Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2814a7ba-adeb-4676-8e2e-2e829143a507.roa
File: 2814a7ba-adeb-4676-8e2e-2e829143a507.roa (raw, json)
Hash identifier: /K0NHtPFlq7l0NHVHZKG0XeG9jg8uCYrJtB5MN9wcM4=
Subject key identifier: AE:F8:2F:B6:8E:C7:1E:C0:47:8B:3D:B3:5F:9B:3C:E7:3B:1E:F8:67
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 629BE2D263D1C96B0F12A10DDB54E6624252BA6B
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2814a7ba-adeb-4676-8e2e-2e829143a507.roa
Signing time: Mon 31 Mar 2025 09:58:19 +0000
ROA not before: Mon 31 Mar 2025 09:58:19 +0000
ROA not after: Mon 05 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 10:18:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:9b:e2:d2:63:d1:c9:6b:0f:12:a1:0d:db:54:e6:62:42:52:ba:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Mar 31 09:58:19 2025 GMT
Not After : May 5 23:59:59 2025 GMT
Subject: serialNumber=5f413cddd52070936c452bc5a35e6a6a7a67ee626e228a10bf6548ae1d3deadf, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:46:41:ce:26:b0:f9:f7:74:9e:c1:3d:c5:8b:
e9:89:fb:78:68:19:53:54:da:c3:bb:84:39:72:50:
cb:06:e1:8e:55:d3:06:07:6e:60:72:de:4c:74:da:
3e:09:33:1e:11:a4:03:19:c5:bd:f8:8c:5d:63:f1:
4d:ec:bf:3c:fc:ea:9f:30:17:8e:4f:24:61:21:87:
21:12:32:23:2e:68:2e:cc:13:d6:4d:99:1b:91:ac:
d1:32:b5:ab:fc:d1:3f:78:bc:32:a4:b0:4e:e8:58:
08:2f:78:72:b8:9c:41:01:bb:19:44:64:49:ce:e5:
29:0f:3a:00:fb:de:f8:8a:52:c2:df:39:9c:ac:88:
2c:25:81:e0:59:21:b0:f4:2c:94:8f:13:48:6c:be:
91:bb:79:55:8e:3e:93:aa:78:e2:73:ac:ca:e6:80:
52:60:f5:34:72:b3:ea:8a:6b:fa:d7:ab:6d:0f:f7:
30:c6:09:df:27:44:6f:cf:a0:bb:e4:60:69:c8:5d:
61:81:b4:bd:1b:84:59:c2:5d:aa:6f:66:8a:2f:bf:
55:2e:8f:4b:c4:6a:3f:93:d8:e4:4f:7d:5b:92:8b:
c7:05:4a:85:b7:df:6a:03:2e:07:15:91:48:d4:d2:
39:cb:c3:dd:d3:36:0c:ae:78:04:5c:56:0c:6e:35:
7a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F8:2F:B6:8E:C7:1E:C0:47:8B:3D:B3:5F:9B:3C:E7:3B:1E:F8:67
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/2814a7ba-adeb-4676-8e2e-2e829143a507.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
09:cb:a0:78:9a:15:ac:fb:42:e5:da:3b:6a:57:fa:67:27:d6:
cb:1f:8c:04:84:44:c2:48:66:ae:35:09:66:13:b6:9f:ca:ca:
e2:79:d5:f4:5d:44:8b:67:b7:5b:af:dc:92:8d:67:25:d0:4a:
99:ea:8b:ad:e4:28:a8:6d:e8:d2:4b:c3:d7:53:19:b2:ee:f2:
66:8b:ed:61:51:72:e6:7b:69:b1:09:7f:08:dc:ad:16:64:6f:
20:54:8b:71:67:32:65:ba:1a:53:87:52:1b:ca:5a:dc:d5:8f:
