Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f6958582-de05-4126-b9c4-4bdbb6478f61.roa
File: f6958582-de05-4126-b9c4-4bdbb6478f61.roa (raw, json)
Hash identifier: kTUAxQ4SlXJGNzEpJntDZMoKaQ8sxWOzlGmZDFjl524=
Subject key identifier: 8E:02:52:7A:92:27:BB:B0:E3:C0:23:5A:A8:6D:97:2A:55:46:D5:BD
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 235BAD15570BE99F120481A651D9D1AC07088F0E
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f6958582-de05-4126-b9c4-4bdbb6478f61.roa
Signing time: Fri 25 Apr 2025 06:18:20 +0000
ROA not before: Fri 25 Apr 2025 06:18:20 +0000
ROA not after: Fri 30 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Apr 2025 06:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:5b:ad:15:57:0b:e9:9f:12:04:81:a6:51:d9:d1:ac:07:08:8f:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 25 06:18:20 2025 GMT
Not After : May 30 23:59:59 2025 GMT
Subject: serialNumber=69657f4416ec6cc6d04cc293bd571326692defde5cbb0753e1b4b3f8c9e741a9, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:26:46:ab:20:b7:5e:3f:a9:21:8e:0d:ae:b0:
06:5b:34:5d:f0:b2:42:37:26:8b:16:4e:68:9f:96:
1e:ae:80:e1:72:57:1b:09:7d:7a:a2:ee:97:ae:76:
3e:26:2b:a0:40:84:52:87:8c:0c:2f:a0:95:af:19:
4f:84:97:a6:ef:33:97:19:a2:a9:7a:49:d8:3f:4f:
8f:fe:09:c8:c5:f9:3f:6a:49:26:90:78:e0:08:f4:
8f:36:8e:71:b2:de:5b:40:15:f7:aa:a7:ef:d0:22:
90:e4:17:66:eb:1b:a4:8e:2e:56:c4:e7:8d:07:31:
d3:a1:1c:ca:d3:4c:47:65:e2:4b:36:9f:7c:65:1b:
ec:38:c9:73:32:d9:6f:4f:99:e5:f7:ca:23:ff:9d:
7a:ec:c1:f1:9b:db:39:e9:cc:d5:a7:f2:b3:68:46:
7e:ee:8d:ab:33:0f:a5:8f:8d:eb:97:fc:aa:e6:6f:
b0:fd:c1:bf:61:bb:ac:9d:23:6f:bc:0d:89:08:9c:
1e:73:13:8f:20:d8:0a:e9:0b:05:b3:64:14:5c:d2:
59:7a:64:07:96:bb:bb:fd:90:7d:6d:d0:5b:0a:ed:
3e:6b:f2:66:9e:f2:bf:54:bd:4e:16:88:b3:65:10:
82:1d:84:f2:7a:b4:fb:87:75:20:e9:25:8b:eb:e5:
85:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:02:52:7A:92:27:BB:B0:E3:C0:23:5A:A8:6D:97:2A:55:46:D5:BD
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/f6958582-de05-4126-b9c4-4bdbb6478f61.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d2:ac:99:f5:26:d0:37:e8:a6:62:f2:91:da:b8:34:99:7a:
05:a9:07:26:c0:8d:bf:d8:a0:73:c2:04:4b:bd:81:9e:62:06:
38:ba:08:0d:04:00:a2:cb:66:45:2c:b6:08:14:73:96:70:f9:
eb:fe:44:10:55:66:04:a8:72:f6:60:33:e2:e6:e0:59:e8:c7:
42:70:a3:c4:4c:95:f1:fd:de:7c:08:d0:51:06:4a:9d:33:d1:
57:1f:e1:7c:6a:52:19:e9:07:65:be:61:ed:f3:cc:63:71:8c:
a0:36:b6:d7:b5:70:2e:20:7d:59:fa:db:46:db:c2:67:d9:2b:
76:cc:22:4b:d6:ad:51:f7:aa:79:b5:4f:9f:6a:18:6a:a9:4c:
cc:30:2e:7f:0a:b2:e6:37:f3:30:d5:81:9a:11:d4:e4:31:a6:
36:3f:a0:ef:a5:d3:16:cf:81:fc:e9:64:6d:cf:45:4a:85:30:
f0:b0:9b:2b:91:a0:9f:3f:75:45:e3:9a:ee:7b:f7:fa:24:ea:
4a:39:f6:f9:f9:08:a0:30:3e:60:3e:7f:52:ae:66:50:a9:d5:
c8:2b:7c:5e:06:b6:b1:df:25:b8:c8:cb:f0:92:34:a6:3c:cd:
b6:f8:13:da:a1:7f:61:2e:e4:59:83:83:9f:db:13:74:99:5e:
47:de:df:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 14:21:36 2025 by rpki-client