de:0c:76:33:d1:05:ba:d4:f4:c8:40:23:32:6e:71:
55:39:30:79:7d:7b:df:a2:14:cf:82:54:16:13:a9:
8a:3e:89:06:9e:15:0d:d3:99:32:bc:a2:cd:fb:33:
a3:10:d2:7c:20:34:82:f9:86:e6:55:9e:62:db:cd:
dd:0d:85:f0:7f:76:30:be:fd:7d:e6:44:04:74:05:
05:ac:c7:8a:90:78:4c:a1:1f:d5:db:55:44:3b:d2:
36:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FD:12:AE:39:C8:A3:7B:B5:2C:0F:5B:AE:4B:59:CC:53:BA:70:23
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/25a3bb85-9451-4474-9c50-a7613744098d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
71:11:e7:e4:94:17:6e:ff:9d:4d:fb:31:81:5e:23:bd:37:93:
14:ea:72:db:16:fc:7f:a8:0e:ba:29:42:4f:92:bd:d9:30:92:
38:3d:9a:3d:30:fd:a1:52:09:22:b7:79:e9:74:d6:12:79:ef:
40:eb:04:6e:3d:73:fc:5f:bc:a0:f9:a8:23:1a:ba:fd:d6:76:
2e:e1:98:cf:fe:5f:02:d2:47:6b:1d:cf:2f:9a:61:85:bb:65:
62:dc:a3:83:23:a9:1f:56:7f:78:b0:24:8c:aa:25:c5:05:7c:
e6:97:f4:f6:2e:d7:a6:a6:e1:cc:1d:94:b5:ea:d6:7e:cc:08:
3c:4d:2f:c1:88:2f:80:a2:34:8e:81:74:22:5a:6a:0d:ba:a6:
a6:19:05:b8:ff:89:41:ab:78:53:a5:3f:cc:17:ea:06:42:8a:
96:21:ea:47:51:bc:37:db:87:a3:64:2a:f8:f8:9e:82:38:bb:
09:55:54:46:fb:d3:9d:b8:22:be:d0:df:75:6d:39:36:16:c4:
5f:42:29:a3:02:95:6c:4e:0f:7a:42:fb:13:b9:1a:a1:f9:36:
57:cb:39:0a:0c:fa:d4:af:b3:65:69:2f:52:4c:34:f6:0b:ad:
c8:de:de:45:de:1d:8c:04:d5:0d:db:b7:0a:eb:7d:99:65:f0:
6e:90:45:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:12 2023 by rpki-client on console.sobornost.net