81:b6:fe:9b:ac:37:fd:a8:6f:4b:7b:0f:20:0b:d5:9a:13:c9:
a3:be:3a:59:4b:fd:20:38:4c:21:fb:07:e3:29:ee:3d:fe:57:
55:e4:da:af:5d:75:2c:7b:16:e2:a6:5a:8e:d9:c2:49:4e:db:
a1:66:e6:a4:33:13:71:b2:08:4c:ec:ab:3d:89:19:c3:40:7d:
bf:b8:99:95:06:43:a1:af:ae:0a:56:12:39:de:9c:f2:d2:ef:
c2:29:60:75:7a:e6:8d:a9:85:6c:32:b9:33:48:99:33:11:92:
4b:62:68:8c:96:d2:67:ba:0e:e0:59:51:4c:b0:69:af:92:21:
98:0a:60:e4:c6:f1:0d:fc:0e:8f:29:6d:83:bf:db:92:99:97:
46:95:9e:6f
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIUYpvi0mPRyWsPEqEN21TmYkJSumswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMjc4YWFiODc4ZjI2NjJjZTE0ZTkwNWUxOGViY2I3NTIy
ZjkyYjM2ODRiYzQ4NjViNGQwHhcNMjUwMzMxMDk1ODE5WhcNMjUwNTA1MjM1OTU5
WjB6MUkwRwYDVQQFE0A1ZjQxM2NkZGQ1MjA3MDkzNmM0NTJiYzVhMzVlNmE2YTdh
NjdlZTYyNmUyMjhhMTBiZjY1NDhhZTFkM2RlYWRmMS0wKwYDVQQDEyRjMGNlMjNl
YS00M2ZjLTRiZTQtYmVlZS1jMDE0NzgxMjJhMGUwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDqRkHOJrD593SewT3Fi+mJ+3hoGVNU2sO7hDlyUMsG4Y5V
0wYHbmBy3kx02j4JMx4RpAMZxb34jF1j8U3svzz86p8wF45PJGEhhyESMiMuaC7M
E9ZNmRuRrNEytav80T94vDKksE7oWAgveHK4nEEBuxlEZEnO5SkPOgD73viKUsLf
OZysiCwlgeBZIbD0LJSPE0hsvpG7eVWOPpOqeOJzrMrmgFJg9TRys+qKa/rXq20P
9zDGCd8nRG/PoLvkYGnIXWGBtL0bhFnCXapvZoovv1Uuj0vEaj+T2ORPfVuSi8cF
SoW332oDLgcVkUjU0jnLw93TNgyueARcVgxuNXrBAgMBAAGjggKxMIICrTAdBgNV
HQ4EFgQUrvgvto7HHsBHiz2zX5s85zse+GcwHwYDVR0jBBgwFoAUVajdRdlEE/nR
kvUsY86M+8YUlrgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy8xNDMzZWJmZi1k
ZmQ2LTRjNWMtYjdmZi05OWM4NTEzOWQ0YTgvMjc4YWFiODc4ZjI2NjJjZTE0ZTkw
NWUxOGViY2I3NTIyZjkyYjM2ODRiYzQ4NjViNGQuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvMTZmMWZmZWUtNzQ2MS00Njc0LWJiMDUtZmRk
ZWZhOWEwMmM2LzI4MTRhN2JhLWFkZWItNDY3Ni04ZTJlLTJlODI5MTQzYTUwNy5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzE2ZjFmZmVlLTc0NjEtNDY3NC1iYjA1
LWZkZGVmYTlhMDJjNi9KbUxPRk9rRjRZNjh0MUl2a3JOb1M4U0dXMDAuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBADHJHgwDQYJKoZIhvcNAQELBQADggEBAAnLoHiaFaz7QuXaO2pX+mcn1ssf
jASERMJIZq41CWYTtp/KyuJ51fRdRItnt1uv3JKNZyXQSpnqi63kKKht6NJLw9dT
GbLu8maL7WFRcuZ7abEJfwjcrRZkbyBUi3FnMmW6GlOHUhvKWtzVj4G2/pusN/2o
b0t7DyAL1ZoTyaO+OllL/SA4TCH7B+Mp7j3+V1Xk2q9ddSx7FuKmWo7ZwklO26Fm
5qQzE3GyCEzsqz2JGcNAfb+4mZUGQ6GvrgpWEjnenPLS78IpYHV65o2phWwyuTNI
mTMRkktiaIyW0me6DuBZUUywaa+SIZgKYOTG8Q38Do8pbYO/25KZl0aVnm8=
-----END CERTIFICATE-----
Generated at Sat Apr 26 16:27:05 2025 by rpki-client