Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/40951330-fd41-4a0f-ba99-d525c8779058.roa
File: 40951330-fd41-4a0f-ba99-d525c8779058.roa (raw, json)
Hash identifier: hPfZwRt9Pf+kj6SVcrS6bTkME3N5qBFE+m3v0APJzL4=
Subject key identifier: E9:B6:AB:73:72:EB:D7:95:C5:3A:78:78:C6:41:5F:2E:11:B0:AA:43
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2123D000DD4539788C9F08D07216EBC824070F0B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/40951330-fd41-4a0f-ba99-d525c8779058.roa
Signing time: Mon 02 Sep 2024 00:00:00 +0000
ROA not before: Mon 02 Sep 2024 00:00:00 +0000
ROA not after: Mon 07 Oct 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 19:08:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:23:d0:00:dd:45:39:78:8c:9f:08:d0:72:16:eb:c8:24:07:0f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 2 00:00:00 2024 GMT
Not After : Oct 7 23:59:59 2024 GMT
Subject: serialNumber=fd1066028d14da9e2d3d2e2b7ba343a339d534ee56f5965ab713f3e3f2726469, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:30:68:e1:0e:cc:a8:48:ca:1f:ce:2a:89:8d:
c5:ab:91:46:1d:73:61:5f:2c:63:f9:5a:87:80:be:
ed:cf:be:19:7c:40:15:af:00:49:da:b9:4a:cb:7b:
69:02:31:98:2e:75:3d:b4:41:ff:c8:4d:a9:12:ec:
73:2a:dd:9d:b8:85:f6:9c:fe:8b:a2:a3:84:fb:74:
5c:78:38:b3:7b:f2:a8:97:dd:95:c3:62:80:98:39:
8e:bb:2b:25:f4:90:71:65:73:9d:55:63:b1:dd:72:
f8:8c:56:1f:41:c5:e5:51:cd:d0:b8:7f:f7:35:89:
1a:4b:06:47:50:3d:55:9e:3f:55:4a:83:07:14:dc:
8a:ff:5a:bb:95:7b:ee:cc:a2:a6:0f:a3:43:c1:cb:
42:08:a9:30:be:93:75:e8:49:88:21:5a:07:ae:26:
9b:74:24:93:78:21:bf:0e:db:22:80:a4:a3:15:45:
91:d2:af:df:33:e2:54:53:6b:90:78:b9:bc:57:c7:
24:73:42:d7:cb:60:fe:90:df:6e:ab:e2:6a:f1:ee:
9b:9f:58:7e:dc:88:7e:0c:f0:2d:cb:00:55:b8:fd:
ce:3b:d4:4c:45:05:a7:51:0b:38:eb:35:44:23:b4:
13:1c:5e:ae:cb:e6:d1:ab:01:53:cf:f5:28:54:0c:
dc:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B6:AB:73:72:EB:D7:95:C5:3A:78:78:C6:41:5F:2E:11:B0:AA:43
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/40951330-fd41-4a0f-ba99-d525c8779058.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:c5:4b:28:76:80:10:17:e5:7c:68:35:32:57:a6:61:b6:73:
04:f1:ac:e2:5d:80:c6:45:03:e8:4b:ce:0c:e3:15:0a:03:86:
24:95:87:eb:0e:ad:f4:ab:cf:83:03:ee:88:c6:1c:89:7f:dc:
70:b7:2c:12:ab:a0:41:ec:ee:28:f5:e8:b3:01:7e:95:c1:e8:
f2:6b:e9:27:0e:69:7a:37:53:8a:26:e9:49:e1:46:83:10:8b:
27:ff:3a:9e:95:f8:8d:b5:ce:15:f4:e7:df:f5:c6:52:ba:ca:
b2:78:ef:be:7e:59:09:c2:e5:9d:29:9f:c7:58:fe:92:bc:83:
a5:26:6c:24:0c:c0:a2:3f:ab:3b:ae:8e:73:b8:58:a7:d7:14:
99:c1:5a:c8:cc:73:19:fb:77:82:c3:fd:60:2d:ef:46:d5:53:
1a:8e:c9:1e:18:25:51:32:c8:0b:aa:e6:e0:11:40:3b:36:4c:
62:99:ca:c5:eb:ff:68:dd:ba:0e:52:7d:0a:44:bb:b5:c0:b6:
96:68:c0:43:1a:d2:5f:27:c3:bb:bd:52:34:c0:4b:90:cd:b0:
18:38:0f:19:4a:66:92:a3:a5:ba:8b:45:89:b8:4c:00:69:5f:
e5:b6:34:fa:7e:f9:15:f1:93:c9:87:cb:91:fa:f5:62:5d:36:
22:9d:1a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 00:47:51 2024 by rpki-client on console.sobornost.net