Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d161ec-a5ed-4327-ba68-5c9909262f97.roa
File: e9d161ec-a5ed-4327-ba68-5c9909262f97.roa (raw, json)
Hash identifier: WPjNbDDqkl3vke1QVqBz5VIyWC+sT/67eNx+N3aKadc=
Subject key identifier: D3:BC:5E:DF:B6:20:FD:38:63:D8:49:CD:C6:B9:65:D1:75:AC:5C:DA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 27D1EC463A097B8D9EAFCE8BDF3B3ABF6FC812F6
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d161ec-a5ed-4327-ba68-5c9909262f97.roa
Signing time: Sat 01 Jun 2024 00:00:00 +0000
ROA not before: Sat 01 Jun 2024 00:00:00 +0000
ROA not after: Sat 06 Jul 2024 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jun 2024 16:38:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:d1:ec:46:3a:09:7b:8d:9e:af:ce:8b:df:3b:3a:bf:6f:c8:12:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 1 00:00:00 2024 GMT
Not After : Jul 6 23:59:59 2024 GMT
Subject: serialNumber=3e7f555e0d63c175b6e5ade5d916cee5a448487eb6cee8952c04c333131a8810, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:63:90:f1:45:a9:a0:89:9c:2e:3d:81:2b:73:
49:cf:26:09:1d:fb:9c:10:ff:df:9c:2d:c8:19:85:
2d:e2:7e:40:a1:ee:cc:55:5d:18:ca:33:ac:66:da:
dc:e8:8b:e5:66:cc:bd:6f:f7:ae:c5:3c:cd:ac:e1:
e3:06:d7:6a:79:97:28:24:0e:f1:47:1e:b2:02:9b:
f0:bc:55:f1:bf:86:fb:03:3d:a4:9c:5b:7d:03:7e:
8c:f0:60:03:48:4a:69:a2:62:bd:fa:5c:15:53:d3:
2b:21:88:97:6a:9f:70:ca:59:f5:0f:d9:02:15:d6:
11:01:53:b7:e8:3f:40:e5:cf:88:02:fd:68:95:d0:
35:1b:bf:8f:e2:aa:a1:d0:69:6e:ed:b7:09:57:c0:
1c:5e:cd:bb:c9:91:ee:a8:05:e5:76:d6:80:b8:67:
dd:fa:9e:14:9b:01:96:86:90:64:16:9f:c8:a5:07:
0f:f9:51:88:99:6a:a9:0d:1d:fa:25:59:89:67:47:
25:9f:77:6a:e5:19:02:2a:d1:34:2c:08:98:d9:33:
6f:ce:9a:9f:00:63:b5:ae:50:56:de:a0:07:e7:e7:
ea:bc:74:b7:ef:c9:b3:54:47:41:32:fc:74:00:1c:
15:47:2d:73:bd:bc:71:40:ef:06:05:5f:7f:07:d2:
55:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BC:5E:DF:B6:20:FD:38:63:D8:49:CD:C6:B9:65:D1:75:AC:5C:DA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/e9d161ec-a5ed-4327-ba68-5c9909262f97.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:36:d2:df:4a:f6:b0:df:ae:fb:55:00:8e:a5:50:96:d5:f1:
3f:b4:88:da:ae:b3:3c:2d:b1:bc:f8:93:d7:59:52:38:cd:fc:
14:a3:0a:f7:da:a5:33:19:d7:17:b6:1a:8a:d5:f3:6a:4e:d0:
c6:c9:65:c4:89:e2:3f:59:69:00:a5:89:76:74:28:0c:e2:9b:
58:ad:e9:5d:bf:1a:1f:28:1d:98:f4:69:33:7f:7c:17:3f:a6:
93:89:94:4c:1c:15:25:d0:22:44:55:ec:ad:73:35:65:35:e0:
63:3b:64:d0:0b:b3:d1:97:dc:0a:0e:7f:4e:e6:5d:05:9c:54:
75:bd:00:71:6d:cc:18:98:d4:37:a3:1d:5d:0d:64:9a:f2:7c:
41:10:d6:78:7c:db:e5:f2:65:69:fb:ea:b7:67:cb:a6:6c:d9:
04:19:42:bd:7d:12:f5:5e:d3:b0:4f:d4:cf:ae:48:6d:dd:02:
56:45:4a:2a:ae:14:f8:47:54:e9:13:73:52:6c:8d:da:b6:d0:
5d:8e:28:63:ec:1d:29:4b:05:83:5a:52:5c:ef:d2:ce:e2:bb:
d5:9a:77:98:e7:8b:e8:63:95:19:ee:92:35:70:a2:75:98:33:
a1:89:9f:e0:f2:8a:46:b5:8d:d7:a9:52:d6:2d:c5:a1:f0:dd:
89:11:a8:e4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUJ9HsRjoJe42er86L3zs6v2/IEvYwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjQwNjAxMDAwMDAwWhcNMjQwNzA2MjM1OTU5
WjB6MUkwRwYDVQQFE0AzZTdmNTU1ZTBkNjNjMTc1YjZlNWFkZTVkOTE2Y2VlNWE0
NDg0ODdlYjZjZWU4OTUyYzA0YzMzMzEzMWE4ODEwMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDKY5DxRamgiZwuPYErc0nPJgkd+5wQ/9+cLcgZhS3ifkCh
7sxVXRjKM6xm2tzoi+VmzL1v967FPM2s4eMG12p5lygkDvFHHrICm/C8VfG/hvsD
PaScW30DfozwYANISmmiYr36XBVT0yshiJdqn3DKWfUP2QIV1hEBU7foP0Dlz4gC
/WiV0DUbv4/iqqHQaW7ttwlXwBxezbvJke6oBeV21oC4Z936nhSbAZaGkGQWn8il
Bw/5UYiZaqkNHfolWYlnRyWfd2rlGQIq0TQsCJjZM2/Omp8AY7WuUFbeoAfn5+q8
dLfvybNUR0Ey/HQAHBVHLXO9vHFA7wYFX38H0lUXAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQU07xe37Yg/Thj2EnNxrll0XWsXNowHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2U5ZDE2MWVjLWE1ZWQtNDMyNy1iYTY4LTVjOTkwOTI2MmY5Ny5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBACw20t9K9rDfrvtVAI6lUJbV8T+0
iNquszwtsbz4k9dZUjjN/BSjCvfapTMZ1xe2GorV82pO0MbJZcSJ4j9ZaQCliXZ0
KAzim1it6V2/Gh8oHZj0aTN/fBc/ppOJlEwcFSXQIkRV7K1zNWU14GM7ZNALs9GX
3AoOf07mXQWcVHW9AHFtzBiY1DejHV0NZJryfEEQ1nh82+XyZWn76rdny6Zs2QQZ
Qr19EvVe07BP1M+uSG3dAlZFSiquFPhHVOkTc1Jsjdq20F2OKGPsHSlLBYNaUlzv
0s7iu9Wad5jni+hjlRnukjVwonWYM6GJn+Dyika1jdepUtYtxaHw3YkRqOQ=
-----END CERTIFICATE-----
Generated at Sat Jun 1 23:57:28 2024 by rpki-client on console.sobornost.net