Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d39ca607-d29a-41e4-885f-3b47b9740e9e.roa
File: d39ca607-d29a-41e4-885f-3b47b9740e9e.roa (raw, json)
Hash identifier: 5rLsK+ExeCVXSBL2XzBPYndLUW2sqtHrBtZBcwO0CIE=
Subject key identifier: B9:A8:97:6E:C1:41:99:A6:31:B9:ED:59:6B:80:E3:5C:45:8F:61:34
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 2B95DEAB49DF5D478DA7A1D00BCE9DDC5BC88DA6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d39ca607-d29a-41e4-885f-3b47b9740e9e.roa
Signing time: Fri 29 Mar 2024 00:00:00 +0000
ROA not before: Fri 29 Mar 2024 00:00:00 +0000
ROA not after: Fri 03 May 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 15:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:95:de:ab:49:df:5d:47:8d:a7:a1:d0:0b:ce:9d:dc:5b:c8:8d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 29 00:00:00 2024 GMT
Not After : May 3 23:59:59 2024 GMT
Subject: serialNumber=9d7e13e28e69a74e16f902034cfcf576d0d82f5b45fa59cc874372eeb15e98e5, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b2:b1:e4:97:f7:41:0d:05:b1:1f:97:8b:09:
25:f9:5c:58:4a:1d:5d:30:74:85:3d:b7:4c:64:59:
28:5e:07:49:0b:c5:3e:b6:09:3e:71:c3:fe:ad:b3:
bf:08:83:08:e6:e7:a8:13:60:ba:f6:b0:29:2e:77:
06:0f:11:b6:e1:53:6d:39:8a:bd:29:e6:7e:42:4b:
32:c1:11:b3:ac:26:db:ff:0b:c9:c4:92:be:a0:6d:
94:d7:d3:b1:73:96:8b:e7:ad:b6:e1:6a:77:e9:0f:
2e:6b:10:39:7d:b7:9c:69:c9:6c:92:47:12:54:dc:
cd:52:95:ed:b0:46:95:53:27:35:23:48:b5:21:bf:
73:88:12:7b:28:71:63:19:2a:02:ac:e4:17:7b:51:
78:07:d6:94:d3:f5:2d:0a:7e:a5:2e:e7:03:33:fc:
0f:92:61:8c:f1:70:ec:d2:0b:5e:99:f3:23:f4:12:
93:c7:e8:d4:f4:83:0a:14:ee:70:55:f3:18:b2:0c:
33:31:8b:83:38:2a:bc:10:31:be:32:41:d5:ac:fe:
22:3f:dc:72:bb:14:89:ce:d4:dd:5c:c1:4f:5c:76:
09:95:06:4b:04:b9:01:d4:d5:08:4c:c3:c8:64:c5:
61:94:23:a5:24:1c:c3:76:a2:81:cd:8f:a9:0a:6f:
4a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A8:97:6E:C1:41:99:A6:31:B9:ED:59:6B:80:E3:5C:45:8F:61:34
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/d39ca607-d29a-41e4-885f-3b47b9740e9e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:6b:a2:ea:a4:63:82:f0:2b:00:98:51:48:af:d2:3d:6b:83:
07:6c:a2:82:77:ef:4e:95:88:44:c6:26:44:c2:f3:86:7b:a9:
f8:d6:6b:f1:85:2f:97:96:4d:3e:c3:84:eb:5f:44:21:de:83:
a6:44:0b:5d:6e:e5:cf:47:ad:98:45:6f:d3:21:b4:75:51:6b:
f2:03:85:c2:b9:29:3e:6a:a9:67:88:d9:6a:f5:02:bd:fd:b8:
e3:63:6a:f6:31:a1:1a:fa:8c:bf:9d:eb:28:bf:d8:cf:c1:e8:
0c:f8:69:30:62:52:8e:f7:da:e7:f4:1c:4b:91:92:61:a3:61:
41:11:ab:f8:09:91:46:54:b1:ad:6d:15:56:38:a4:9e:07:2e:
86:ce:df:14:ec:f5:f2:49:58:b1:fb:f3:d5:3e:06:c4:4c:36:
63:e3:83:45:a0:1e:c4:b3:3b:72:56:c3:74:0c:6d:e8:f8:63:
40:2e:69:63:1e:bd:1c:ec:75:6d:cb:33:22:32:3c:61:b2:af:
fc:fa:6d:4b:70:5f:0a:24:d1:b2:dd:63:9e:bb:0d:a8:78:97:
a2:2d:2b:b7:f5:88:87:f7:60:cd:41:73:14:74:5c:43:e4:6e:
a8:a2:1a:de:72:1f:75:ee:be:7c:84:9a:ba:e1:7a:8e:69:a9:
9f:b0:35:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 17:59:43 2024 by rpki-client on console.sobornost.net