Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c83ec70a-1cb4-466a-a11a-dde9896a0c37.roa
File: c83ec70a-1cb4-466a-a11a-dde9896a0c37.roa (raw, json)
Hash identifier: xnwRsSHIfDy9Pu99rX0MAdxy+Dpk+gvRvyP63yvqUb4=
Subject key identifier: 80:57:54:45:71:B8:CE:77:69:B8:6F:88:1C:1D:FD:90:14:5D:72:58
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 6651FF6223E9B647268F5C37369C341D948B5ACC
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c83ec70a-1cb4-466a-a11a-dde9896a0c37.roa
Signing time: Thu 10 Apr 2025 00:13:17 +0000
ROA not before: Thu 10 Apr 2025 00:13:17 +0000
ROA not after: Thu 15 May 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Apr 2025 00:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:51:ff:62:23:e9:b6:47:26:8f:5c:37:36:9c:34:1d:94:8b:5a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Apr 10 00:13:17 2025 GMT
Not After : May 15 23:59:59 2025 GMT
Subject: serialNumber=cf33d60717f9fefc9146bc6ca7a22537f19be20b8a21a5261ea14a2cd3a4ea95, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8a:b5:84:ff:08:8d:c0:3d:77:4d:2a:c1:2b:
04:15:b8:96:01:56:85:b7:5c:21:9e:28:83:ca:73:
dd:be:63:8a:8f:eb:a2:3c:3e:d7:ad:79:03:4a:b2:
c9:60:eb:e4:69:a2:3d:72:fa:32:6e:52:1b:10:fa:
a5:e5:a8:75:6c:e2:56:81:98:52:fd:14:4d:b9:a4:
fd:7c:19:c1:fc:25:f8:8d:a0:95:b3:ec:04:b6:27:
38:10:a1:b7:40:a9:57:44:ce:b8:0d:35:20:1a:99:
b5:0e:f1:aa:27:d3:b1:e8:60:2a:fb:fa:11:3a:5c:
41:a2:06:c3:79:9a:e7:0d:7f:5a:7f:1b:2e:83:d9:
ab:e2:98:d8:ab:c5:f9:22:23:72:12:02:74:e1:54:
32:ab:9b:e6:37:c3:9f:aa:f3:0f:6a:54:2e:9f:26:
ab:9c:74:04:13:cc:61:b2:cb:22:9f:87:7e:cf:3d:
b2:c2:21:b1:06:3c:7c:15:53:74:df:c4:a3:1b:04:
4d:c6:7c:54:09:75:99:12:82:81:98:c5:0c:80:4b:
ad:34:66:93:c1:0b:df:c0:fa:0f:a2:a4:c1:d4:00:
f3:de:36:1b:56:2a:8c:32:75:94:66:f2:38:cc:63:
96:84:e0:10:c8:f6:61:51:00:0a:7e:23:7d:08:c2:
ff:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:57:54:45:71:B8:CE:77:69:B8:6F:88:1C:1D:FD:90:14:5D:72:58
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/c83ec70a-1cb4-466a-a11a-dde9896a0c37.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e7:49:86:d5:6a:d1:4d:f7:b0:36:8c:57:0d:25:65:61:54:
8b:05:fa:8b:bf:20:88:fd:85:e1:4c:c2:b7:bf:6f:05:32:66:
d5:f9:2c:a7:4c:ad:f4:f6:81:e9:d3:43:a4:ba:15:b8:a9:30:
27:d6:91:a0:d4:88:67:10:aa:77:cc:89:cc:4d:91:09:d4:22:
ac:2c:07:06:e8:df:73:47:d2:df:57:ec:6a:d4:5e:42:e2:b6:
91:92:32:61:29:a2:f9:67:a1:89:c1:cb:99:db:ec:09:c7:3c:
b2:72:da:b2:11:b9:dc:27:12:8d:aa:ca:3b:dd:1a:97:86:a6:
fb:d7:6d:1a:43:a1:3b:b5:38:94:71:6b:e3:61:50:1a:32:9b:
01:03:60:a0:13:8b:9e:03:b5:f2:3c:77:65:75:9b:03:ad:9b:
fb:12:80:e5:70:14:58:71:15:a6:f0:f2:30:17:a5:76:84:a6:
ec:f5:12:1a:c9:7a:00:c8:98:cf:08:37:7a:40:52:65:80:1d:
1f:45:bb:f9:6c:1b:fc:8d:8f:85:84:a1:1c:3d:60:71:6d:15:
fb:f1:e0:40:e8:55:f1:0b:51:8f:92:c9:bd:4b:50:5e:38:8f:
c2:6a:7d:7b:af:4b:bc:4e:1e:bc:3d:60:a9:84:ae:0c:06:cd:
3c:4b:bb:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:51:33 2025 by rpki-client