Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/39a3d939-f639-4be7-af5e-83b3f4f1fa28.roa
File: 39a3d939-f639-4be7-af5e-83b3f4f1fa28.roa (raw, json)
Hash identifier: vUbyMhZniy/oCQUuzvwU9e4IksDaQCvKJOFUHRI4ZnU=
Subject key identifier: A1:F2:C0:77:48:90:6F:0B:DD:A1:2A:17:0D:09:FD:21:31:A8:EC:43
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 38DD779FD102D3325EDBEA007FE6E233D8415682
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/39a3d939-f639-4be7-af5e-83b3f4f1fa28.roa
Signing time: Sun 31 Dec 2023 00:00:00 +0000
ROA not before: Sun 31 Dec 2023 00:00:00 +0000
ROA not after: Sun 04 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:dd:77:9f:d1:02:d3:32:5e:db:ea:00:7f:e6:e2:33:d8:41:56:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 31 00:00:00 2023 GMT
Not After : Feb 4 23:59:59 2024 GMT
Subject: serialNumber=7b254945b9375e99a789aca556dc4879e3a3970ff9d5e5fe99149bc558c15bb7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:be:8a:d3:ab:38:d8:50:34:d4:51:e0:cd:5f:
2f:29:aa:10:e4:e0:47:83:5f:aa:f4:a0:e2:90:45:
eb:93:82:08:3b:c8:4f:2e:68:8a:94:04:be:b4:ca:
fb:18:a5:91:46:80:44:da:65:f3:01:c4:70:c2:0f:
75:8d:2c:c6:bf:f9:f8:dc:f2:71:81:6a:e2:e6:48:
27:8b:58:a7:0e:96:99:e4:92:4f:95:df:e5:e9:ae:
9f:8d:0d:56:2e:20:45:8b:74:9c:83:09:c2:62:c9:
13:df:7b:82:a4:aa:bb:ba:ea:7a:86:04:5c:31:84:
9a:bc:36:38:ad:95:81:b5:2e:3f:ae:c1:57:de:32:
fa:de:95:55:ee:53:49:7e:57:d2:07:f5:65:9f:03:
66:fb:dd:e8:e2:2e:1c:f9:3a:7a:ab:31:35:58:a9:
b2:37:0d:17:6a:54:2d:99:3c:da:a8:c2:22:7b:0a:
9b:69:54:2f:2c:8a:9d:fe:06:5a:ed:57:1b:48:09:
ed:36:74:68:b0:cb:99:d1:e4:4a:d2:8f:85:77:f2:
dd:37:08:4f:d7:0c:a6:47:c2:ba:95:46:a0:39:c0:
aa:d0:b7:0d:fc:98:2e:af:cc:7f:10:b3:4c:7b:cb:
11:bc:b1:f6:dd:7d:37:62:da:d8:7b:04:78:84:eb:
59:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F2:C0:77:48:90:6F:0B:DD:A1:2A:17:0D:09:FD:21:31:A8:EC:43
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/39a3d939-f639-4be7-af5e-83b3f4f1fa28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:4a:7c:6f:df:89:32:ce:3d:ae:6b:60:07:c0:3b:e8:7e:a0:
87:3b:62:cc:ba:7d:21:7d:71:95:4d:17:b4:e0:78:9a:b7:db:
ba:7d:25:c9:1c:4d:33:17:fa:9b:61:b4:97:f1:ed:7f:4c:e7:
0a:fc:34:54:37:a2:cb:8c:17:12:6d:de:2d:95:f2:9a:e2:54:
69:ea:89:49:92:bc:37:52:8b:ff:c9:01:b6:d6:14:8e:9e:8c:
cc:79:4a:1b:44:92:5c:09:64:c6:94:b3:f1:37:03:ad:4b:66:
6f:c0:64:34:49:e7:6b:36:16:ae:c1:81:f6:8e:02:b5:ae:98:
3a:dd:e6:3e:89:7e:83:ed:4a:8f:d9:71:91:67:66:ea:ce:be:
3a:fc:09:06:af:91:8e:ca:18:40:14:33:de:2a:70:02:27:57:
d6:bd:8a:c8:00:b7:7d:ce:48:55:69:ee:79:f7:7b:49:f8:f0:
30:87:3e:2d:c1:2b:d3:48:1c:f8:30:dd:aa:1d:b4:21:d4:85:
b8:ec:df:fa:bd:bd:b4:e9:e8:7d:92:65:df:91:1c:e8:31:bd:
56:35:9e:23:e3:9a:1d:9d:bd:f9:ea:ea:bc:8c:b5:d1:b2:ff:
2d:16:45:db:71:ea:a9:f5:3a:83:14:7c:a5:50:c7:d6:4a:97:
60:70:18:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 31 20:41:33 2023 by rpki-client on console.sobornost.net