Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/957482f0-e24a-4173-aad8-a9d38c5f09b5.roa
File: 957482f0-e24a-4173-aad8-a9d38c5f09b5.roa (raw, json)
Hash identifier: SPI/6XISr85+0QtI5npBBXNPB6Nb/hP+3noC7GRHbFo=
Subject key identifier: DA:41:12:B5:CA:EC:53:EA:75:39:BD:52:AD:0B:65:33:87:A0:BE:B4
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 64E0F9A15132332464927BEF767431DF57F45719
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/957482f0-e24a-4173-aad8-a9d38c5f09b5.roa
Signing time: Fri 25 Apr 2025 19:38:13 +0000
ROA not before: Fri 25 Apr 2025 19:38:13 +0000
ROA not after: Fri 30 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Apr 2025 19:53:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:e0:f9:a1:51:32:33:24:64:92:7b:ef:76:74:31:df:57:f4:57:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 25 19:38:13 2025 GMT
Not After : May 30 23:59:59 2025 GMT
Subject: serialNumber=35ab9386e63d5b0bf2201f62c76e3860db3b62b346c103cc53ceafbb1c07dd19, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d8:9f:77:09:f4:32:46:24:7c:59:9b:df:af:
db:a5:d6:11:19:c3:07:ed:e1:33:ef:8a:5e:7d:91:
92:de:8c:7f:8d:a1:b4:8e:ca:24:a5:e3:d4:6b:1e:
aa:bf:d6:0d:85:89:83:de:eb:4e:83:68:1a:2e:08:
4f:4b:62:3d:a4:d3:d9:4d:1e:a5:3a:2f:d9:a1:d6:
70:1c:69:31:c3:8f:0e:e7:31:7d:df:18:09:13:f3:
d1:be:76:b1:b7:c9:7b:b5:76:d4:b8:eb:10:a4:47:
e7:1b:8a:0c:06:83:bf:ea:a8:26:19:a7:1e:18:6c:
ec:f9:5d:f9:a8:ba:ad:5d:29:7f:6e:6d:d4:f5:8e:
0f:dd:27:14:60:db:8a:1a:f7:17:ea:da:24:6e:4a:
a2:f2:5a:8b:8a:d9:5e:da:e5:10:30:c4:6a:9e:59:
8e:da:e8:29:b5:62:e9:27:af:9a:3d:c4:e8:b9:25:
17:02:95:4f:9e:35:76:31:2a:fe:f1:b7:41:54:c9:
29:db:ae:43:39:95:d4:8e:ed:2b:33:5c:53:f7:3b:
e8:4f:ff:ab:48:b3:a1:a7:9f:d0:13:a1:30:da:45:
35:a5:67:0b:be:6b:50:37:33:1e:c5:8b:de:1f:56:
75:b4:cb:38:85:71:30:2e:7b:b0:ef:ee:69:b2:b6:
40:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:41:12:B5:CA:EC:53:EA:75:39:BD:52:AD:0B:65:33:87:A0:BE:B4
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/957482f0-e24a-4173-aad8-a9d38c5f09b5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:94:84:d8:8a:d8:ef:d4:ec:9d:d3:80:e1:69:96:00:32:1f:
f3:cb:1a:bd:36:f2:2f:5d:de:e4:db:87:cc:7d:5a:40:0e:d2:
31:dd:1b:5e:ba:13:34:6a:2a:27:ee:fd:32:c4:d6:22:20:31:
86:0b:77:9f:54:dc:d3:83:ad:b6:e5:8c:54:ad:05:24:d2:f0:
d6:21:02:5a:cd:c7:a0:d3:7e:fb:ff:52:c8:8f:13:5c:4b:4b:
13:5d:ec:33:b6:cb:2e:c3:50:2b:dd:c2:f2:04:4f:c2:f7:f5:
b4:70:15:dc:84:5c:0c:97:cb:95:d6:e5:33:e3:21:8d:fb:87:
ca:7e:b0:23:4f:e5:43:4e:79:c1:9a:e9:3b:28:4a:3c:5f:81:
9d:42:93:a6:b3:11:3b:b5:71:ea:aa:32:1d:59:cb:44:af:c8:
b3:f2:fe:a7:0b:f4:da:37:38:c4:a8:75:54:24:5f:4e:23:85:
91:ca:64:6d:bf:e2:ee:3c:20:14:42:d4:66:db:f6:c5:eb:0c:
80:ca:ef:51:98:14:fd:fc:68:b0:0c:c6:44:6a:4d:cb:b5:82:
6a:36:8d:0c:e8:e3:67:14:a4:30:9e:44:84:c1:9f:8c:13:19:
da:09:49:59:d8:0b:9c:26:ae:34:31:e7:ac:a8:f7:6d:6b:20:
c1:e8:de:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:32:07 2025 by rpki-client