Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b5e304dd-8543-42a6-9678-a473ee9da2e6.roa
File: b5e304dd-8543-42a6-9678-a473ee9da2e6.roa (raw, json)
Hash identifier: AEjzXURjpbL3VAFTHJEIdDI7VM3pYk7H1oUTesVE6aE=
Subject key identifier: 08:CF:7F:72:05:F5:57:C1:CE:B4:02:19:70:78:59:F2:95:1B:2B:44
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 03770638FB6963942523F4A9D8939869F1AB448B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b5e304dd-8543-42a6-9678-a473ee9da2e6.roa
Signing time: Thu 28 Dec 2023 00:00:00 +0000
ROA not before: Thu 28 Dec 2023 00:00:00 +0000
ROA not after: Thu 01 Feb 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:77:06:38:fb:69:63:94:25:23:f4:a9:d8:93:98:69:f1:ab:44:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 28 00:00:00 2023 GMT
Not After : Feb 1 23:59:59 2024 GMT
Subject: serialNumber=f8d80ca8efb9148a31f4abfdb90d690c76631df8c915e711caac6f8df69cbb65, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3b:de:f7:1b:e6:3b:b3:5e:73:2d:ab:fa:59:
54:0e:a7:bb:6c:2d:df:7d:08:37:ca:be:95:46:2e:
7e:da:2b:d3:0b:99:aa:32:79:1f:e2:c4:0f:b0:1d:
44:f3:dc:42:c5:a9:29:35:3a:57:dd:b6:e3:ff:d8:
cb:6d:f9:eb:56:1e:2c:7b:19:d8:a0:e5:ff:20:bc:
79:98:7e:cf:d0:a1:fd:e5:5c:13:10:68:5b:35:e7:
d5:fc:fd:e5:f9:9b:38:52:53:54:21:be:49:8a:99:
0d:0e:66:9c:a2:7b:07:51:71:58:63:e5:dc:76:4f:
e2:f8:45:72:55:c6:b8:65:7c:ab:24:c6:d9:21:30:
3a:ad:5a:ac:28:c2:dd:c7:99:62:98:12:ae:17:00:
3a:a4:ed:8f:7b:e1:d2:ab:17:06:6b:aa:f5:f8:45:
b0:99:8c:67:10:e2:58:4c:6c:3b:f6:62:0e:40:e6:
fb:3f:11:4d:ff:5f:c5:7d:f7:78:c9:05:89:a2:74:
6f:ef:6b:12:6f:d0:c4:0a:ee:8e:dd:15:f2:96:96:
50:a9:ab:43:c0:3c:ad:79:2c:4b:0a:7b:22:b0:94:
32:c3:d1:9c:68:aa:57:97:50:4c:d2:f1:08:bd:c3:
94:54:5b:ad:ad:f2:d0:46:d7:90:a7:5c:14:81:3b:
fd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CF:7F:72:05:F5:57:C1:CE:B4:02:19:70:78:59:F2:95:1B:2B:44
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b5e304dd-8543-42a6-9678-a473ee9da2e6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ba:59:57:13:a2:c9:d4:f1:43:01:9c:8e:27:2f:be:eb:0f:
10:47:2f:cb:7d:a0:cb:06:1e:bf:c9:ee:6d:ff:10:22:b6:9b:
7a:a3:4c:06:d6:7d:eb:b0:77:d5:1a:9b:bd:17:c4:7c:9e:58:
ed:59:2c:43:0a:a4:b5:66:37:69:19:ba:35:b3:e7:ed:ae:51:
91:85:85:dd:84:14:3b:e5:fb:b7:68:dd:d3:3e:ab:95:1d:95:
f8:ad:69:8f:b4:78:87:cc:5a:ce:1c:02:34:10:54:2e:0a:80:
e0:5e:c9:bf:13:2f:a2:2b:78:b6:ad:77:bf:a7:32:3d:99:83:
0e:bb:90:7a:51:2d:a0:0f:95:d7:36:72:8b:92:10:50:ef:24:
7f:7f:ac:53:c4:27:0d:1a:b2:06:b3:4b:82:a9:c9:b8:8c:56:
1a:a7:6d:b4:36:a0:50:4a:44:4e:28:66:84:51:6f:23:a4:d0:
f6:1b:88:48:73:95:e6:a0:3a:e9:e9:3a:ca:b6:16:29:7f:ca:
97:19:c0:4b:52:e1:5c:8f:49:7d:39:37:04:19:96:23:99:ea:
f3:07:c2:c2:b3:35:76:1b:63:5d:db:19:9d:94:f0:6a:7e:db:
eb:63:65:62:72:06:85:a2:20:23:71:29:e6:21:28:f0:5b:aa:
bf:d2:0b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 28 11:22:04 2023 by rpki-client on console.sobornost.net