Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0c06917e-e63f-417e-952b-5441c9b4024e.roa
File: 0c06917e-e63f-417e-952b-5441c9b4024e.roa (raw, json)
Hash identifier: dIv/GGp8iaCRylOF2ptkc4sR2s3sPOiahTR1UlU/sP0=
Subject key identifier: 40:22:AF:77:9B:E7:25:83:41:31:71:87:38:92:00:06:F4:94:12:16
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 24EA4C9A3B1F44BAC329858E473A8D9323CC68FD
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0c06917e-e63f-417e-952b-5441c9b4024e.roa
Signing time: Mon 28 Apr 2025 21:33:21 +0000
ROA not before: Mon 28 Apr 2025 21:33:21 +0000
ROA not after: Mon 02 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Apr 2025 21:53:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:ea:4c:9a:3b:1f:44:ba:c3:29:85:8e:47:3a:8d:93:23:cc:68:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 28 21:33:21 2025 GMT
Not After : Jun 2 23:59:59 2025 GMT
Subject: serialNumber=0cf70677d3067a6c96e9c337145d0c08d7dc6c2949aebf661ac56b1b165f48c9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:47:12:2a:df:45:60:c1:77:62:e5:8a:9e:7d:
e2:6e:e0:4c:77:6d:df:2f:86:ad:dc:f5:b0:00:49:
c1:42:d3:9d:8e:43:4c:50:dd:5e:8c:11:76:5b:be:
cb:83:bf:af:d3:6a:84:d3:a2:57:97:8c:77:a9:ac:
55:ad:20:5b:be:4b:49:b4:34:b1:7d:6c:21:bb:1c:
7e:09:18:3d:5d:33:69:3e:01:af:93:6c:7e:f7:2f:
48:b4:e3:16:1a:e3:15:3d:66:7b:ac:be:f2:fa:3a:
79:d3:3e:e8:18:5d:6c:6b:e0:e7:01:b0:c3:6a:6a:
be:2d:be:6f:d9:42:df:40:e7:10:04:33:15:19:94:
cb:ee:54:bf:cf:d7:46:68:09:0a:dd:d8:b6:cb:4d:
65:fa:15:f2:30:55:ed:f3:da:b7:26:a1:95:de:fc:
52:0e:a5:51:4c:1d:11:1e:79:c1:3e:e3:31:e1:9d:
cd:17:e0:4f:b5:ea:40:8c:0f:57:0f:84:d7:e2:31:
c2:b2:e1:62:6b:8e:fc:4b:90:ec:3e:e7:2e:3a:6e:
b6:5e:c0:1f:5b:c8:73:e3:52:19:38:5a:a4:c1:2f:
1a:05:da:36:a7:93:ab:7f:ed:93:f8:5d:08:72:4e:
d7:24:e0:11:e5:0c:ef:99:ff:c8:1f:ea:e6:df:9a:
25:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:22:AF:77:9B:E7:25:83:41:31:71:87:38:92:00:06:F4:94:12:16
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/0c06917e-e63f-417e-952b-5441c9b4024e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
27:8d:a1:41:6c:66:56:d7:e3:5f:1e:d3:cc:fa:81:ac:0e:3b:
30:f6:bb:89:6d:12:18:38:e2:4e:5e:f0:55:07:8f:3e:88:27:
1f:26:30:b6:87:a3:83:00:8a:e0:8d:d4:47:db:58:2c:b2:e0:
da:bb:76:20:d4:e9:a7:86:01:4d:b9:a7:52:48:ad:f8:fc:4b:
ec:91:55:ef:60:6b:32:1d:37:8d:bb:f6:5e:8e:33:31:78:ec:
66:5a:02:11:7a:de:a0:aa:da:42:39:87:cb:5c:00:8d:e2:a8:
48:71:20:d1:27:86:51:d5:20:20:2f:39:5e:ee:2d:aa:68:1c:
1e:75:00:11:a8:90:80:35:72:44:84:2b:4a:0c:75:44:58:f6:
db:d6:a1:5e:0c:f4:56:9e:5f:d0:1e:eb:f3:28:cc:49:f7:6c:
e0:fe:e7:0c:09:18:76:e8:e1:7e:2c:0a:a9:28:f8:cd:2a:39:
fc:42:97:de:6d:01:0a:60:a2:54:14:33:a9:36:eb:d6:5d:3d:
e2:67:22:48:33:96:59:27:d7:17:a5:84:1f:02:90:f3:2e:cd:
32:e7:4d:0e:82:d5:5c:4b:bc:ec:30:6a:eb:fb:81:af:fc:48:
7a:e6:90:9b:f6:57:9c:27:0c:90:89:10:c2:6f:53:c4:6c:72:
bf:f7:9e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 04:54:20 2025 by rpki-client