Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6083657c-1718-420d-ad2e-828795d066e2.roa
File: 6083657c-1718-420d-ad2e-828795d066e2.roa (raw, json)
Hash identifier: MXl0LRp/XfopyAS+RocDGGa7b9lGFJMKPn2EmyMvrcI=
Subject key identifier: 71:5C:29:3A:A0:73:64:D0:A5:42:B3:C8:DC:F9:E3:7F:DF:CD:95:A3
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 084E3279174C116DC8BE1FC46DA835FE3B716C
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6083657c-1718-420d-ad2e-828795d066e2.roa
Signing time: Wed 27 Dec 2023 00:00:00 +0000
ROA not before: Wed 27 Dec 2023 00:00:00 +0000
ROA not after: Wed 31 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:4e:32:79:17:4c:11:6d:c8:be:1f:c4:6d:a8:35:fe:3b:71:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 27 00:00:00 2023 GMT
Not After : Jan 31 23:59:59 2024 GMT
Subject: serialNumber=7bb3e310b429fe03e0441205bd3b5941d366c2565c032d7614bee7c8145faf00, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ef:7a:5a:04:62:ba:6a:0d:5c:2c:1a:3c:4f:
ee:da:8e:74:2f:03:f0:14:74:58:70:76:2c:cc:4c:
5c:7e:f6:2c:93:b8:4e:9d:2b:66:d1:c2:05:b2:9a:
63:e3:92:68:ef:8c:d2:6d:35:62:22:f0:dd:f0:94:
11:75:54:93:48:b5:72:6c:e5:b5:ce:72:01:09:0c:
38:e0:f6:d9:f4:c5:85:c0:3e:35:33:8d:7d:11:99:
65:b5:ed:b9:d3:08:e9:b0:52:e0:69:27:94:c1:b1:
c2:f8:e2:ea:a1:83:4b:2c:2c:41:4c:3b:6d:d6:c1:
f9:a9:9e:d1:73:95:35:6d:b6:5f:b2:83:61:aa:08:
5f:8f:72:ca:92:fb:5b:a6:38:31:0c:6e:a7:d5:7b:
84:dd:1f:49:c5:53:9d:e4:db:b9:3f:af:24:47:c0:
06:a0:84:51:a0:98:c0:37:e0:b6:ab:a8:96:a6:3f:
cd:3e:3f:24:2b:ad:38:35:c0:03:61:fd:4f:2f:d6:
a7:c3:18:a0:0d:9f:fc:50:71:8c:64:d1:f1:b0:f4:
71:53:a1:ce:b9:56:f3:23:dc:0a:2d:17:64:d9:46:
50:61:c2:b8:db:f8:c5:28:be:94:c9:89:1e:b4:4d:
76:a6:8b:d7:50:7a:75:05:85:30:be:fd:9a:16:f3:
1b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:5C:29:3A:A0:73:64:D0:A5:42:B3:C8:DC:F9:E3:7F:DF:CD:95:A3
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/6083657c-1718-420d-ad2e-828795d066e2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:ea:89:75:79:75:93:ee:8f:13:57:b3:5d:82:1f:a0:d5:b8:
1b:42:09:38:b8:17:bf:e3:66:99:76:bf:23:5e:36:e2:27:4e:
8c:68:bd:3f:c9:0c:74:e8:11:64:31:5a:70:a9:0b:6d:93:bc:
81:73:d7:ce:44:d2:68:ad:03:86:0c:6c:9b:a3:db:35:cd:35:
06:49:65:90:2b:95:b6:75:45:76:71:6a:d2:49:79:55:7d:f2:
45:88:d0:6e:5f:30:33:59:a5:bc:12:43:98:aa:d0:cc:d1:d5:
a4:8e:ce:5f:8e:0c:30:e9:e9:09:e4:ce:e8:b5:18:b8:38:c9:
e7:06:d0:a5:84:49:06:42:30:35:b3:78:ad:9b:19:d4:3b:54:
a3:5b:77:1b:fb:0d:85:d9:72:ad:6a:23:0d:da:96:7d:1a:b3:
44:99:cb:07:75:01:5c:c6:58:fc:ca:c3:11:b4:80:3c:89:31:
a4:9e:bf:75:5e:59:f1:f7:28:24:18:b1:80:a9:fd:b9:71:22:
ce:fd:61:75:1e:07:a0:2b:af:5d:16:21:f5:6c:65:e0:63:32:
21:34:4c:1d:5e:e7:28:0f:13:0f:bb:47:cb:92:60:b9:cc:62:
c8:d4:27:e9:63:9a:90:e0:01:c3:63:a2:65:38:9b:bd:b5:e4:
98:38:c7:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 10:14:27 2023 by rpki-client on console.sobornost.net