Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2acb4796-e0db-4196-b6b1-256984f02741.roa
File: 2acb4796-e0db-4196-b6b1-256984f02741.roa (raw, json)
Hash identifier: Idd7C4RcoxyoPh9aZagZ30341amL1K2XtV+FMUlaomY=
Subject key identifier: 14:F5:24:41:9A:65:64:B4:77:EC:59:16:F0:6B:3F:6D:88:A8:41:D9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 3936A179F1B4F00484E020AA9765B717431DF08F
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2acb4796-e0db-4196-b6b1-256984f02741.roa
Signing time: Sun 02 Jun 2024 00:00:00 +0000
ROA not before: Sun 02 Jun 2024 00:00:00 +0000
ROA not after: Sun 07 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 03:53:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:36:a1:79:f1:b4:f0:04:84:e0:20:aa:97:65:b7:17:43:1d:f0:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 2 00:00:00 2024 GMT
Not After : Jul 7 23:59:59 2024 GMT
Subject: serialNumber=8ada8127e9c1797060aa0de1fae508029d4aaec13f45218b4492452f2971d301, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:90:53:04:2f:85:7d:92:e4:a3:ae:ca:b0:61:
18:c2:21:c9:7d:f6:6d:22:5b:55:f2:9e:06:85:b7:
d5:30:9f:a8:bf:4c:90:c0:ff:6b:4a:df:cf:8e:d7:
0e:3f:f5:18:dc:c2:3e:f0:fb:58:ba:d6:18:11:2a:
44:85:e0:83:4d:e2:fd:6b:99:e4:24:da:ea:03:ea:
4d:a1:2e:87:dd:85:df:71:35:b7:57:52:ae:41:4e:
8e:2c:aa:82:92:09:65:fd:14:3d:ba:73:34:27:48:
72:39:7d:ee:59:a7:32:06:04:9f:9b:f8:80:a6:b1:
44:5b:b4:49:72:d3:a9:41:a7:33:33:86:9e:1d:f9:
48:f1:2f:de:0d:38:39:f0:ad:c6:e5:10:84:55:bf:
db:16:ed:d6:b9:68:48:27:66:96:b5:f0:fd:d9:6d:
c0:4d:7a:42:58:08:49:ec:f4:aa:af:3b:2a:34:c2:
12:d1:bf:d5:72:03:d4:6a:88:f0:cf:4a:f8:a7:88:
e3:b5:a0:ad:a2:61:c7:92:20:24:3d:16:80:a5:c2:
88:9e:4b:9c:65:f0:4b:62:7d:a2:3e:b6:11:09:d1:
d4:84:1c:2b:a9:8e:c3:9e:1b:ab:93:98:2b:b7:d9:
e8:0c:a6:5c:ab:9d:16:3d:0b:62:89:17:e6:ef:2a:
a5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F5:24:41:9A:65:64:B4:77:EC:59:16:F0:6B:3F:6D:88:A8:41:D9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2acb4796-e0db-4196-b6b1-256984f02741.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:1c:a5:3d:e0:03:e3:e8:f0:70:55:96:dd:af:4b:d5:11:39:
90:c4:9d:12:9a:f3:15:1f:a2:c9:0b:0b:bf:3e:5b:67:0c:60:
cf:7b:3f:e1:a6:b3:85:4d:3a:94:44:36:a6:06:da:15:bf:9f:
f3:1c:00:f2:fc:37:77:36:f2:0d:0b:87:1a:0f:2d:2d:dc:9a:
13:73:2b:6d:bd:fe:a3:2a:42:5f:58:2e:14:ba:5b:51:7b:4b:
93:c3:a3:ef:2d:5d:0a:80:07:f1:42:ed:d0:ac:cd:76:74:ae:
0e:fd:e6:0f:1f:dd:a1:98:6f:a3:0b:31:7a:36:5d:95:fe:d8:
81:61:6a:f8:7a:81:b9:d6:2d:ca:ee:bf:fc:ef:27:4e:2b:ed:
d2:e2:20:ea:69:e6:67:40:f2:2c:a3:cb:a7:dc:26:c2:e4:5a:
55:16:e2:97:dc:e1:57:46:18:07:9d:60:e5:13:14:d3:6f:04:
f8:f3:d6:ba:d7:7a:44:93:2c:74:eb:4c:e0:11:f6:31:3f:62:
4f:7c:e8:42:aa:dd:7a:fb:bf:4e:74:64:ed:42:0b:5b:4b:4b:
5e:2f:12:59:7e:7b:67:d7:16:4d:4c:54:e5:dc:e0:a9:cc:3a:
a5:3a:47:10:71:c6:24:a9:31:0d:e6:79:b7:e4:24:78:9f:c7:
e3:15:fd:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 13:21:49 2024 by rpki-client on console.sobornost.net