Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/df0c3227-cf9c-4c3e-b119-911bb22b2575.roa
File: df0c3227-cf9c-4c3e-b119-911bb22b2575.roa (raw, json)
Hash identifier: QZR8hkzg4NJ5ObLlNT8MJp3d94aNUE3cuEHQuCcIT38=
Subject key identifier: A3:91:DC:08:7A:21:E8:56:9C:81:B4:9F:CB:97:8C:80:95:7A:39:89
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 11EE2D0E939042ECF376CEB4DE3D54D918CF831B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/df0c3227-cf9c-4c3e-b119-911bb22b2575.roa
Signing time: Sat 03 May 2025 20:38:21 +0000
ROA not before: Sat 03 May 2025 20:38:21 +0000
ROA not after: Sat 07 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 May 2025 20:53:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:ee:2d:0e:93:90:42:ec:f3:76:ce:b4:de:3d:54:d9:18:cf:83:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 3 20:38:21 2025 GMT
Not After : Jun 7 23:59:59 2025 GMT
Subject: serialNumber=bbad32e7027d7bec2cb0c34bd634b6c7ebb8a7df80e0a656234d332514de0eea, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bf:81:88:54:cd:07:d8:6b:0d:0b:04:ec:8d:
e1:54:59:ab:6b:17:5a:67:e1:8e:26:75:c8:1e:27:
cf:cf:e1:8d:51:b1:c8:99:b7:2d:f3:27:12:4c:cb:
30:38:64:d6:77:61:07:31:e0:ef:3e:6e:02:00:c5:
85:3a:43:4c:4f:19:17:b7:54:0a:65:3d:29:93:32:
45:1c:ac:b6:1a:41:b4:77:4b:01:ce:3c:27:18:57:
1f:18:89:07:fb:cc:1e:76:1c:db:31:e0:af:03:ac:
b6:58:52:20:81:6a:a2:cb:fc:b7:74:be:6f:52:4a:
db:f4:10:fa:c4:9e:90:be:36:86:28:f5:1c:b5:a1:
77:ea:2a:7c:9e:5f:a6:8e:2f:a1:7d:69:f7:ba:b8:
0d:e3:9d:25:b6:8c:1d:9e:be:2a:d6:22:76:dd:f0:
b5:0c:a9:7c:f9:ca:2e:c9:04:ff:e7:f6:fc:69:f8:
5e:c5:b5:e7:e6:ef:6f:cb:43:62:c9:a6:ad:a6:35:
05:66:e3:3b:11:33:38:e2:58:26:4d:93:e1:4b:d2:
b8:1f:2f:93:ed:b8:c3:df:12:a4:97:43:b0:b8:21:
eb:34:20:77:bd:2a:8f:50:8a:f2:cf:8a:90:bd:d9:
1f:63:1e:3e:6e:53:23:9a:5e:d4:53:71:ee:86:64:
6c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:91:DC:08:7A:21:E8:56:9C:81:B4:9F:CB:97:8C:80:95:7A:39:89
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/df0c3227-cf9c-4c3e-b119-911bb22b2575.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f8:86:1e:46:2f:6c:88:0e:21:58:6d:83:a9:cf:24:89:b5:
09:ec:9a:3a:1d:89:3d:74:54:5c:13:63:b7:13:fe:e7:ee:e0:
a5:6a:05:0b:1d:f0:45:5e:d3:2a:60:ee:3f:91:e1:cd:92:89:
6f:47:b2:47:2d:6e:8c:49:fb:de:04:16:44:7d:05:86:1b:02:
bd:a5:53:61:7d:2b:4d:93:99:27:c5:b1:c6:1d:f6:99:0b:27:
44:16:bf:7c:08:aa:a9:fc:10:e4:59:89:1e:4e:c5:1d:a6:3d:
eb:d5:6f:11:0e:7e:0a:c7:82:0a:93:e8:87:7f:f5:44:69:bd:
21:e7:d6:d1:6c:dc:b5:bb:33:c7:28:77:d1:80:3e:28:cb:61:
45:22:b3:74:5a:a3:48:5f:23:9c:52:75:68:52:cd:ca:8d:cf:
f7:e6:68:55:2b:01:41:31:21:00:ef:36:7d:70:2c:d0:6c:58:
ba:b9:fa:49:aa:e3:01:db:a7:5a:22:88:2f:3a:32:83:75:7d:
7c:4e:fd:73:b1:5f:50:35:45:46:cf:b6:87:88:0a:51:70:55:
88:75:e4:18:87:5f:16:45:82:59:b7:fd:a0:2b:0a:ee:21:fb:
d5:05:38:72:dc:3b:a5:43:27:ba:7d:40:2f:43:dd:1a:46:43:
3d:86:b6:ba
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUEe4tDpOQQuzzds603j1U2RjPgxswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjUwNTAzMjAzODIxWhcNMjUwNjA3MjM1OTU5
WjB6MUkwRwYDVQQFE0BiYmFkMzJlNzAyN2Q3YmVjMmNiMGMzNGJkNjM0YjZjN2Vi
YjhhN2RmODBlMGE2NTYyMzRkMzMyNTE0ZGUwZWVhMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCcv4GIVM0H2GsNCwTsjeFUWatrF1pn4Y4mdcgeJ8/P4Y1R
sciZty3zJxJMyzA4ZNZ3YQcx4O8+bgIAxYU6Q0xPGRe3VAplPSmTMkUcrLYaQbR3
SwHOPCcYVx8YiQf7zB52HNsx4K8DrLZYUiCBaqLL/Ld0vm9SStv0EPrEnpC+NoYo
9Ry1oXfqKnyeX6aOL6F9afe6uA3jnSW2jB2evirWInbd8LUMqXz5yi7JBP/n9vxp
+F7Ftefm72/LQ2LJpq2mNQVm4zsRMzjiWCZNk+FL0rgfL5PtuMPfEqSXQ7C4Ies0
IHe9Ko9QivLPipC92R9jHj5uUyOaXtRTce6GZGyBAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUo5HcCHoh6FacgbSfy5eMgJV6OYkwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2L2RmMGMzMjI3LWNmOWMtNGMzZS1iMTE5LTkxMWJiMjJiMjU3NS5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAHT4hh5GL2yIDiFYbYOpzySJtQns
mjodiT10VFwTY7cT/ufu4KVqBQsd8EVe0ypg7j+R4c2SiW9HskctboxJ+94EFkR9
BYYbAr2lU2F9K02TmSfFscYd9pkLJ0QWv3wIqqn8EORZiR5OxR2mPevVbxEOfgrH
ggqT6Id/9URpvSHn1tFs3LW7M8cod9GAPijLYUUis3Rao0hfI5xSdWhSzcqNz/fm
aFUrAUExIQDvNn1wLNBsWLq5+kmq4wHbp1oiiC86MoN1fXxO/XOxX1A1RUbPtoeI
ClFwVYh15BiHXxZFglm3/aArCu4h+9UFOHLcO6VDJ7p9QC9D3RpGQz2Gtro=
-----END CERTIFICATE-----
Generated at Wed May 7 10:44:31 2025 by rpki-client