Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ba2d5bcb-8be2-450a-a871-c98124f464bd.roa
File: ba2d5bcb-8be2-450a-a871-c98124f464bd.roa (raw, json)
Hash identifier: vuAz0PrP8XwZQatS364/3Lde92DGDlYGMqAirCBrvQ0=
Subject key identifier: CE:32:29:FE:84:35:1D:87:69:9C:B9:00:33:8A:0F:2A:61:F0:E6:70
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7B2EF8B2D43E313DDF960E104EA8C0CFB23EB134
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ba2d5bcb-8be2-450a-a871-c98124f464bd.roa
Signing time: Wed 13 Dec 2023 00:00:00 +0000
ROA not before: Wed 13 Dec 2023 00:00:00 +0000
ROA not after: Wed 17 Jan 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:2e:f8:b2:d4:3e:31:3d:df:96:0e:10:4e:a8:c0:cf:b2:3e:b1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Dec 13 00:00:00 2023 GMT
Not After : Jan 17 23:59:59 2024 GMT
Subject: serialNumber=24e6cbf98e0a3d8848e360cbce0d47bf47354b3c660cccc2e37feba1f975886f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b7:98:49:c4:33:1c:18:57:ca:a7:13:5b:38:
aa:79:44:82:86:c9:cf:80:16:de:f5:28:47:c7:93:
21:bf:9b:aa:36:41:c4:12:84:e7:30:12:eb:b8:4d:
48:d1:2f:fc:97:01:02:c1:44:ac:75:8f:21:2b:92:
4a:b4:d2:b5:6b:df:1f:70:e7:65:50:cd:02:99:11:
51:ab:17:75:19:6b:8d:fc:0f:c3:3f:ff:93:11:0b:
3e:eb:7b:2a:45:10:b6:cb:69:02:b8:0e:f4:f0:01:
51:9e:81:d9:77:25:1f:33:c9:d6:7a:6d:35:a5:fb:
1e:4a:8c:a4:a4:fd:88:b9:b0:9c:b9:fa:e0:af:33:
70:60:d2:0f:ff:a2:a4:2e:9d:b3:34:8c:21:b7:85:
32:b8:7a:07:45:f6:fc:9b:a1:1a:42:8e:16:a1:88:
c2:e6:ad:31:66:ab:43:44:7f:b9:5e:f2:97:e3:38:
d2:5a:67:71:41:73:a6:77:f4:98:8b:13:6c:0b:bb:
52:77:7d:26:34:e3:c8:93:ab:1f:66:a1:c1:6a:e2:
e8:75:2e:d0:b1:63:d0:4d:97:84:0b:00:01:ed:80:
9c:fc:4a:99:0b:27:d0:47:32:69:09:d9:c4:d9:d3:
9e:d7:ad:eb:92:4b:06:b2:1c:6a:2c:be:5f:0d:30:
63:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:32:29:FE:84:35:1D:87:69:9C:B9:00:33:8A:0F:2A:61:F0:E6:70
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/ba2d5bcb-8be2-450a-a871-c98124f464bd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:00:6d:73:b7:de:87:bf:46:45:5b:e8:64:5f:a0:83:9c:4a:
74:72:86:a2:28:e2:fc:41:a9:f9:86:93:63:d8:c4:f5:c3:25:
23:86:4d:a1:9c:fb:38:42:c4:c7:d2:81:b2:97:2b:e6:74:98:
18:48:f7:a3:b0:56:e3:84:b4:d9:2a:e9:22:64:6a:dd:c7:9a:
b7:2a:9b:ce:f0:bc:a4:be:7b:78:5d:d4:b5:a2:2b:1b:a6:2a:
07:bd:6e:96:d7:82:a8:46:fc:12:14:88:78:69:76:a6:f1:6a:
0d:5e:f2:0c:33:c5:3f:e0:21:f8:3c:b7:d7:44:30:f4:36:2d:
39:73:44:26:fd:f6:36:d0:2e:c4:4a:b1:1e:91:9c:cb:b6:58:
3a:7a:8d:1a:dc:ec:74:c3:01:5c:bf:64:70:98:fb:5a:da:59:
76:8b:c8:c6:e5:5d:65:ff:20:ae:bb:f5:9a:d1:4c:21:32:a0:
a1:e4:f8:d3:49:f9:68:b3:47:16:4f:2d:27:ed:5d:79:07:bd:
29:5b:36:89:ef:ee:d4:7b:cd:ca:22:1e:21:b3:b2:29:ef:71:
ee:c0:8b:88:0f:79:08:88:83:d3:82:75:1a:91:41:be:6a:20:
f5:49:05:70:aa:83:51:46:04:5e:ab:7e:bc:29:63:bc:bc:89:
b9:ef:60:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:11 2023 by rpki-client on console.sobornost.net