Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cd22de04-0bd3-45ac-b008-8c69ed01fe39.roa
File: cd22de04-0bd3-45ac-b008-8c69ed01fe39.roa (raw, json)
Hash identifier: ZYd9+hhodRVymnczEfOol8sAaEg7v6eY5l1aC4k4QK8=
Subject key identifier: 2A:17:04:22:0C:A6:43:AF:75:E3:10:4F:37:53:F5:6A:EC:43:6A:38
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 428ECAE63A82758E855B066CB6FFE645A1B8E142
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cd22de04-0bd3-45ac-b008-8c69ed01fe39.roa
Signing time: Tue 12 Mar 2024 00:00:00 +0000
ROA not before: Tue 12 Mar 2024 00:00:00 +0000
ROA not after: Tue 16 Apr 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 05:10:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:8e:ca:e6:3a:82:75:8e:85:5b:06:6c:b6:ff:e6:45:a1:b8:e1:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 12 00:00:00 2024 GMT
Not After : Apr 16 23:59:59 2024 GMT
Subject: serialNumber=46bfb381c9def8265b658aad3d07916cd4e1d716e5cf805dc28aa14378d25eb4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0b:c8:a6:b0:db:bc:bf:e1:12:b4:c0:23:a8:
76:2e:00:1d:6e:ea:39:48:3c:e7:88:b4:62:a9:d2:
2f:e1:ec:14:56:6e:1d:ab:d9:fc:cd:7d:3f:cb:e8:
42:e4:a6:75:15:7e:32:31:ad:c2:b1:3c:f4:4d:b6:
d5:03:47:72:64:31:3d:e3:5b:a9:1f:99:84:f0:4f:
a2:f9:86:c0:3d:f6:a3:21:3b:52:cb:57:a5:9e:25:
dc:2b:e0:c5:c0:34:ab:bc:cb:bf:aa:d3:02:e9:22:
29:e3:fa:b0:c6:5b:49:2f:82:40:db:55:0f:bf:46:
35:23:5e:2e:29:ad:fc:00:f9:9a:fb:c2:53:5c:e1:
1d:b1:91:8f:00:99:e5:8c:ff:9c:1f:03:86:dc:c8:
67:f9:9e:1a:31:01:84:a5:c9:56:3d:87:6d:96:de:
23:cd:1a:4d:36:0b:26:81:55:75:2b:f9:ab:1c:34:
0f:04:b1:34:6f:db:2b:3d:92:13:c9:90:e8:f9:76:
73:64:47:b5:4e:81:36:03:c7:aa:1c:cf:f1:d8:d5:
e3:27:06:8b:62:a1:d3:8e:32:4e:4e:9f:22:a2:38:
12:c5:32:50:54:23:0c:d3:a3:62:c5:c5:10:6c:7d:
23:38:8c:f2:b9:17:55:d1:58:86:27:86:d2:10:f4:
2e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:17:04:22:0C:A6:43:AF:75:E3:10:4F:37:53:F5:6A:EC:43:6A:38
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cd22de04-0bd3-45ac-b008-8c69ed01fe39.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a3:55:0b:3f:07:7f:6e:1f:17:5b:59:68:86:b1:24:00:0b:
0d:0a:df:74:0c:28:2c:4e:fa:04:cc:d6:92:89:13:be:95:94:
bc:57:4f:3d:b8:28:28:b4:f4:34:9e:3e:24:b3:0f:b7:c4:f3:
de:45:94:11:00:42:81:d8:d2:bc:93:7c:7a:57:db:93:f9:43:
8c:71:ae:6f:f1:9b:89:0d:11:2a:87:73:8b:dc:9d:a8:a8:dc:
21:54:e4:76:b1:b8:db:4d:9a:bb:d3:d2:04:56:93:59:ec:4c:
36:63:f9:0c:4c:c7:10:75:67:84:d3:ab:6a:5d:79:54:4b:c7:
83:b4:98:4d:43:95:82:b9:93:6c:9f:36:2f:d3:50:c6:e8:4f:
89:e3:56:9e:f6:64:09:a1:a3:5f:ca:70:17:a1:45:45:d2:72:
60:26:6b:26:09:05:1c:0e:51:97:f3:e6:6d:71:be:3d:66:e6:
37:9e:25:f4:b0:fa:a6:c9:7d:f2:dd:75:c2:52:9c:7e:cf:00:
db:28:f5:95:57:5d:7c:1b:e4:c8:86:b3:ee:4d:89:7c:eb:f1:
f1:83:ef:63:8b:8a:d6:22:7d:51:00:e0:9a:1d:40:98:de:12:
8c:a2:da:28:0a:c0:97:ae:51:0f:a4:97:a2:8e:7e:26:41:65:
2a:2a:12:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 12 08:31:46 2024 by rpki-client on console.sobornost.net