Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a53b2314-8ca1-407a-91e4-1bc624453165.roa
File: a53b2314-8ca1-407a-91e4-1bc624453165.roa (raw, json)
Hash identifier: o4XiWoSg+jiNH6Dzjo1NufWVgKOvi1z0Hot2qdPrTOs=
Subject key identifier: 12:95:C4:91:CE:E8:58:7F:FC:98:90:ED:05:8E:F8:78:E5:90:B9:A4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5A982866987D7C508BB8BC644DBE1DEF06006B6A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a53b2314-8ca1-407a-91e4-1bc624453165.roa
Signing time: Sat 09 Dec 2023 00:00:00 +0000
ROA not before: Sat 09 Dec 2023 00:00:00 +0000
ROA not after: Sat 13 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:98:28:66:98:7d:7c:50:8b:b8:bc:64:4d:be:1d:ef:06:00:6b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 9 00:00:00 2023 GMT
Not After : Jan 13 23:59:59 2024 GMT
Subject: serialNumber=b3d0b22faa4571de024f540d1e8e5c3e6b4ae8d583645d2500ebead226119514, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:67:da:ed:c2:2c:68:a3:d9:fc:8c:36:fc:0b:
57:fb:03:43:89:72:51:0e:29:2e:bc:7a:ef:29:fc:
b2:c4:de:76:a2:97:a6:ea:2a:07:b0:fa:b6:a6:a7:
24:8d:48:68:d7:40:9d:cb:21:e5:87:c3:70:b2:be:
7c:36:82:15:b9:b8:cf:b0:8e:98:7c:1b:6a:11:36:
84:bc:ef:47:40:f1:f0:69:b7:16:fa:58:a4:5e:1d:
6b:97:00:87:0e:1a:47:ae:5e:46:24:26:29:e5:5a:
38:f5:3f:fb:cc:55:37:80:c2:7d:1f:f5:9d:34:f9:
5b:89:9e:9e:35:8d:17:94:90:68:c7:05:a9:4f:0b:
33:57:cc:1b:68:bb:9d:80:92:58:4b:ac:54:7f:9c:
1a:27:e0:3e:4d:cc:f7:f2:35:90:48:84:bf:fd:55:
b6:a0:49:88:95:1b:7a:fb:b5:be:35:cd:6c:95:2f:
75:6b:5f:d8:a2:f2:83:e0:80:09:2b:14:46:ca:e1:
20:cb:64:76:9c:e7:97:77:ff:e7:be:61:04:96:c9:
26:42:25:cb:ba:23:3d:f8:2b:ec:c6:e9:4d:15:f6:
35:e7:82:2e:c0:23:bd:f5:95:55:4d:0f:03:fe:c3:
1e:5e:39:25:00:06:54:30:8c:fd:8b:aa:fa:39:26:
12:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:95:C4:91:CE:E8:58:7F:FC:98:90:ED:05:8E:F8:78:E5:90:B9:A4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a53b2314-8ca1-407a-91e4-1bc624453165.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
03:cf:44:ee:5f:81:fc:69:00:c2:52:eb:64:5c:08:d9:a4:2e:
37:41:76:ea:17:10:fa:d3:a7:ae:51:65:47:09:f3:f4:84:52:
7e:c0:29:de:49:d5:f3:35:e6:3b:1f:e2:40:01:1a:78:af:f9:
d2:8c:7c:e3:3c:35:7f:ea:ed:f2:f7:05:60:ad:f0:e2:7e:c8:
cd:5d:35:1f:3d:57:67:bb:18:84:db:a7:cd:c5:38:d6:19:e3:
9f:48:f1:48:7e:2b:04:85:e7:53:cf:68:5c:a2:80:d9:da:83:
97:05:0a:c1:78:c5:ba:64:98:e2:67:f6:06:f8:c7:ac:8d:0b:
24:a7:63:91:c6:9c:b4:d0:5f:ea:bd:ac:2a:bb:88:19:59:a6:
0b:82:f6:7b:ad:38:63:cc:93:fc:b1:6c:b1:7d:6e:d9:53:1e:
70:51:c0:f3:27:72:b3:76:bd:c3:e6:b7:1f:e8:88:4b:9f:24:
a5:4b:33:70:68:cd:c4:4e:9a:9b:5d:52:6c:74:48:ad:93:c6:
06:fb:cc:0a:ba:24:80:54:01:0d:97:e8:e0:6a:f6:39:cb:e6:
70:3a:af:8d:d6:ad:3a:e5:a2:17:46:04:23:88:f0:ec:a0:c0:
cc:55:fa:d6:56:16:af:79:82:77:3d:0a:c5:e0:9c:27:1b:98:
ef:60:2d:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:07 2023 by rpki-client on console.sobornost.net