Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b549bc70-fa10-44b9-a374-2ff27355d8e3.roa
File: b549bc70-fa10-44b9-a374-2ff27355d8e3.roa (raw, json)
Hash identifier: 83VMFtHeX0e11D8MwMeEcjeCKLwrLwVGQHD60o1a2O4=
Subject key identifier: F5:29:95:29:23:44:C8:E3:7B:A6:7F:F8:87:97:F5:9C:76:D1:FA:EE
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 079810813BD7FDFB8C6468D03C33ABDAE28F2EA2
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b549bc70-fa10-44b9-a374-2ff27355d8e3.roa
Signing time: Sun 06 Apr 2025 21:23:18 +0000
ROA not before: Sun 06 Apr 2025 21:23:18 +0000
ROA not after: Sun 11 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 06 Apr 2025 21:43:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:98:10:81:3b:d7:fd:fb:8c:64:68:d0:3c:33:ab:da:e2:8f:2e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 6 21:23:18 2025 GMT
Not After : May 11 23:59:59 2025 GMT
Subject: serialNumber=e8bc4f74d96fcd779ad1705dab8f58596243140c08261d2d1503bfa07122c96f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:ed:85:f0:fa:7e:1b:e8:03:62:22:d1:49:
29:35:32:db:c1:1b:59:01:30:27:3c:da:9c:11:bc:
e0:56:4d:80:9d:10:22:8a:0c:6d:d0:29:55:d0:32:
a8:41:e3:af:2f:cd:53:71:56:e5:28:a7:d2:8a:a8:
0e:3b:26:8d:c3:f2:5b:43:5f:05:a4:19:fb:12:1b:
10:d0:21:58:47:6d:82:d0:cf:15:e4:ce:e2:3d:4f:
69:d6:83:72:51:ff:69:bf:ea:9c:63:f4:54:9c:be:
7b:37:57:19:5b:b6:ac:f1:a6:e6:6d:12:e4:9b:57:
6e:d4:69:91:40:54:43:85:b6:da:e7:08:76:a4:94:
e2:b8:fb:40:12:e4:25:ad:ac:04:3a:88:84:9c:97:
13:34:98:05:d1:a2:b7:d7:4e:b6:ba:3d:98:ac:55:
a4:fb:d6:58:0b:b2:e2:3d:39:ff:c2:07:f9:61:da:
c1:c7:10:50:1f:33:f0:bf:77:cb:d0:b3:da:21:3a:
ce:d4:4f:f0:fa:fc:52:9b:ca:07:4b:59:80:bf:9d:
64:eb:4a:bf:e9:84:70:56:74:10:bf:bf:8e:63:66:
f3:e1:c1:5d:04:f5:0c:e3:c8:39:a0:68:b8:0e:96:
17:8c:9a:f8:40:a0:bb:9f:7b:23:2d:b4:f4:ef:e6:
ec:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:29:95:29:23:44:C8:E3:7B:A6:7F:F8:87:97:F5:9C:76:D1:FA:EE
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/b549bc70-fa10-44b9-a374-2ff27355d8e3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
00:a7:91:3d:62:94:9d:32:af:69:ff:01:87:45:13:98:b0:ec:
01:d6:c6:c4:0e:e7:69:d0:09:7e:65:b5:e2:e3:d4:c5:2f:c8:
8f:2d:86:ba:78:8d:fe:11:e1:94:d6:b5:59:74:c0:64:f9:70:
1d:82:2a:14:80:61:b5:d8:4f:a5:d0:16:f2:3b:87:03:72:74:
31:5c:c0:9e:cf:1e:70:9a:bd:4a:53:4d:76:f0:ee:10:7f:5c:
38:8e:8b:de:68:59:7b:64:85:bf:5b:10:6a:be:a1:0a:6a:e8:
fe:cf:d1:f0:7a:8e:9c:22:18:db:7c:56:75:5d:e6:c1:a5:14:
5f:09:8c:97:64:a5:08:63:5e:da:c0:1f:12:3a:5f:79:0c:c0:
9e:1e:18:96:f5:72:cc:a2:0a:b2:c4:ac:00:6d:83:84:3a:ae:
97:ab:cc:bb:80:81:4a:16:47:85:ed:b6:e5:f2:9c:4c:9a:e5:
3c:56:dd:6e:74:bd:04:78:04:a3:5e:3a:0d:03:d2:c3:de:77:
89:90:af:f0:6a:d5:57:54:9e:8c:25:74:fc:d1:3e:6e:c1:bd:
6e:82:dc:83:07:ef:1b:c6:07:aa:68:25:97:61:f6:23:da:2e:
17:cb:61:2c:c2:9f:75:44:90:4b:ce:3e:97:fb:ef:4d:92:0b:
9a:87:75:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:00:09 2025 by rpki-client