Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bc239587-5037-4265-bc8a-dc34928f21c0.roa
File: bc239587-5037-4265-bc8a-dc34928f21c0.roa (raw, json)
Hash identifier: 76MESWuIGBW6lwPq3DDLwvhcG61SheRSvTYynCWIgVc=
Subject key identifier: 88:0C:BE:28:9C:61:2C:86:07:2D:B0:C4:B9:75:8C:AE:77:54:7C:B9
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7B3E3351D912F99D824C84F9C7AFCB19AA766C64
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bc239587-5037-4265-bc8a-dc34928f21c0.roa
Signing time: Thu 24 Oct 2024 00:00:00 +0000
ROA not before: Thu 24 Oct 2024 00:00:00 +0000
ROA not after: Thu 28 Nov 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 09:59:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:3e:33:51:d9:12:f9:9d:82:4c:84:f9:c7:af:cb:19:aa:76:6c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Oct 24 00:00:00 2024 GMT
Not After : Nov 28 23:59:59 2024 GMT
Subject: serialNumber=d78c04baa8e5ddadddf81ea708a49cba5ead0bba17ad690f321347e23feb50f3, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ff:90:bd:2e:6d:d1:68:2f:18:20:71:f7:af:
ad:a8:75:29:77:d7:53:c9:6b:fc:01:aa:76:67:17:
76:46:57:66:7f:88:8c:0a:81:8c:69:77:15:42:2c:
d4:a4:0c:3a:e4:d3:89:86:be:65:de:54:00:bf:77:
3c:97:e3:6d:66:05:d6:d2:e0:63:e7:03:e7:87:d6:
f8:8b:ea:55:65:50:a2:ae:ca:a7:8a:26:8c:e8:56:
49:30:22:60:62:c5:94:62:3b:ef:8c:42:fe:0c:a1:
9c:29:e6:fe:04:05:12:51:6f:b0:eb:ee:93:2c:90:
c1:c4:56:59:f1:ac:35:ab:dc:03:da:07:7b:1c:03:
ab:17:c5:c4:6a:b0:0b:96:1f:ba:17:e5:4b:c2:a6:
7d:85:a2:87:2e:e7:60:17:e8:34:22:67:9c:2c:cf:
fa:10:d8:2b:51:e4:22:29:8b:71:1f:91:7f:69:03:
f8:18:2c:89:74:3e:26:4a:58:49:8b:7c:e3:47:8f:
3c:73:fc:d9:95:0e:5a:55:20:8e:94:76:c6:fc:a8:
a2:3a:34:36:84:42:98:95:b3:0c:45:77:b4:cf:d1:
65:dd:f2:05:54:e6:dc:17:e2:2a:02:2e:57:22:b2:
6a:3f:e6:1f:a4:41:19:36:e8:a1:1c:e2:93:38:02:
38:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0C:BE:28:9C:61:2C:86:07:2D:B0:C4:B9:75:8C:AE:77:54:7C:B9
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/bc239587-5037-4265-bc8a-dc34928f21c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:9b:4f:4f:fa:33:c3:22:60:23:a4:a6:2d:c3:bc:95:1f:40:
dc:69:d8:dd:5b:81:00:e9:ee:4e:85:4d:2e:83:4a:45:4d:61:
10:a2:a8:88:a3:56:64:f2:69:01:62:a2:15:0f:6f:b0:d0:5c:
9a:3f:f1:df:0e:bb:0f:cf:91:6a:c2:f7:be:31:4b:49:ce:d1:
12:81:b0:03:27:b2:99:33:58:c1:c6:22:0e:f7:3f:89:cc:64:
50:31:2a:d8:59:9d:d8:4f:4b:19:19:ac:0a:8c:75:79:1e:e2:
6d:3e:d4:3e:46:7b:88:77:48:4b:6f:fd:32:40:11:a6:fd:22:
87:d9:78:d8:ff:fd:6d:f5:10:af:4d:e3:5a:f7:83:b7:da:f9:
7d:2b:54:87:9c:23:e7:1c:1e:4d:2c:1a:dd:ea:64:89:14:38:
90:69:a0:26:dd:34:79:8b:3c:fc:6f:14:32:98:7f:d5:10:92:
c3:80:0d:3e:13:cf:9d:00:d7:4d:62:0a:6a:e1:e5:e8:df:46:
a2:ee:de:8d:81:dd:9b:f6:23:14:12:c0:17:69:46:bd:1a:50:
51:ca:f6:71:6b:4b:25:7e:b0:05:f2:68:aa:be:c5:9e:43:de:
f0:89:2b:fb:b1:43:f8:cc:ab:65:49:5a:34:80:03:ba:c2:b9:
59:84:91:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 04:15:16 2024 by rpki-client on console.sobornost.net