Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9887f28b-d09b-45d0-a8fd-b0e54a4f42a6.roa
File: 9887f28b-d09b-45d0-a8fd-b0e54a4f42a6.roa (raw, json)
Hash identifier: Iyzc8Z8/7fk5Qr61dfsk06LvjV2blJbOFk02d5OmPjY=
Subject key identifier: 80:ED:F1:E2:1B:7F:D1:79:D9:47:98:1C:96:74:EA:BC:DE:DB:66:EE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 270CACA88FC067A07890FBC97C4D49130FC86665
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9887f28b-d09b-45d0-a8fd-b0e54a4f42a6.roa
Signing time: Wed 21 May 2025 20:33:19 +0000
ROA not before: Wed 21 May 2025 20:33:19 +0000
ROA not after: Wed 25 Jun 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 May 2025 20:48:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:0c:ac:a8:8f:c0:67:a0:78:90:fb:c9:7c:4d:49:13:0f:c8:66:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: May 21 20:33:19 2025 GMT
Not After : Jun 25 23:59:59 2025 GMT
Subject: serialNumber=9549586e361ea2d5ba253e57d8470828f514768f8abb679a8ef11bca638a3fc4, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6f:65:39:49:ca:73:58:9a:05:03:0f:c6:9c:
93:67:81:e2:ac:45:78:91:69:ea:12:d6:01:fc:d1:
81:de:0e:43:2c:ee:6e:a9:3e:ce:22:82:23:56:04:
51:73:e0:65:43:34:3f:07:cc:1a:bf:18:5e:67:05:
6f:17:d4:93:d5:fe:32:9f:4d:fd:91:7f:98:ad:a5:
f7:10:ec:86:f1:be:13:19:bc:70:cd:4b:5d:0b:a5:
ec:3c:ac:c0:d8:c9:40:4a:c7:3d:64:03:79:5a:47:
ff:6f:3c:a5:dc:f1:b1:de:d1:fe:30:94:97:4a:a1:
c2:88:34:67:4e:12:b3:76:49:e9:6b:64:67:3c:bf:
a7:33:ac:c6:04:88:7c:33:4f:df:1b:01:a8:8c:a8:
aa:40:d1:cd:51:e2:2e:5d:76:0c:a5:44:ce:ac:a1:
87:32:1a:23:10:93:49:b7:a0:4a:19:23:e6:61:78:
ef:08:e2:39:64:82:57:19:79:c7:d4:19:c3:f2:30:
d5:16:34:03:f1:27:c5:21:72:cc:4f:72:94:3c:a5:
9f:79:76:60:85:ac:10:7a:3a:0e:58:06:3c:0b:5a:
12:73:1b:be:00:f3:03:e3:5a:27:74:8c:d1:65:18:
b7:15:12:de:39:40:35:c6:65:72:24:4a:7c:94:ca:
61:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:ED:F1:E2:1B:7F:D1:79:D9:47:98:1C:96:74:EA:BC:DE:DB:66:EE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/9887f28b-d09b-45d0-a8fd-b0e54a4f42a6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
67:9f:86:37:5e:4d:a4:b1:0a:12:8c:e7:13:be:97:40:30:69:
5d:ec:67:80:17:42:c1:d0:fa:4e:49:65:19:f6:f4:9f:9d:a9:
13:a4:50:24:47:b4:0b:65:6c:58:d8:6f:69:fe:87:d2:06:a9:
6f:69:e0:f8:13:31:27:7a:90:27:71:ea:5c:32:02:ec:b2:b7:
d8:78:f7:9a:3d:1c:0e:16:de:34:fe:66:07:5c:87:4f:4a:77:
d7:c8:19:97:9e:1f:5e:16:3d:64:8b:63:e8:fa:d5:16:7c:4e:
51:b4:5c:c3:bf:0e:17:a0:b9:f4:17:68:a1:98:ed:c3:87:b1:
a8:33:e5:83:cd:86:88:10:3e:e9:2a:f6:4e:07:6c:d6:f9:7a:
7f:57:18:1d:17:39:a4:1d:c2:d7:22:15:ee:d3:f8:60:a4:e2:
43:cb:01:4b:23:15:f9:30:e0:a0:6c:cc:54:70:82:23:77:86:
40:20:8c:7c:6a:4f:f9:4c:e0:f4:bb:12:62:bf:12:12:df:a8:
8f:9f:de:0d:3a:60:02:de:6a:dd:46:c3:a8:bf:67:03:ee:b6:
e5:07:fd:b8:c9:97:58:83:2d:bb:4c:b8:27:8f:c2:40:43:97:
42:62:3e:50:06:8e:5e:fd:01:97:75:04:81:1a:ed:98:79:0d:
2e:3a:e8:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 15:49:55 2025 by rpki-client