Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a73ee9e4-1189-4330-8e49-8b4dbeffba93.roa
File: a73ee9e4-1189-4330-8e49-8b4dbeffba93.roa (raw, json)
Hash identifier: M6Ke4pPF/e31VUym1NjhmsklBmoAAupN7R61wUFfNzc=
Subject key identifier: 99:BF:0D:0D:76:07:1D:1A:1D:F4:9A:6D:F5:9A:DA:EB:42:4C:71:DA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 5BF679B4A88D2792DB1B562318E41333006931AC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a73ee9e4-1189-4330-8e49-8b4dbeffba93.roa
Signing time: Mon 28 Apr 2025 05:28:22 +0000
ROA not before: Mon 28 Apr 2025 05:28:22 +0000
ROA not after: Mon 02 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Apr 2025 05:48:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:f6:79:b4:a8:8d:27:92:db:1b:56:23:18:e4:13:33:00:69:31:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 28 05:28:22 2025 GMT
Not After : Jun 2 23:59:59 2025 GMT
Subject: serialNumber=27d76dc74c79357053fe79391b6bcc566619d0b528483716ba2761e8c21af174, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8f:8a:0d:4e:46:d0:37:38:92:d7:20:10:84:
4b:60:ae:cd:8d:73:e5:fd:41:bc:be:09:1b:45:eb:
04:cd:0f:cb:27:57:73:9b:71:73:bf:53:74:f0:e1:
73:01:43:ff:d3:b3:c6:48:bc:16:c2:f9:e1:0d:37:
43:84:6e:b4:f7:cd:61:c7:27:55:db:06:74:2e:62:
0a:29:72:46:b7:b4:1c:b4:0b:d2:ab:97:c9:51:6a:
2c:0a:8e:82:ff:81:53:95:24:2e:14:bc:a2:3f:96:
2e:31:e1:51:ae:a0:54:b9:9c:69:c5:56:9b:36:ca:
8b:0b:9b:5a:86:a5:8f:a6:47:42:76:c9:c5:5e:37:
d2:08:dd:41:52:8e:41:09:5a:11:ec:77:fd:b2:e8:
62:76:1c:87:6b:0f:eb:01:f3:f4:b8:47:7b:17:b6:
8a:52:7a:90:b8:b2:43:df:3a:5d:0f:22:5e:b7:51:
d1:7a:5f:95:7d:9a:8f:d5:ee:08:6c:da:e4:68:1f:
25:c4:88:6c:fc:05:6c:68:2b:a6:6f:1f:30:95:c4:
bf:5e:01:10:a9:7c:61:d9:78:73:06:e1:fb:3a:5e:
ba:74:1d:2f:33:6a:4c:61:a0:da:cb:2f:6a:42:62:
e6:ad:86:31:5c:90:bd:d7:d5:68:97:fc:aa:75:95:
ef:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BF:0D:0D:76:07:1D:1A:1D:F4:9A:6D:F5:9A:DA:EB:42:4C:71:DA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/a73ee9e4-1189-4330-8e49-8b4dbeffba93.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:c1:99:9a:55:72:11:e7:2a:84:ff:5d:bf:48:31:94:84:ad:
ab:20:15:00:80:93:40:c2:4f:e1:70:0f:c7:ea:a9:e7:6e:fb:
63:f6:98:04:f0:f0:94:0a:a4:0b:e8:a1:3c:b5:4e:39:93:41:
58:14:d8:ed:31:19:b1:61:18:0a:e0:77:8a:4e:ff:01:fc:52:
30:c1:45:1a:ea:de:4b:6b:a1:ef:48:01:09:db:bd:ad:be:84:
2d:75:23:fa:a0:da:d8:2f:36:2b:cd:0a:c6:31:41:e2:23:07:
df:fd:aa:e8:a2:b5:e4:4e:b1:63:c7:25:3b:05:8b:ef:89:0d:
ac:e8:96:c3:99:3d:88:c8:d5:44:36:42:8d:56:d7:df:b0:9b:
85:09:dc:23:89:e2:3b:e4:19:64:90:72:47:21:9d:83:14:03:
4c:7e:08:7c:d2:0e:33:70:b1:2f:f5:b1:34:45:a6:66:64:a2:
54:ff:b4:47:91:8a:1e:a2:ea:27:35:f3:7d:b7:81:dd:8c:5e:
4c:a1:ff:0f:ee:a8:91:08:d0:ce:d6:cb:79:69:70:a0:e3:fe:
ee:80:a1:9c:24:e3:3a:52:2d:72:cc:e9:3f:ea:a2:6b:0c:8a:
84:02:43:af:da:37:e2:2c:46:80:37:49:b0:7a:a5:9f:fb:d6:
11:f2:cc:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 10:01:50 2025 by rpki-client