Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c10af202-d344-4e2f-9e98-6cf0ea7a4e8d.roa
File: c10af202-d344-4e2f-9e98-6cf0ea7a4e8d.roa (raw, json)
Hash identifier: t+9/d2nYFXPbUs/HelU2BZOUMWttztG5gIGqdHCjJL8=
Subject key identifier: C6:43:7E:23:87:56:7C:80:9F:A9:D1:17:08:8A:1C:63:C2:B9:35:75
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 41F5755A17A4CA43898DEEFB336539510D2FAFE7
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c10af202-d344-4e2f-9e98-6cf0ea7a4e8d.roa
Signing time: Fri 04 Apr 2025 08:33:19 +0000
ROA not before: Fri 04 Apr 2025 08:33:19 +0000
ROA not after: Fri 09 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Apr 2025 08:53:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:f5:75:5a:17:a4:ca:43:89:8d:ee:fb:33:65:39:51:0d:2f:af:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 4 08:33:19 2025 GMT
Not After : May 9 23:59:59 2025 GMT
Subject: serialNumber=adaede6c97b145fa6657796ce0e116538f1f07ac2027070c64841768fbd3340f, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c9:e1:2c:f2:be:a1:a5:f3:d2:60:38:cf:1b:
46:1f:49:c7:11:12:8d:19:e0:31:7c:48:d4:ca:42:
fe:85:71:71:ce:31:47:ba:5e:9f:02:8f:57:51:81:
50:89:9a:15:cf:9e:8d:cc:8d:9d:67:34:cb:44:6c:
73:72:9e:db:b0:d4:bf:fa:f2:4b:30:19:3a:37:aa:
08:4d:59:3f:8b:7f:05:1c:db:88:25:08:15:02:67:
34:24:46:c8:8c:01:7a:b5:b8:66:ca:ec:1a:bb:eb:
df:d9:07:91:89:7a:e8:00:76:df:30:94:61:85:18:
d5:98:2b:39:a8:0e:cc:a9:9d:07:fd:7b:d5:f0:cf:
9a:68:01:e6:d4:55:2e:e6:d9:a6:1e:69:ba:5d:12:
e6:22:46:68:ed:79:e5:c7:59:1c:3d:7b:60:ee:a5:
8a:09:49:37:75:d9:dc:d2:be:e6:4f:04:ed:5e:58:
9b:d7:3f:8f:f1:58:da:64:22:c0:1c:67:d1:96:2f:
b4:79:9e:18:b8:e9:0b:73:bf:d7:06:bb:ce:8c:92:
85:50:66:e5:86:77:22:04:c2:6a:d6:cb:cd:4f:1d:
cb:29:50:d4:7e:13:3c:6c:de:17:8a:fb:4d:07:d9:
46:90:7a:d0:02:95:77:9f:1a:81:a2:65:2f:ff:54:
97:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:43:7E:23:87:56:7C:80:9F:A9:D1:17:08:8A:1C:63:C2:B9:35:75
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c10af202-d344-4e2f-9e98-6cf0ea7a4e8d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:05:a0:06:34:19:04:89:b6:be:95:bd:f6:3a:27:ac:d1:d7:
9a:e6:33:21:ce:00:05:ce:e4:75:d0:09:e1:09:84:aa:75:ec:
df:f8:89:ca:a4:8b:92:49:ee:91:db:dd:98:1f:41:82:07:13:
54:a7:26:93:18:eb:1d:b0:39:c9:37:9c:c6:2b:96:1b:fc:a4:
99:c8:ca:db:9b:47:1a:22:61:70:17:7c:66:1d:26:94:ee:4d:
6e:21:63:43:06:83:89:f9:a3:5d:89:dd:aa:b8:a1:fe:b8:82:
47:86:c1:e6:95:48:dd:d4:07:4f:98:4d:8c:76:62:53:2f:76:
46:25:9c:ac:29:7a:87:ec:d2:3f:2a:81:7d:de:e2:55:7a:9e:
9a:b1:da:eb:9f:ec:3f:b1:f4:76:cb:cf:ca:24:4c:b4:0c:d1:
50:6c:e3:11:c1:b0:e2:1b:ce:64:f9:10:dc:42:50:7b:de:48:
4e:67:99:4c:cb:29:fa:c6:33:26:83:58:a3:e2:32:65:37:0d:
14:10:99:57:23:9d:e6:20:ec:28:0a:dc:53:c8:bc:52:4a:e0:
4c:4c:3b:6a:81:20:8a:90:1a:da:43:6b:81:d9:49:8c:c6:bf:
ce:a6:9b:32:1b:ea:ec:5c:fa:d9:19:0b:44:2e:1e:72:92:bf:
c0:f6:28:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:01:16 2025 by rpki-client