Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7fa95f3-e128-42c6-a65f-01c167316aed.roa
File: b7fa95f3-e128-42c6-a65f-01c167316aed.roa (raw, json)
Hash identifier: SNToWspRIQ3AKpiEWBujnPXh9kGKpaJWYSxwd3tEhK0=
Subject key identifier: 03:EA:FE:88:14:7A:3F:7C:4A:EF:B5:70:C5:38:1D:F9:1E:45:D9:4A
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 72EA674C0F968BA8079D621861A4435D80B47DF2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7fa95f3-e128-42c6-a65f-01c167316aed.roa
Signing time: Tue 27 Feb 2024 00:00:00 +0000
ROA not before: Tue 27 Feb 2024 00:00:00 +0000
ROA not after: Tue 02 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 04:25:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:ea:67:4c:0f:96:8b:a8:07:9d:62:18:61:a4:43:5d:80:b4:7d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Feb 27 00:00:00 2024 GMT
Not After : Apr 2 23:59:59 2024 GMT
Subject: serialNumber=9c4e2a2ef4049bdf946eb9c561b9a4a48b8b5f8b280efdea481b2085b95c1f07, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:69:05:62:bd:1f:7d:39:4b:71:0b:d0:db:08:
23:f5:dd:84:52:9b:6a:33:7e:9a:07:99:3f:7d:66:
28:fb:c8:4f:c3:04:e0:6c:93:72:06:f7:88:eb:38:
e8:26:c2:0c:14:7b:b2:2d:e7:97:60:87:c8:21:10:
cb:fc:5e:01:a4:ff:39:24:ed:3b:ab:8d:94:7d:59:
25:f9:93:c4:30:79:b8:9e:44:7a:ba:a6:e3:2b:ec:
12:54:31:72:aa:a9:ee:68:1f:9b:dd:fc:0d:c3:18:
e5:c0:76:0b:d3:58:de:f8:cd:e2:03:7d:3c:06:78:
b1:4e:17:2d:c3:f9:b1:4b:25:44:80:ac:a3:0c:51:
3b:1e:26:5e:91:4e:93:65:b0:31:c7:d6:4f:eb:82:
f5:d5:de:fd:03:66:b8:30:73:8e:42:ec:ba:6a:e0:
46:b9:95:51:0d:87:ae:b6:85:20:a8:34:a4:97:9c:
12:f3:75:e1:89:3a:ee:af:d9:5f:01:8c:9c:c6:0e:
5a:64:ac:aa:50:9f:aa:8f:e2:8e:dc:8b:df:62:e3:
9a:3a:13:f9:de:94:75:85:90:e9:e9:5e:d6:35:13:
bd:aa:5a:47:6c:2b:65:e8:f7:cf:2a:aa:f8:80:12:
e7:5d:26:d7:9d:4f:67:38:80:71:f3:26:b9:6e:58:
f8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EA:FE:88:14:7A:3F:7C:4A:EF:B5:70:C5:38:1D:F9:1E:45:D9:4A
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b7fa95f3-e128-42c6-a65f-01c167316aed.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
72:d6:8a:5d:e5:9d:cf:d9:79:dc:eb:1e:60:f5:4e:81:56:e2:
85:a5:fa:82:ae:ba:c0:08:87:ea:ca:06:5e:ce:72:14:c6:44:
11:98:14:8a:d0:99:34:1d:64:13:23:64:8a:8e:eb:93:fa:8b:
58:c7:d6:73:8d:36:2d:5f:b1:6b:c3:ca:eb:5b:db:35:cc:35:
2f:ef:11:d0:e1:f4:1a:4e:fd:c7:a0:35:75:2b:eb:72:15:01:
7b:0d:c9:9c:32:d9:21:44:90:15:3a:6a:7d:76:eb:81:ad:a4:
06:c0:8f:d9:a2:f0:be:87:93:16:3b:c2:ef:6e:3c:4d:ad:bb:
d3:6f:1f:d7:0f:e1:98:31:f9:26:26:02:af:92:a1:92:e9:d1:
55:62:97:b2:6c:ee:f9:13:6b:59:09:74:e8:85:0c:8b:6a:17:
d6:d7:4c:bb:5f:23:65:da:73:ab:a9:9c:ad:66:db:9e:80:b4:
07:2e:72:3a:38:48:ce:58:2f:32:0e:87:1f:db:07:dc:5e:3f:
4e:90:3e:56:36:a4:fa:06:a9:49:1b:12:39:75:12:07:25:92:
f0:ab:a8:e4:7d:3f:3e:8e:1c:a0:73:1f:49:28:5f:ff:f7:ee:
02:42:bc:92:9f:92:34:e5:9c:ba:3c:9e:bf:bd:c6:b7:6d:82:
53:8a:fc:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 05:58:53 2024 by rpki-client on console.sobornost.net