Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/85d00528-1cd0-4b98-8744-e4a84a1159ae.roa
File: 85d00528-1cd0-4b98-8744-e4a84a1159ae.roa (raw, json)
Hash identifier: qfgKgADrRVdus51XsEKrr8YOU/VN/rw57TNoC2SZ3M4=
Subject key identifier: 7C:7E:46:D9:F6:63:7F:BD:85:84:7D:22:79:DD:3A:99:D2:78:02:D6
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4D06504763C718531DDE807C0D93F6AC5FF28F98
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/85d00528-1cd0-4b98-8744-e4a84a1159ae.roa
Signing time: Sun 13 Apr 2025 05:23:15 +0000
ROA not before: Sun 13 Apr 2025 05:23:15 +0000
ROA not after: Sun 18 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 13 Apr 2025 05:38:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:06:50:47:63:c7:18:53:1d:de:80:7c:0d:93:f6:ac:5f:f2:8f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 13 05:23:15 2025 GMT
Not After : May 18 23:59:59 2025 GMT
Subject: serialNumber=d2c87dd4daf845796c4aacd3ef014d05f6fab64480e8845fea561367f3584f41, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:37:76:df:c0:73:38:11:b1:09:5b:59:76:
18:3b:b1:63:1e:67:1e:04:95:2b:e2:77:ab:ba:b3:
93:a2:07:c7:a3:22:cb:74:38:35:13:50:49:eb:f5:
38:aa:0e:30:c4:4a:d1:2a:74:b9:07:7e:63:3a:32:
5e:6f:a6:fb:0e:46:c8:df:e5:ba:93:53:5e:7e:bc:
2f:fd:09:3d:ff:46:dc:09:c2:75:e7:0c:3e:b0:1c:
d8:c5:65:4f:f9:6c:b5:26:dd:aa:e0:7f:7c:c5:b6:
48:94:0d:74:7c:2a:18:c1:f2:df:63:0c:9a:76:04:
d7:22:f5:3f:1f:10:1e:f2:05:be:3c:68:44:b0:5d:
c9:23:2c:ec:43:d6:24:58:f8:88:c2:6c:1f:e1:e2:
5e:94:cc:db:7d:df:45:ea:61:f6:3a:b3:bf:0f:e7:
a0:e4:d1:2f:c3:0b:a5:d2:fd:65:b5:a0:c4:c1:3c:
4e:6f:ec:c0:97:d1:50:19:2c:7f:74:5d:2b:cf:9c:
3f:6f:1e:30:61:eb:32:96:85:b7:67:b7:2b:90:12:
1c:1d:89:4b:2e:40:31:d2:8d:5b:b0:c3:0a:23:92:
2f:9d:0f:6b:dd:28:e2:39:f4:fa:e2:f4:9f:3c:63:
75:09:cf:68:59:28:1a:31:99:55:19:5a:2e:5e:7e:
ac:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:7E:46:D9:F6:63:7F:BD:85:84:7D:22:79:DD:3A:99:D2:78:02:D6
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/85d00528-1cd0-4b98-8744-e4a84a1159ae.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
38:de:ef:e4:6a:94:94:31:05:db:4d:77:87:e3:03:51:00:0b:
34:84:4f:e2:61:c9:80:37:d2:a6:8b:76:09:ea:1c:a6:cf:5a:
2e:a2:7d:07:22:02:3e:9e:ef:4d:53:7c:db:0c:e4:f9:ca:6d:
4d:2c:ef:44:29:a0:9f:a4:29:c9:02:d5:d4:da:b8:3d:17:40:
f7:ab:6d:45:91:9e:2e:34:bc:1c:14:37:72:8e:ec:83:fa:1a:
82:83:40:67:15:4b:f7:e2:d7:e2:4c:7a:8c:d7:e4:ce:97:1f:
f3:f8:01:05:74:9c:e3:f4:d4:3c:29:e6:03:72:35:e2:6e:4d:
75:d8:03:20:1c:60:4a:b2:76:3e:08:43:ee:82:01:56:15:ec:
e4:82:ad:75:41:b0:52:73:f9:9e:37:58:74:cc:cd:75:7a:63:
ae:f0:93:95:cd:b9:2e:04:85:7a:4c:81:a9:cd:c2:9e:d8:b1:
e7:81:d8:ef:1d:b1:03:5d:2c:3d:2b:e0:87:c7:f3:06:e3:bc:
1f:21:0b:ac:6c:b0:c2:e5:b1:71:87:90:a9:d1:b6:67:c9:92:
9b:52:d1:1b:87:45:8c:ff:be:29:f2:6f:39:ee:11:99:5e:7a:
d3:49:23:1c:bb:32:94:de:77:d9:b9:65:72:47:b9:d8:04:62:
5a:bb:11:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 13:28:25 2025 by rpki-client