Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/636a399b-6e59-4f43-b946-be26fa5383b1.roa
File: 636a399b-6e59-4f43-b946-be26fa5383b1.roa (raw, json)
Hash identifier: 1wiZtmEwvyT9/mvUCfOEiTjJS6FKx3YDiOL/EyBprrI=
Subject key identifier: AD:CC:F0:34:3A:4C:06:F1:A1:0B:FB:C9:1E:E1:06:0D:97:B2:EC:C6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 34E2844EB8A87D277243B571AB89EC191924B951
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/636a399b-6e59-4f43-b946-be26fa5383b1.roa
Signing time: Fri 19 Apr 2024 00:00:00 +0000
ROA not before: Fri 19 Apr 2024 00:00:00 +0000
ROA not after: Fri 24 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 11:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:e2:84:4e:b8:a8:7d:27:72:43:b5:71:ab:89:ec:19:19:24:b9:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 19 00:00:00 2024 GMT
Not After : May 24 23:59:59 2024 GMT
Subject: serialNumber=af7b458be73d45879f55d911b28db40f50949fe9b637736066332e4e4e1df8a7, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e6:83:29:27:30:f1:15:34:74:f6:68:45:c0:
db:da:3c:44:90:20:b3:57:0f:08:f6:53:08:cc:19:
be:dc:21:06:d0:3a:7c:ea:25:6f:9f:62:35:b5:ec:
23:10:ff:0b:76:aa:08:cb:6d:59:79:b5:cc:60:3e:
d8:9e:b1:52:a9:2e:ba:aa:7c:34:fd:6e:e5:d3:62:
cc:98:23:41:37:2c:3a:3c:94:93:bb:12:20:2b:20:
c9:65:e5:cb:ca:a9:98:36:bd:6b:3b:04:ba:80:cf:
d0:18:de:a5:7b:d9:e2:ad:c3:03:80:74:00:d0:a0:
8d:18:7b:ea:ad:c5:29:27:c4:29:49:5d:ee:be:85:
cf:bf:9f:6f:3b:7d:87:2a:16:77:7d:58:44:38:08:
2a:73:f9:b7:00:d7:24:ce:83:33:f8:94:35:7e:06:
d4:bc:36:53:f4:9a:e2:10:21:55:07:6b:bd:f4:2a:
31:0b:fc:99:a4:26:d5:fb:cb:ba:8d:13:2e:85:2f:
a1:43:87:d1:56:0b:e1:a5:92:f8:44:32:75:b8:19:
e2:c6:79:b1:a0:26:df:fc:ec:5a:a2:50:83:ad:da:
99:05:a2:f2:9d:91:ba:2d:54:0f:7f:ec:ed:39:2e:
3d:eb:74:f0:c5:55:af:33:48:1e:64:ae:a5:16:e3:
26:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CC:F0:34:3A:4C:06:F1:A1:0B:FB:C9:1E:E1:06:0D:97:B2:EC:C6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/636a399b-6e59-4f43-b946-be26fa5383b1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
78:22:07:67:a6:0b:11:40:9d:2d:ea:52:c4:01:68:ea:9f:5e:
ed:49:d6:10:5e:fd:70:cc:22:b3:35:e1:22:e4:f6:4d:f6:c3:
bf:12:00:1a:29:65:80:59:ab:dd:1c:03:9b:4b:55:5e:16:e6:
90:03:c8:83:14:3b:dc:47:a1:a4:07:8f:5e:52:59:3b:9f:c2:
f7:fc:79:01:cd:4e:05:e1:37:3c:fe:c5:4b:24:58:3b:5c:1d:
be:ae:cf:01:b2:42:5b:8c:3b:5a:b5:e2:67:2d:7f:ee:3c:55:
c7:d2:be:ad:55:7b:39:03:27:15:b6:55:13:8f:34:60:45:03:
86:38:46:36:62:aa:69:7c:a6:d1:3f:ab:cc:fb:0f:86:1c:2e:
05:d8:05:d3:3f:2c:11:46:e8:58:1a:60:90:b3:5d:c4:b8:c6:
7b:ea:b2:69:31:7c:df:19:82:d3:63:b6:9f:19:15:e5:c1:01:
a8:d8:94:a7:48:55:a5:1b:47:49:59:91:39:0c:ef:50:f7:a3:
43:4b:be:79:e9:fa:b0:09:cc:76:78:5b:b7:3d:35:99:19:26:
de:48:20:e2:7a:6c:a0:eb:61:29:bc:3b:3e:85:7e:8d:12:63:
94:ef:63:15:33:28:44:d0:ef:40:1a:61:26:ba:4b:7e:04:e3:
83:1f:f3:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 13:04:02 2024 by rpki-client on console.sobornost.net