Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/99a34dd2-6e96-43c6-b059-33be151e2e00.roa
File: 99a34dd2-6e96-43c6-b059-33be151e2e00.roa (raw, json)
Hash identifier: c5RcqO+xJJ6PrGEqefXVWvirzF/zTnl/xLYCXhxTXeM=
Subject key identifier: 19:78:96:0A:2B:B3:7F:35:45:B6:47:16:93:D3:C6:03:00:FC:48:51
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 52BE7C6DA8100077E2576A1E921D4C9426B308B8
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/99a34dd2-6e96-43c6-b059-33be151e2e00.roa
Signing time: Fri 24 Nov 2023 00:00:00 +0000
ROA not before: Fri 24 Nov 2023 00:00:00 +0000
ROA not after: Fri 29 Dec 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:be:7c:6d:a8:10:00:77:e2:57:6a:1e:92:1d:4c:94:26:b3:08:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Nov 24 00:00:00 2023 GMT
Not After : Dec 29 23:59:59 2023 GMT
Subject: serialNumber=86896bbd6562610eb2c4c41d2b87cb29aa7e0addfbeb10e633d7ee82665f265c, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:08:97:47:af:17:85:45:a9:4d:6e:06:f1:a1:
26:6c:ea:72:ee:dd:3a:f3:15:90:7f:62:da:5a:ed:
4a:70:6c:bc:a2:1d:55:72:58:c1:77:e1:b1:64:08:
6f:59:e8:77:30:e9:6c:c0:f0:c6:10:12:4e:55:37:
53:f3:5c:80:1a:9e:5b:70:62:55:a4:8b:a0:1c:45:
74:e6:e7:18:d4:68:ea:72:f6:22:02:f6:79:97:15:
55:d1:c0:93:9c:e1:cc:de:90:4f:48:dd:82:76:f5:
3c:f8:43:ea:35:93:b2:cb:bd:46:aa:bc:b1:28:2f:
04:66:c4:03:28:01:25:a6:29:f9:9b:d7:8b:56:16:
58:c3:31:e5:76:4f:a5:73:b0:4f:2b:40:a8:5b:35:
13:dd:14:33:31:15:3b:81:d3:2b:4e:eb:4f:40:3a:
80:f5:fe:ae:e0:e9:f6:42:e1:44:4e:1f:2d:8e:b7:
45:5c:de:d3:5d:70:f7:19:6a:c3:98:ee:72:25:47:
1f:a3:36:2a:89:10:88:33:e8:0d:2c:06:d6:b8:4a:
48:e2:90:92:ec:a5:c5:e5:b5:83:f0:be:10:74:ef:
6a:00:f2:41:4b:4a:c6:d4:c5:1f:26:b8:8a:8b:cd:
4e:c3:ef:cb:10:68:86:f1:5f:30:b8:e1:ba:fb:01:
cc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:78:96:0A:2B:B3:7F:35:45:B6:47:16:93:D3:C6:03:00:FC:48:51
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/99a34dd2-6e96-43c6-b059-33be151e2e00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
07:26:a9:e8:d8:e9:78:b6:08:c9:2d:e9:bd:01:80:c3:ec:e7:
c6:d4:b3:5b:31:04:88:3f:76:05:6f:86:71:7c:3d:7e:25:93:
c4:7c:fe:a3:82:a0:84:da:8d:1b:ef:ce:58:e7:65:06:c2:a7:
a1:76:a3:02:88:a1:e5:e5:d1:63:30:0e:ef:96:f5:3d:f0:7b:
73:a3:76:72:57:ff:a6:93:96:a7:89:02:6a:bb:fc:3f:fa:ec:
b2:23:37:6e:e9:aa:0e:ef:b1:66:0f:54:33:5e:9b:00:a5:e0:
5e:c6:77:4f:48:1e:b9:f5:fd:8b:66:d9:f1:40:1e:6f:2c:ed:
17:2d:0e:b7:e6:03:8a:a2:ac:fa:a3:47:aa:72:d7:2d:8c:99:
19:fc:1d:f6:0d:0e:ad:c7:5a:cf:e8:53:83:01:27:ed:38:72:
a9:5e:40:87:b3:14:cc:bc:00:21:2b:17:3a:0a:0e:62:1d:c3:
24:bc:11:c9:75:47:cd:ca:3e:7b:2c:83:c8:9e:12:e5:72:ce:
3a:e2:a8:c8:4d:46:06:72:85:85:24:1e:81:98:24:9d:d9:83:
28:a5:f8:f1:15:81:6e:2d:5e:cb:71:b9:44:24:92:73:47:ea:
0a:6a:2b:ec:7b:2c:39:ae:fe:62:f2:d5:6f:d0:a7:9b:84:86:
12:d3:e2:75
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUUr58bagQAHfiV2oekh1MlCazCLgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjMxMTI0MDAwMDAwWhcNMjMxMjI5MjM1OTU5
WjB6MUkwRwYDVQQFE0A4Njg5NmJiZDY1NjI2MTBlYjJjNGM0MWQyYjg3Y2IyOWFh
N2UwYWRkZmJlYjEwZTYzM2Q3ZWU4MjY2NWYyNjVjMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDYCJdHrxeFRalNbgbxoSZs6nLu3TrzFZB/Ytpa7UpwbLyi
HVVyWMF34bFkCG9Z6Hcw6WzA8MYQEk5VN1PzXIAanltwYlWki6AcRXTm5xjUaOpy
9iIC9nmXFVXRwJOc4czekE9I3YJ29Tz4Q+o1k7LLvUaqvLEoLwRmxAMoASWmKfmb
14tWFljDMeV2T6VzsE8rQKhbNRPdFDMxFTuB0ytO609AOoD1/q7g6fZC4UROHy2O
t0Vc3tNdcPcZasOY7nIlRx+jNiqJEIgz6A0sBta4SkjikJLspcXltYPwvhB072oA
8kFLSsbUxR8muIqLzU7D78sQaIbxXzC44br7AcxzAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUGXiWCiuzfzVFtkcWk9PGAwD8SFEwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2Lzk5YTM0ZGQyLTZlOTYtNDNjNi1iMDU5LTMzYmUxNTFlMmUwMC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAAcmqejY6Xi2CMkt6b0BgMPs58bU
s1sxBIg/dgVvhnF8PX4lk8R8/qOCoITajRvvzljnZQbCp6F2owKIoeXl0WMwDu+W
9T3we3OjdnJX/6aTlqeJAmq7/D/67LIjN27pqg7vsWYPVDNemwCl4F7Gd09IHrn1
/Ytm2fFAHm8s7RctDrfmA4qirPqjR6py1y2MmRn8HfYNDq3HWs/oU4MBJ+04cqle
QIezFMy8ACErFzoKDmIdwyS8Ecl1R83KPnssg8ieEuVyzjriqMhNRgZyhYUkHoGY
JJ3Zgyil+PEVgW4tXstxuUQkknNH6gpqK+x7LDmu/mLy1W/Qp5uEhhLT4nU=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:04 2023 by rpki-client on console.sobornost.net