Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1e2b46ed-7d16-4f23-8181-9542a400b63f.roa
File: 1e2b46ed-7d16-4f23-8181-9542a400b63f.roa (raw, json)
Hash identifier: zoNIM/ocCTJN6z8/QZ3vpLOIRjnGkUc9yyqnFEbPE3Y=
Subject key identifier: 2E:AA:BF:40:DC:B5:DA:E3:31:85:20:A4:DF:2A:73:53:21:47:B6:EA
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 211830164C8DDD97EDA90382D03C31DDD587A6E2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1e2b46ed-7d16-4f23-8181-9542a400b63f.roa
Signing time: Fri 23 May 2025 11:38:17 +0000
ROA not before: Fri 23 May 2025 11:38:17 +0000
ROA not after: Fri 27 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 May 2025 11:58:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:18:30:16:4c:8d:dd:97:ed:a9:03:82:d0:3c:31:dd:d5:87:a6:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 23 11:38:17 2025 GMT
Not After : Jun 27 23:59:59 2025 GMT
Subject: serialNumber=1b2876c00ed95a84b4071a8b2ee33138becc67c044001d41c9accfeaa70d9bcb, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ca:0c:6a:f6:db:23:bc:b0:9e:81:f1:4d:9e:
17:f1:32:a8:73:b5:5d:a1:c0:0d:4e:25:6c:cb:7c:
11:8c:d4:f0:46:31:da:b9:20:c3:7b:bc:b5:e7:5a:
03:ea:29:b9:15:cc:fc:d2:6c:bd:1b:e8:1b:f5:2a:
47:d6:33:d6:7d:4c:16:6b:04:ad:11:1b:7d:01:f1:
75:af:92:89:7c:58:a1:63:be:df:21:62:77:9c:51:
3f:f7:5a:48:0c:de:2a:fe:14:47:60:f1:cc:6c:9e:
70:a8:78:94:9d:69:2a:61:a4:78:86:12:85:b5:b3:
08:6a:f5:85:70:f0:65:71:b3:90:65:88:19:7e:76:
72:7b:56:48:f8:13:7b:e9:42:58:94:f3:e4:b8:7c:
95:73:91:2e:d8:68:26:88:f1:1b:3d:59:95:aa:aa:
8b:78:9b:52:bb:ac:c5:c6:af:ea:35:ef:db:60:66:
ba:17:d4:66:45:e7:69:00:55:f9:48:97:b6:dc:55:
4f:d3:cc:a0:c5:ef:d4:a2:3a:65:f7:54:00:a5:f6:
ac:12:d9:4a:34:f7:68:68:15:82:38:06:ca:4d:16:
3c:68:e0:0f:a3:fb:72:b9:61:59:55:4d:90:71:c0:
ba:2d:81:4e:f9:f7:60:fa:67:43:c0:25:b1:85:aa:
b4:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:AA:BF:40:DC:B5:DA:E3:31:85:20:A4:DF:2A:73:53:21:47:B6:EA
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/1e2b46ed-7d16-4f23-8181-9542a400b63f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:fc:7b:0b:fc:44:f4:7c:67:0c:75:77:b1:a3:18:90:15:d7:
71:80:f4:d6:5b:9d:55:82:ec:a0:fc:83:2c:2d:e0:a4:eb:03:
33:ca:3c:bf:fa:aa:4e:a4:a4:7f:a4:0c:9f:8d:4d:ae:b0:6b:
a3:b9:c4:b0:dd:dc:6d:33:7a:1c:57:52:d6:9c:47:07:96:d9:
50:a8:fa:57:1c:5f:19:24:49:5e:54:88:86:78:50:a8:d0:d0:
31:81:04:ab:55:08:51:9a:91:85:eb:6c:d8:33:24:56:06:d4:
fa:00:9c:89:12:29:39:71:95:e8:0e:8a:d6:a0:8d:a7:a1:30:
f8:32:16:f5:a0:fd:95:2b:22:07:d0:a2:18:e1:50:da:b7:0c:
e9:52:4f:89:ad:37:f7:50:60:b4:ad:f1:aa:48:8b:21:01:cf:
79:8d:0e:42:c9:96:41:a3:92:b6:dd:48:7c:5e:86:92:21:0a:
8f:8b:c0:a4:d8:48:43:ef:46:bb:52:5e:79:0b:b6:ba:27:f4:
77:7c:b6:46:53:8c:ab:9c:78:7f:17:8c:01:c9:43:fa:13:0e:
58:e5:40:3d:41:d4:9b:d2:cb:de:01:02:12:8f:00:2e:af:54:
dc:c1:f7:b0:9a:68:84:b5:5b:b8:a1:a8:71:cf:86:c6:af:60:
e0:6e:a5:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 11:58:47 2025 by rpki-client