Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8e967210-4244-461c-9b1d-801d47799678.roa
File: 8e967210-4244-461c-9b1d-801d47799678.roa (raw, json)
Hash identifier: J8zYsProGClIwgUIaE6GeNFZVwUNBhReaXA0/KGNCSs=
Subject key identifier: CC:96:07:4F:09:40:ED:2B:6B:1D:86:41:B6:B2:62:94:C2:7F:5E:C7
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 675CD4F1DB0E3662237FC3189513E9BD556ABF83
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8e967210-4244-461c-9b1d-801d47799678.roa
Signing time: Sun 17 Dec 2023 00:00:00 +0000
ROA not before: Sun 17 Dec 2023 00:00:00 +0000
ROA not after: Sun 21 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:5c:d4:f1:db:0e:36:62:23:7f:c3:18:95:13:e9:bd:55:6a:bf:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 17 00:00:00 2023 GMT
Not After : Jan 21 23:59:59 2024 GMT
Subject: serialNumber=c78afdb50bdd2d3417aba316223c80a3187502d481ee560362e9d6c7e8215912, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bf:aa:ee:84:27:b4:04:f8:57:c6:a4:12:95:
87:fc:3b:cc:68:7d:e8:e6:9f:9e:66:4d:8c:b6:4a:
bf:fa:ae:d2:7f:bc:97:d1:87:d8:07:07:e3:da:b6:
12:18:8e:51:67:40:45:2a:f3:5c:32:2d:42:47:ba:
28:cd:a5:8c:7a:d8:b5:de:f0:2f:93:75:7b:13:c6:
cb:58:1f:8a:66:83:90:05:88:34:21:69:67:a4:ee:
88:25:d3:9c:0e:a9:07:ae:5e:c9:20:db:da:47:ff:
0a:c0:d0:b3:3a:c1:d2:ff:f1:62:55:f5:48:97:1f:
38:ed:dd:cb:a9:70:3b:e0:e5:24:51:d2:d2:4d:17:
fe:83:bc:86:39:d1:45:be:37:d9:7f:37:55:da:c4:
e6:84:d8:86:0e:ea:4d:1d:6e:9a:56:21:60:f6:17:
d1:b6:54:b4:01:43:ce:91:a2:4f:d8:3e:c9:a6:1b:
87:82:14:ed:18:20:db:1c:6e:04:82:a2:7d:f9:a1:
83:4c:77:d3:a4:d9:b1:ad:d4:8c:36:b7:53:6c:dc:
76:66:9b:fd:77:88:3b:d8:0c:39:19:87:e8:ef:46:
c0:f5:59:68:c2:00:19:30:47:15:f8:82:f1:64:f7:
7d:6a:e4:01:78:fd:46:ce:a6:21:c1:f0:7e:28:dc:
04:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:96:07:4F:09:40:ED:2B:6B:1D:86:41:B6:B2:62:94:C2:7F:5E:C7
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/8e967210-4244-461c-9b1d-801d47799678.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
71:a8:88:bd:0b:d8:48:96:a1:b7:61:93:11:55:c8:d9:67:80:
c4:44:6b:0b:5e:dd:97:2c:59:51:42:15:35:65:07:30:fe:a0:
e4:e5:8f:fd:70:88:98:43:52:38:81:22:c6:c9:f5:56:85:3b:
33:9b:a6:d4:9f:d7:8b:7c:09:d0:8f:98:51:cf:c5:1c:c5:91:
af:f8:2f:3c:42:94:36:fa:7d:a4:8b:52:1d:3e:b7:94:07:0b:
a8:6f:2c:cc:15:7e:27:ab:8d:b3:1c:64:38:65:29:78:f5:7b:
5b:06:ab:96:eb:a0:fd:a1:42:1f:c5:5e:52:5e:a9:3e:8a:2a:
0f:55:bc:70:72:0c:c2:3d:53:5d:3c:90:56:3a:24:4b:9e:f1:
b9:d3:0a:dd:e4:b2:80:a5:0a:da:fc:1d:46:45:b6:bf:1c:27:
74:28:40:a7:7a:0d:ea:19:ce:64:4f:78:34:0a:e3:09:0b:65:
8e:89:62:64:31:4d:c9:99:b5:76:af:14:b2:d7:95:28:7e:3e:
13:ea:e9:ea:54:66:df:8a:44:90:55:e0:67:83:12:c7:43:a2:
85:c0:c7:e5:7e:d2:83:95:8e:97:84:87:40:bb:b3:c2:87:57:
ce:5a:8d:9a:c6:a3:89:78:88:91:50:da:08:60:10:da:2e:30:
c4:31:08:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:02 2023 by rpki-client on console.sobornost.net