Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3989e740-5920-4a8f-899f-674b80f21e68.roa
File: 3989e740-5920-4a8f-899f-674b80f21e68.roa (raw, json)
Hash identifier: oQ1tIltTElQLUqtbbGIaVNcLC9uu6o5BkzPo7Eo4+Rk=
Subject key identifier: B7:70:B8:42:DE:21:27:79:DA:4B:C6:23:5E:36:37:1C:3A:09:38:97
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 0FAE9F4DF0521E6F40FA73E7590F8DE218D470D9
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3989e740-5920-4a8f-899f-674b80f21e68.roa
Signing time: Sat 02 Dec 2023 00:00:00 +0000
ROA not before: Sat 02 Dec 2023 00:00:00 +0000
ROA not after: Sat 06 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:ae:9f:4d:f0:52:1e:6f:40:fa:73:e7:59:0f:8d:e2:18:d4:70:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 2 00:00:00 2023 GMT
Not After : Jan 6 23:59:59 2024 GMT
Subject: serialNumber=03042879658d63d4314461a217cc8a97bc93b2d0149904f765796358e284be5a, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c2:fb:f3:53:49:5d:58:33:5d:0e:fb:c1:5d:
32:64:ad:89:7b:c1:81:bd:38:32:b9:e6:4f:d2:7d:
81:cc:78:1e:53:08:ff:6a:69:cf:18:d3:39:e1:7e:
48:26:f7:83:30:d3:a1:bb:d2:61:00:70:bf:76:4e:
72:00:a7:9e:fc:a4:90:ec:37:9b:e4:b3:4f:cb:a2:
40:9a:80:4a:84:db:fd:60:2e:b7:8c:2f:99:8a:ef:
aa:1e:cb:37:49:3c:72:cd:5a:d1:c6:2b:37:3e:53:
b4:ae:36:bf:4c:c6:96:2c:e2:58:11:26:2e:09:35:
8a:8c:f5:04:bd:13:44:b5:6c:76:9e:25:3c:05:50:
d5:90:be:97:84:3e:91:46:40:e5:51:2c:a5:9f:e9:
c6:39:01:d9:11:c5:f0:e3:61:3c:c4:69:0a:fd:fd:
bc:c6:01:5c:0e:7d:5f:f7:72:63:57:d8:e8:ae:13:
87:70:48:55:f7:48:1a:c5:cc:eb:d6:51:d7:08:8e:
d5:6f:56:ce:1d:de:86:28:69:6c:23:b3:a0:59:6a:
98:ef:74:23:d4:9f:04:00:5f:12:ef:e4:03:f0:ad:
cd:61:7b:27:21:b9:c3:5b:42:b4:60:2a:9c:13:b0:
9b:09:a6:99:f2:03:7c:99:b5:1f:cc:0e:43:5d:c3:
a9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:70:B8:42:DE:21:27:79:DA:4B:C6:23:5E:36:37:1C:3A:09:38:97
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/3989e740-5920-4a8f-899f-674b80f21e68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:a1:7b:84:7b:04:de:32:86:18:68:c9:18:42:e6:64:ff:c6:
41:39:79:f2:6b:81:15:32:ee:04:1e:9f:1f:f5:03:02:1d:e3:
61:42:fd:e5:c0:71:81:80:ec:82:bf:b1:b0:88:97:45:f0:53:
bb:7d:dc:1c:3f:90:16:17:72:e0:be:c4:ef:62:0a:f4:5d:c9:
69:75:f5:72:e9:a5:fe:14:bd:58:b2:16:ad:25:01:63:fb:18:
ff:b4:d2:37:5d:e0:0a:0c:9d:da:8e:85:39:29:fd:57:a6:63:
29:7a:9a:7e:46:b9:a7:6c:34:e7:62:71:ef:69:7e:13:55:f6:
5d:5b:3d:df:8b:a2:99:3e:a3:ff:37:8f:69:f7:3e:bf:c9:03:
4b:97:6b:5e:2e:d3:fd:47:b1:ad:64:3b:9b:5e:30:ee:fe:e7:
76:37:87:b1:71:09:df:80:f0:ff:8f:27:30:90:43:72:75:b0:
a2:64:f3:d8:42:12:49:17:cd:35:ab:36:ef:20:94:30:94:b6:
2f:ae:84:e4:ec:99:d6:e9:1a:65:5f:62:2e:5d:da:3f:29:0b:
35:dd:6b:13:c5:f6:f1:b5:c5:95:37:dc:b1:b7:47:3c:62:3c:
18:70:49:f5:8d:f0:dd:f6:05:3d:91:a5:43:3a:29:81:ce:96:
e1:76:d6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:14 2023 by rpki-client on console.sobornost.net