Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0f1b2a0e-2a01-4aad-badb-ed562ab51784.roa
File: 0f1b2a0e-2a01-4aad-badb-ed562ab51784.roa (raw, json)
Hash identifier: yN3rgucMsgZ6+qyHjWAKUwjxXPOtlijrQpyvNY3Vpw4=
Subject key identifier: F0:33:E3:40:D1:78:D4:D2:32:C3:54:BE:C7:96:CB:63:9A:65:B0:CB
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 7E334DA4A0CFBA8000E7AD2C629CF85DFD7EA8F8
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0f1b2a0e-2a01-4aad-badb-ed562ab51784.roa
Signing time: Mon 07 Jul 2025 15:00:16 +0000
ROA not before: Mon 07 Jul 2025 15:00:16 +0000
ROA not after: Mon 11 Aug 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da69:10c0::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 17:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:33:4d:a4:a0:cf:ba:80:00:e7:ad:2c:62:9c:f8:5d:fd:7e:a8:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 7 15:00:16 2025 GMT
Not After : Aug 11 23:59:59 2025 GMT
Subject: serialNumber=4fec67bad8fc897da839eb86088eb6e557da10e2e6cf604cca23ddbf8866ec46, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:6f:63:52:96:0d:9c:de:a4:68:57:f8:2b:a9:
d9:0a:ba:6c:b2:47:83:fa:ec:5e:78:27:f2:23:5b:
93:e3:27:e7:f7:f2:0e:8d:75:ac:06:14:0a:87:87:
10:1d:a6:46:de:ee:8b:af:b4:9d:97:34:f1:54:79:
5b:5a:6e:d3:1b:b9:22:c7:35:d3:2f:3a:91:20:63:
f3:42:52:db:7b:a1:c0:dc:37:df:1b:33:ef:a7:32:
95:df:18:7c:3a:89:b2:75:fd:3d:c3:c6:cc:40:fb:
23:2f:ba:c8:9e:e8:86:8e:6a:d3:74:9a:6c:27:29:
f2:91:54:0e:7e:f0:92:35:3b:3e:51:c8:e4:c0:1c:
20:47:ef:91:f0:81:9f:52:6a:16:92:51:67:22:9b:
4b:fd:63:d0:71:0f:36:f2:ed:e5:f3:e0:84:2c:26:
94:e4:dc:da:1e:ab:7a:b1:32:df:23:2d:b8:06:9a:
96:b4:b3:e3:8c:91:eb:f7:6d:b0:b6:ba:65:66:42:
ca:c9:f7:3d:9c:bd:76:09:a4:a7:47:8b:b3:de:ee:
f3:7f:8b:70:92:85:5f:60:93:47:5f:6a:87:4f:b9:
bf:2a:8a:a5:a9:15:4f:51:b9:b2:da:ab:b6:60:2d:
92:bc:06:6f:4e:ff:78:4f:91:3b:81:1a:2e:61:57:
a5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:33:E3:40:D1:78:D4:D2:32:C3:54:BE:C7:96:CB:63:9A:65:B0:CB
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/0f1b2a0e-2a01-4aad-badb-ed562ab51784.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da69:10c0::/46
Signature Algorithm: sha256WithRSAEncryption
7a:29:48:3c:1f:df:99:65:17:98:df:ea:42:fd:9c:c1:17:6c:
d7:cc:53:de:a7:4f:b6:86:d1:81:e6:bc:56:8c:8c:b6:af:6f:
85:bb:cd:17:54:4e:5e:3c:1a:36:93:04:3a:93:5c:5a:67:90:
33:15:50:c2:a6:63:59:dd:30:69:cf:21:a1:c6:56:c5:6c:1f:
ad:80:5e:31:de:e2:2d:81:f3:62:97:73:f9:e8:a0:ce:52:67:
99:7e:32:4d:c5:ce:50:70:34:41:8c:26:14:23:92:af:05:b3:
c3:02:9f:66:46:10:9a:dd:02:bc:19:22:fa:4d:0c:c8:56:ac:
4b:d0:21:21:ee:92:53:97:89:da:ba:23:7f:87:49:45:e8:7d:
4c:b8:41:0b:ea:75:09:7f:c2:56:9e:48:7d:84:9f:88:fb:7f:
ac:00:27:39:59:4d:64:05:0c:26:4e:d5:a7:80:d1:1e:6d:08:
a7:da:e3:46:99:cf:38:0b:3f:2b:7b:a6:38:64:ae:f7:27:1c:
81:7b:80:e0:be:1f:5b:5b:f0:c0:8d:5a:14:fe:c5:1e:dc:c2:
6a:f7:de:c5:49:36:f3:8b:d5:a6:fa:e1:df:21:32:ab:32:17:
90:17:7f:39:f5:e2:74:e1:03:e4:39:03:d2:95:43:e7:ac:73:
09:94:19:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 01:02:11 2025 by rpki-client