Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb9cb2b7-42fb-4da4-bb8d-846cb26d5d1b.roa
File: fb9cb2b7-42fb-4da4-bb8d-846cb26d5d1b.roa (raw, json)
Hash identifier: UroAfJ1zy/2rkNIN7TBBBLHnFiTMyoK/AuT9qMVYpW4=
Subject key identifier: 38:73:D0:62:5E:03:48:FB:59:95:FC:22:96:D5:7A:3F:60:FE:D0:05
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 4EFE7F87A0B85A29D71DA27DD48AEFA03FA6E451
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb9cb2b7-42fb-4da4-bb8d-846cb26d5d1b.roa
Signing time: Tue 29 Apr 2025 10:13:22 +0000
ROA not before: Tue 29 Apr 2025 10:13:22 +0000
ROA not after: Tue 03 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Apr 2025 10:33:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:fe:7f:87:a0:b8:5a:29:d7:1d:a2:7d:d4:8a:ef:a0:3f:a6:e4:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 29 10:13:22 2025 GMT
Not After : Jun 3 23:59:59 2025 GMT
Subject: serialNumber=bd0422e59f937f2a239647a97614cafa63442876271bd65a454dd3aad019b4e8, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fa:39:c4:d5:1a:b5:f8:13:fb:9a:37:dd:d1:
e8:ce:c0:26:ce:b1:75:46:f8:3b:fb:ef:1b:c0:fe:
6e:bc:3c:d8:4e:03:68:2d:07:75:dc:5c:b4:df:23:
2a:14:0d:db:7c:60:fd:e1:4c:5b:28:6a:f4:95:3e:
a3:13:64:b5:cd:ba:10:6d:1d:53:29:96:26:6a:ce:
83:16:b9:6b:66:3d:04:f4:f0:47:74:3c:bf:66:fd:
f5:41:cb:c0:60:15:16:1f:1a:85:b3:a7:87:26:b9:
37:34:0c:6c:2d:17:8a:db:9c:01:49:dd:77:98:2b:
e0:36:0d:e7:9d:32:b8:e1:86:01:f8:ff:47:79:87:
cd:b7:21:b2:f8:19:1a:3e:d0:2f:b8:d6:0f:41:96:
10:84:59:cb:d4:e4:4b:c2:ba:8a:a4:55:61:8b:32:
20:af:8e:78:9b:72:73:8a:ff:2b:e1:b1:20:13:a8:
a3:60:b6:06:f0:3b:08:9d:7e:50:05:e3:9a:02:67:
56:c3:18:db:81:15:33:1a:01:ee:ff:50:a4:f2:a3:
e3:0f:7a:66:36:eb:de:32:0c:27:e4:20:53:14:15:
59:78:11:66:75:ad:38:16:7e:db:e9:ff:fb:be:bc:
13:4c:05:8e:43:fc:e4:c9:5a:f4:9f:8b:49:c9:70:
1a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:73:D0:62:5E:03:48:FB:59:95:FC:22:96:D5:7A:3F:60:FE:D0:05
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/fb9cb2b7-42fb-4da4-bb8d-846cb26d5d1b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:71:5b:aa:0d:0a:56:fc:51:3f:31:48:34:07:03:46:0c:c7:
88:95:fc:b6:7d:4c:c3:5a:9c:81:3d:0c:18:c5:7a:f6:37:ea:
88:51:60:31:6f:d6:a1:d5:dd:24:be:cd:d3:b6:48:79:96:74:
1a:b8:22:45:50:89:81:92:fe:c4:de:cc:5f:42:38:13:87:08:
5a:31:02:a0:07:82:c3:1d:53:34:0d:ff:40:1f:da:dd:52:e8:
8a:1b:b2:cc:ed:01:3a:bf:66:31:b6:75:dd:fc:12:2b:16:1c:
6e:e4:c3:10:d7:c5:c1:4b:43:49:32:3e:15:72:88:43:ab:cb:
8c:99:ae:27:40:9f:34:1d:a6:37:72:16:0e:0f:ce:e6:4d:68:
c3:53:47:49:f6:a3:0a:91:a3:4a:95:49:d1:6e:8f:a7:67:70:
9b:42:a1:cb:65:62:bf:81:50:b3:39:22:97:d1:98:e2:54:66:
9f:c7:19:0c:8e:91:51:75:aa:0a:35:b2:f2:c4:bc:55:e2:6d:
15:9e:24:da:6e:dd:ca:09:3b:ab:36:ad:f8:ed:95:7b:98:a7:
37:ba:ac:9c:96:16:4d:84:a0:d4:a2:36:a8:76:3e:cc:f1:0c:
78:93:1b:8a:b9:c1:09:10:0b:bc:d7:ea:b2:fe:c5:5e:4f:08:
21:68:61:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 07:27:56 2025 by rpki-client