Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb085c02-741e-4af2-82a4-97b3e7932c80.roa
File: fb085c02-741e-4af2-82a4-97b3e7932c80.roa (raw, json)
Hash identifier: CTlf5kcDVxSL/Nt0q4Uff074hZOKw8rinHFTP3WLPhk=
Subject key identifier: E1:69:14:61:4C:72:29:2F:62:7A:BE:C8:E4:AA:EB:E9:34:E4:65:55
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 7DB121291B78E43660FC3D27CD3E10939FB6240A
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb085c02-741e-4af2-82a4-97b3e7932c80.roa
Signing time: Thu 01 May 2025 22:18:16 +0000
ROA not before: Thu 01 May 2025 22:18:16 +0000
ROA not after: Thu 05 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 May 2025 22:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:b1:21:29:1b:78:e4:36:60:fc:3d:27:cd:3e:10:93:9f:b6:24:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 1 22:18:16 2025 GMT
Not After : Jun 5 23:59:59 2025 GMT
Subject: serialNumber=caa9749d3b6ec2f6a9715ee97cd33d98ac967ac36977199aefade4f2be69417e, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a3:0f:7e:89:ee:41:da:5c:11:29:3d:c1:f1:
49:13:3e:84:a0:c8:f0:10:56:9c:63:4d:92:9b:2f:
47:9a:0d:2a:bb:1b:20:31:ec:8e:c3:07:5c:1c:1e:
84:99:24:24:8d:f7:6b:00:db:6e:a2:04:93:c5:00:
03:36:1d:d9:3b:2f:e3:e1:54:ec:a6:1d:ff:45:ba:
fd:ad:46:ee:94:9d:ab:ba:af:84:ac:90:4b:a3:1a:
6d:e1:0e:f5:88:0b:df:e9:4e:36:ce:de:bf:7e:0c:
ff:1e:1e:c0:d9:bd:2f:d8:f3:47:e0:51:98:93:a8:
b8:c3:b5:40:4c:c5:c2:7b:d6:c0:9c:b2:5f:52:fc:
84:6d:84:90:61:13:90:21:f4:3a:6c:e0:c5:db:47:
4a:5a:03:a9:0f:17:80:2d:3e:08:fd:37:9e:7e:60:
97:96:a2:45:ed:ac:35:d5:8a:90:15:e8:39:42:30:
c3:6f:e6:58:6f:71:d0:1f:df:37:bc:6a:b5:94:74:
08:09:a5:73:b7:21:e2:9b:c3:14:ae:15:0b:bd:5a:
4a:9d:eb:db:84:ae:3c:7a:0f:f2:3c:f9:cb:15:dc:
0f:0d:32:f4:cf:19:76:44:7d:86:25:ed:77:e7:c5:
24:c8:4e:00:b5:d4:74:4a:91:de:8a:ca:7c:ed:a2:
8d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:69:14:61:4C:72:29:2F:62:7A:BE:C8:E4:AA:EB:E9:34:E4:65:55
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb085c02-741e-4af2-82a4-97b3e7932c80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a9:51:64:3b:5a:9e:2c:77:7a:d2:7a:f4:8b:97:3c:5e:5a:
33:6e:2f:cb:73:8a:27:02:be:10:93:f8:88:42:b1:20:e4:c3:
19:39:4c:8b:30:6d:a7:92:00:e9:70:15:02:b4:b6:b7:56:11:
1b:c4:c8:a8:89:72:06:b8:8a:2c:b3:53:6f:8d:2f:6c:68:4a:
23:39:80:0e:83:79:fd:f4:1e:24:7d:80:6e:da:2d:c5:c7:16:
ea:b5:7b:c8:47:ce:78:d6:6e:34:43:c2:aa:fd:87:53:77:21:
59:8c:07:c1:25:fd:40:54:42:a7:56:e2:c5:4e:62:f8:c7:c6:
5b:ac:19:81:70:5a:a2:a7:fc:70:3e:c9:04:02:5d:16:6a:21:
fa:c5:8c:69:77:65:a1:2f:06:f7:bf:69:e6:08:1f:37:3d:96:
3e:ef:5b:a1:cd:a3:0d:0a:49:ce:0e:9b:5b:74:b6:52:e3:d4:
08:cb:e5:42:1e:dc:15:0a:e2:9c:00:80:2d:15:d6:cd:d6:b9:
94:17:22:8c:7c:6b:c6:cf:50:59:bf:24:c2:47:d5:7c:cd:2b:
42:bc:aa:28:16:4f:3d:7c:ed:43:0e:03:96:13:99:74:07:7a:
76:ea:1d:c3:28:ce:9b:8b:95:7d:cd:ee:58:8e:b1:ac:05:09:
f3:c0:3c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 16:34:11 2025 by rpki-client