Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c35b9e8c-4a01-4188-95cd-cd6a8ff4be7b.roa
File: c35b9e8c-4a01-4188-95cd-cd6a8ff4be7b.roa (raw, json)
Hash identifier: CwT2/qhPOiw6v9yBB8nILka2PVdKqVLK4kKUWITq6Hs=
Subject key identifier: 04:B5:35:E9:A9:BF:BA:5F:E5:1E:41:E7:20:19:60:22:94:1F:A1:11
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7EE179C2188BFD614A24C095F9A6B387F86E0D01
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c35b9e8c-4a01-4188-95cd-cd6a8ff4be7b.roa
Signing time: Mon 28 Apr 2025 00:38:21 +0000
ROA not before: Mon 28 Apr 2025 00:38:21 +0000
ROA not after: Mon 02 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Apr 2025 00:58:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:e1:79:c2:18:8b:fd:61:4a:24:c0:95:f9:a6:b3:87:f8:6e:0d:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 28 00:38:21 2025 GMT
Not After : Jun 2 23:59:59 2025 GMT
Subject: serialNumber=e54cb7cc90eab436fb3b4e96fad785d35c499b39e59aa95276d66620efcef146, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:33:92:43:81:61:4a:0f:c9:0b:47:e0:80:d1:
17:35:ab:62:30:32:b9:4b:b6:54:9d:d8:1c:2a:0c:
dd:e5:00:e8:da:58:84:e3:ce:b9:61:9c:e3:d8:7d:
7b:21:86:17:d9:f6:6f:8f:41:e1:83:75:17:48:ba:
1d:be:32:17:8f:69:c0:6e:0b:d8:bf:18:31:5a:dc:
34:22:b2:d2:4a:0c:da:89:4f:f4:22:ee:55:97:d4:
73:d9:bf:1c:52:14:1f:1e:54:2d:58:79:26:ae:63:
e7:68:1e:18:fa:cd:63:4b:17:9c:8b:e6:ca:16:b2:
51:25:d2:1c:60:3a:09:5c:15:72:16:8c:54:f2:97:
78:80:ee:a8:36:d2:eb:60:55:29:8b:58:25:73:23:
df:ab:b0:de:f9:9b:f5:01:9b:d4:20:f5:ba:3c:58:
40:69:bd:9b:f4:9f:a4:5b:d7:75:13:0a:cd:a8:43:
c2:ee:5c:7c:5c:11:ef:aa:3d:2f:7d:52:8e:99:09:
43:a7:3b:be:ec:60:b6:1f:bf:a0:7e:31:51:f7:bb:
90:cd:1a:6b:24:d8:12:a5:58:26:11:27:fd:6c:b8:
53:06:3a:af:d8:9b:bd:63:57:d7:8c:2b:41:5c:f7:
76:0a:08:46:39:19:25:2b:48:7c:3d:c2:e1:95:79:
0f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B5:35:E9:A9:BF:BA:5F:E5:1E:41:E7:20:19:60:22:94:1F:A1:11
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c35b9e8c-4a01-4188-95cd-cd6a8ff4be7b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
97:8c:94:3f:f4:a3:cb:d1:65:a5:0f:77:33:bb:48:f6:63:e1:
99:95:05:a5:90:d5:c1:9c:92:7c:d9:8d:60:c3:4d:ab:8d:f4:
80:b9:87:3e:c0:8c:64:07:22:04:3f:14:a0:8d:b4:67:38:79:
d0:04:d9:31:79:11:9b:3c:b4:35:c7:7a:dc:9c:9d:b7:f2:07:
d8:91:25:56:59:c2:8c:ad:5e:7c:19:18:d1:6c:b9:29:91:ba:
45:87:3a:94:f5:83:d8:ac:4e:12:3c:8d:08:cd:da:09:91:0a:
1f:ed:e0:d9:25:e2:d1:6f:bf:75:40:bc:1e:0f:aa:18:76:06:
6c:86:f3:98:85:12:8d:b9:f3:34:41:6f:59:b9:7a:1d:b4:42:
f7:c5:07:51:9e:ed:37:10:01:3f:6d:9d:5d:8a:25:38:1d:86:
c2:9b:92:ef:6b:0d:f0:d1:d6:32:51:2f:a8:e3:45:02:ec:43:
ef:eb:66:e0:c6:da:9d:20:23:ef:1a:4e:ca:84:e9:e4:17:96:
0c:e7:bd:f8:59:42:2e:15:aa:c2:31:bd:64:32:8a:7b:46:b1:
71:06:ad:e0:8e:83:63:d0:24:21:9d:4d:f1:b0:db:17:ed:4e:
3e:ae:a8:9f:0f:6b:8a:3f:e9:11:b3:35:d8:d5:b2:ca:52:c2:
75:70:4c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 09:25:27 2025 by rpki-client