Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/01b54384-f309-452a-bce6-2793cf241f61.roa
File: 01b54384-f309-452a-bce6-2793cf241f61.roa (raw, json)
Hash identifier: D0CkCaFJjCpIkMQSWEE2cgvEkc6y/X8j507e4Cr/t5M=
Subject key identifier: 83:75:B9:7D:52:8B:4B:FC:56:B7:AE:51:16:6D:8A:7B:89:7C:41:E1
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 2BC5F8D185A0BA7E630E6F8B0ADE12623EFD06C6
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/01b54384-f309-452a-bce6-2793cf241f61.roa
Signing time: Wed 30 Jul 2025 00:40:12 +0000
ROA not before: Wed 30 Jul 2025 00:40:12 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf7:c8c0::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 18:24:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:c5:f8:d1:85:a0:ba:7e:63:0e:6f:8b:0a:de:12:62:3e:fd:06:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:40:12 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=58e956acb70efeb6e3ab031ff1b26f4f437f3f5f709c0891cd3aee2b3cecbb06, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fb:80:fc:fe:5d:f7:63:14:93:7a:14:91:7c:
4a:10:55:1e:ac:58:c7:e2:62:cf:36:bb:b0:3c:ae:
12:57:a1:a1:a8:51:6c:70:0a:0b:d4:04:13:09:dd:
90:a9:49:23:42:4f:0e:ca:bd:d9:24:8f:8d:f4:d1:
e7:59:e9:67:1c:f9:12:8b:d0:4a:9a:fb:d4:4f:50:
76:98:98:f8:46:78:71:f0:a2:55:c2:34:57:47:ca:
42:d4:be:9a:76:2f:ef:b2:4e:3b:b3:ab:47:80:5e:
70:f1:27:3b:0e:d8:76:35:73:2b:5a:dd:66:76:c5:
ad:21:3d:0d:00:37:1a:4e:4f:a2:1f:18:4a:fe:04:
3b:87:f0:51:ae:44:8d:68:c0:ca:c0:0a:aa:6d:a1:
0f:c9:4d:33:c3:35:02:f5:59:b3:c9:13:b7:c0:bb:
ab:d9:b6:23:a7:d8:3c:25:ab:24:63:4e:d0:e5:da:
28:d5:80:49:aa:9e:01:a8:4d:39:6b:3e:5b:10:89:
e9:cd:1e:52:2d:4d:e8:c7:04:c3:c7:4a:15:4b:32:
ca:a7:ce:f2:38:a0:2b:e6:16:95:21:c1:c6:83:14:
2b:f2:70:eb:f4:1c:39:f3:e3:e8:5c:3a:65:d3:47:
df:7f:42:f4:81:98:4e:2b:bd:98:08:75:0d:3b:9a:
6e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:75:B9:7D:52:8B:4B:FC:56:B7:AE:51:16:6D:8A:7B:89:7C:41:E1
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/01b54384-f309-452a-bce6-2793cf241f61.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf7:c8c0::/46
Signature Algorithm: sha256WithRSAEncryption
3b:94:2c:0b:93:9a:0a:ac:0f:32:76:71:19:e9:99:43:b3:75:
b3:42:a7:7a:87:37:0e:20:3a:00:83:65:be:a1:37:80:84:63:
0a:1d:fc:9e:ac:cc:30:f7:84:6e:46:e5:45:69:25:9d:05:62:
33:c1:a8:bf:f8:af:6c:d4:8a:2d:4f:f3:3b:20:c1:c3:90:35:
6e:b0:3e:54:6e:74:e4:f1:7d:46:77:09:d0:a5:17:e9:5a:c1:
96:27:7f:5f:19:04:70:ed:28:55:cd:ee:9b:72:93:97:cd:06:
ca:94:04:48:ba:8a:25:0b:cf:3e:43:6f:b3:75:04:62:63:66:
e5:18:8e:7d:c6:4e:f2:1b:f0:c2:6c:0a:64:ac:73:3f:61:e1:
f6:4d:18:23:05:50:25:d5:64:d8:9f:27:38:a7:30:78:d3:2a:
25:67:eb:30:13:34:14:dc:2f:d7:1c:71:1c:8a:26:cf:90:42:
37:de:59:2d:de:09:f0:11:22:25:ec:ae:aa:dc:d8:ab:44:9f:
cb:c3:b6:e6:ce:3e:1c:90:c3:62:e4:ff:5c:ea:65:e3:d7:bd:
a8:62:a5:cb:4b:d1:2d:df:96:dc:b7:05:00:31:d7:7d:2d:b7:
59:bd:9d:2d:e4:5b:c8:5f:66:43:d7:26:1f:fb:ed:11:82:56:
f1:45:78:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 01:04:15 2025 by rpki-client