Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa
File: 9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa (raw, json)
Hash identifier: SXsPQAMiygTgGx/gMM5Oz06xjuf801ORH+WdL92kSFM=
Subject key identifier: 62:F9:6A:3A:A8:93:3E:69:75:20:FB:28:1D:10:93:DE:38:52:FE:EC
Certificate issuer: /CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
Certificate serial: 126B53F485C047E7D1D48975001834B1D1E4EFC7
Authority key identifier: BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa
Signing time: Fri 29 Nov 2024 00:00:00 +0000
ROA not before: Fri 29 Nov 2024 00:00:00 +0000
ROA not after: Fri 03 Jan 2025 23:59:59 +0000
asID: 8987
IP address blocks: 175.41.128.0/18 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Dec 2024 02:08:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:6b:53:f4:85:c0:47:e7:d1:d4:89:75:00:18:34:b1:d1:e4:ef:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91609040001/serialNumber=BCE9BA11292F847512C0A8412E51E6E3BA0D991D
Validity
Not Before: Nov 29 00:00:00 2024 GMT
Not After : Jan 3 23:59:59 2025 GMT
Subject: serialNumber=b8fa6371ee65d89ca0e755a1248ee98d63f869617b23e8ec0a6c9c32da7ceea8, CN=1684111e-31c1-42e6-8f20-fc9ab8b5cf57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0f:6b:80:25:ad:07:ba:69:bf:22:3c:18:52:
12:42:96:37:d8:3a:40:cf:6d:0d:bf:6d:28:9d:43:
14:8d:94:81:38:3f:11:6c:60:d6:7e:d5:01:7e:6b:
bf:ca:fb:40:71:b7:c8:28:3a:0a:b5:1b:b6:a9:c3:
ee:be:a1:90:dd:d3:24:8b:8e:b0:bc:aa:a3:88:0d:
c3:11:f9:fd:b6:1b:b4:e7:3a:e2:0d:f1:67:4e:52:
57:e0:7f:22:bc:dc:66:e1:69:d5:a8:e2:ce:fa:87:
c6:70:05:00:e4:4e:b3:cd:79:fd:8c:52:71:b5:2c:
64:02:00:ba:5e:16:6c:c2:4e:13:15:d5:97:1a:1e:
54:b0:ce:dc:d1:7d:47:30:96:14:8d:12:93:33:d4:
34:1a:6b:45:1c:ab:2d:e4:e3:9c:ac:d3:fa:a2:7d:
f2:60:4c:26:2b:80:e5:25:6a:8b:f4:e7:21:b3:0c:
5b:82:1c:64:88:91:80:6c:17:cb:8a:e3:ea:e5:39:
e6:5e:45:ed:33:a3:57:b8:d1:44:e7:80:47:b6:08:
2c:51:9d:50:03:10:63:9f:c2:5c:b5:43:32:42:77:
60:a2:2d:3a:c0:f9:1e:ae:8c:3f:6f:47:43:69:ba:
a8:d8:42:21:10:1c:17:88:34:7f:f5:26:86:82:66:
6e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F9:6A:3A:A8:93:3E:69:75:20:FB:28:1D:10:93:DE:38:52:FE:EC
X509v3 Authority Key Identifier:
keyid:BC:E9:BA:11:29:2F:84:75:12:C0:A8:41:2E:51:E6:E3:BA:0D:99:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vOm6ESkvhHUSwKhBLlHm47oNmR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/9b20d5e9-2739-41d9-a7b0-ed324e639c56.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/bd48a1fa-3471-4ab2-8508-ad36b96813e4/220cee0c-6002-409a-8194-38e216c0096c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
175.41.128.0/18
Signature Algorithm: sha256WithRSAEncryption
64:41:90:3a:8e:9c:c0:ba:8d:f9:ab:77:67:8d:fe:af:63:ce:
68:76:bf:60:88:1b:24:8f:30:e2:95:c5:12:d4:48:74:20:60:
76:a2:66:22:72:c4:76:ff:48:d7:db:aa:06:06:c0:c2:47:23:
b0:61:33:a8:84:1c:ec:00:99:8c:ae:e8:f9:a3:fe:c2:63:51:
1f:50:06:65:6b:c3:97:8e:3c:f7:e6:04:9c:39:a3:43:eb:34:
22:2a:5b:2c:de:f3:a5:c4:cc:84:e0:56:eb:bd:c7:72:1b:46:
3a:64:63:3d:14:4d:5a:6b:26:8f:12:d1:95:95:e3:5e:09:87:
fa:27:6a:bb:61:b4:bf:e9:a4:99:0f:49:dc:80:fa:ab:24:d3:
28:c2:ea:c2:da:b5:9b:d3:a0:e7:ca:22:e5:b9:46:55:47:37:
82:4f:a3:ae:d8:24:68:22:6d:18:f2:3c:09:78:bd:7d:4b:36:
ed:f7:d5:c2:ca:b9:97:ff:24:23:62:5c:a1:17:ac:be:19:fe:
c8:44:b9:57:d1:53:cc:a2:1e:aa:cf:8d:2b:a2:26:f7:77:72:
18:0c:32:59:c8:2f:00:69:7c:c9:4b:78:1e:24:59:b9:4d:40:
f0:f5:d0:e0:9f:0f:94:0d:e6:a9:b8:f5:ed:f4:64:00:f2:75:
2e:1a:10:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 18 04:28:51 2024 by rpki-client on console.sobornost.net