Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cdaa1e38-3af0-4e8c-803e-436ac6e56011.roa
File: cdaa1e38-3af0-4e8c-803e-436ac6e56011.roa (raw, json)
Hash identifier: 7lV2q3/cVxriVJJXimlIJTDdlkGCb/hkl5cOR0r9Bcw=
Subject key identifier: 6A:7E:F2:F8:7D:7F:18:E4:23:98:01:F3:C5:D7:74:B7:FB:B9:26:68
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 70CB4BBB5DB168C28D6DDC71401E518B32A34028
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cdaa1e38-3af0-4e8c-803e-436ac6e56011.roa
Signing time: Wed 04 Jun 2025 06:03:17 +0000
ROA not before: Wed 04 Jun 2025 06:03:17 +0000
ROA not after: Wed 09 Jul 2025 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jun 2025 06:18:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:cb:4b:bb:5d:b1:68:c2:8d:6d:dc:71:40:1e:51:8b:32:a3:40:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Jun 4 06:03:17 2025 GMT
Not After : Jul 9 23:59:59 2025 GMT
Subject: serialNumber=700e72f0f060ad7b5ddfa02f88f6b7669cae7df7d4870af61b32f0630acb85c2, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:52:a0:89:49:ae:c9:b5:11:14:72:27:27:aa:
78:16:34:a1:98:cf:59:bb:c7:85:f9:d3:f5:e5:69:
8a:83:87:fe:74:44:84:37:91:8c:63:45:8a:2f:d3:
c0:e4:22:86:68:6a:c1:69:f9:ee:12:64:2f:f4:3b:
ae:e7:99:ae:00:8b:02:79:78:74:13:63:54:3f:a3:
0b:b1:d9:18:09:48:9b:ae:4d:04:10:64:66:11:17:
48:73:58:41:3d:34:f6:c1:a0:81:2c:5d:86:3a:a4:
1b:57:d8:a9:4b:86:dd:ab:8f:88:0b:87:54:ec:d2:
c4:38:eb:ae:1c:cd:ae:ed:5a:9f:b1:4a:ca:6f:e4:
34:b1:4a:dd:5d:2b:b2:1c:b1:cd:1b:0f:80:89:ec:
19:4b:1c:6b:a0:1c:d1:ea:2e:92:81:ca:62:28:e1:
de:51:81:ec:02:c1:f8:43:09:a7:1f:05:e3:b1:c5:
70:c9:91:a5:ef:41:60:93:22:28:21:f0:27:06:79:
3f:70:15:df:b5:75:3d:85:8c:5a:2d:9d:92:8d:8a:
0d:08:7f:e4:b4:5e:55:e9:9c:74:fd:c9:6e:b6:23:
d1:97:2e:59:a4:10:e1:70:97:4f:64:d8:39:62:ad:
b0:83:4f:7e:e2:a3:74:db:c6:9b:b4:d7:56:e0:c0:
a3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7E:F2:F8:7D:7F:18:E4:23:98:01:F3:C5:D7:74:B7:FB:B9:26:68
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/cdaa1e38-3af0-4e8c-803e-436ac6e56011.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:13:43:fb:9b:a3:1f:c4:31:c0:be:6b:0a:9f:1b:d4:a5:d9:
ee:17:2e:9f:37:d0:d6:d0:ac:7d:89:40:0f:6a:fd:8b:9c:4f:
d9:13:2d:55:8a:56:9e:ed:c3:a6:91:3d:a4:de:56:3f:fd:9d:
e8:16:6f:6b:82:69:7e:95:ed:63:81:02:7d:0f:35:78:f0:93:
75:46:0d:14:1a:79:4e:d0:67:0c:1b:c4:3d:df:ce:c0:df:7c:
81:bc:eb:c3:ab:a2:8d:81:00:e3:5f:00:5a:28:d3:a8:b1:bd:
26:ea:0b:76:2f:c4:68:7a:11:55:ab:f8:cf:2f:e3:a4:e1:58:
81:72:71:f7:b0:a7:d9:28:aa:11:b6:b2:d1:94:a8:15:11:11:
70:53:df:e6:d5:5c:5e:ef:61:14:97:ab:b7:7a:51:6f:9f:dd:
09:51:e1:80:0b:ef:9f:7b:af:74:f2:4f:41:58:dd:07:1c:70:
ec:26:b1:c1:61:64:ad:7b:95:83:5f:ff:23:b7:ca:15:f6:92:
2e:a5:9d:8e:ba:35:d6:f5:43:bc:97:f8:72:a4:b0:db:0b:35:
f5:6a:2f:60:64:0f:2f:44:f3:ec:72:a9:37:3a:65:8f:17:b9:
d4:b2:85:1d:f5:41:2b:84:ec:4c:68:e2:cf:68:f2:e6:06:e2:
81:a1:f3:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 16 11:16:45 2025 by rpki-client