Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2dcd175c-d836-48eb-86d0-63d1c2f1c6d3.roa
File: 2dcd175c-d836-48eb-86d0-63d1c2f1c6d3.roa (raw, json)
Hash identifier: fz4RYgvZ6kV+WAAmJ3TPIAChugPIxwA6c2yLq/p6Jyc=
Subject key identifier: A0:2D:7F:5D:72:FF:02:62:E3:AD:62:8A:D6:A5:D4:7F:14:95:54:59
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: B1D495C2C86BF261489F4D36EE1D4FC2271D9A
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2dcd175c-d836-48eb-86d0-63d1c2f1c6d3.roa
Signing time: Wed 30 Jul 2025 00:20:05 +0000
ROA not before: Wed 30 Jul 2025 00:20:05 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafb:48c0::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 18:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
b1:d4:95:c2:c8:6b:f2:61:48:9f:4d:36:ee:1d:4f:c2:27:1d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:20:05 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=ccb59310a5b1a6675adc56b33dbb840fb9a6e48da2687e0126e7e62f28ed4dd6, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bd:f7:6c:c6:83:bc:53:9e:bd:5f:27:9c:54:
d9:12:ff:22:04:f2:73:97:1b:5f:5f:d2:8a:30:9a:
bf:23:b7:48:61:a0:db:25:c1:28:4c:9a:35:8a:aa:
0c:e2:8d:4c:6b:42:4e:9a:49:54:bf:4e:de:d0:72:
1d:0f:dc:48:0d:54:5a:78:2f:a6:16:52:86:56:5a:
bf:9d:d5:ae:08:5b:77:b6:01:ff:7f:0e:cf:97:ae:
a0:1b:91:0f:85:a1:d6:68:c2:ec:d7:76:07:3c:f7:
44:91:a0:c5:29:f1:31:66:30:15:e8:fe:7b:dd:63:
11:a1:77:ab:52:0d:bb:f5:fc:b2:61:32:cc:28:0b:
bc:b9:94:dd:1c:8a:e9:3b:ad:cb:eb:31:18:61:2d:
54:b5:d3:02:ca:91:6f:b8:ff:94:64:16:5a:41:67:
e7:f3:ec:ab:26:c8:b1:f6:f6:e0:1a:d4:b1:14:38:
82:ce:ea:f2:04:a1:2a:7c:20:d5:20:42:33:32:9b:
7c:65:6e:8f:99:79:cb:1d:e1:80:bf:90:8b:4a:92:
11:a7:d0:59:ba:ce:cd:b0:9c:4c:3b:0c:59:a6:f7:
2b:e9:d9:64:62:ac:4d:df:6f:05:ff:4e:ee:95:ac:
58:3b:03:bc:4e:ac:a0:b7:fc:cc:a6:07:bb:a5:36:
05:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2D:7F:5D:72:FF:02:62:E3:AD:62:8A:D6:A5:D4:7F:14:95:54:59
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/2dcd175c-d836-48eb-86d0-63d1c2f1c6d3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafb:48c0::/46
Signature Algorithm: sha256WithRSAEncryption
35:d0:b3:d1:d7:a7:7c:05:b9:35:b4:3a:6f:35:fb:bd:05:34:
5d:46:41:b2:ae:a6:e1:7b:c6:b1:c5:38:50:5e:90:ef:8d:2e:
4d:d6:51:90:fc:8e:8b:3a:75:0a:48:93:a1:94:d4:87:2d:50:
11:ca:dd:97:89:92:b3:b0:6f:62:e3:c5:41:03:9c:0a:ea:e2:
08:44:5b:e9:83:b8:fa:31:d3:ac:65:89:2b:aa:c9:96:aa:31:
48:fd:81:e6:a9:8b:bb:cd:28:a2:e4:0a:25:a5:15:1e:f7:ef:
a4:e8:f5:01:41:30:0f:18:04:ae:84:7c:a8:f2:d5:d5:f8:48:
94:b3:77:0b:a9:ab:d6:ee:20:8a:e8:50:ca:4d:17:6e:92:b9:
fc:83:9a:cb:af:c6:83:6d:0d:b0:47:c6:e3:eb:4d:c2:31:ba:
30:71:16:89:68:ac:a2:34:e5:78:1d:34:05:48:40:5d:c0:d7:
49:ec:31:f8:47:b6:d7:ec:c1:fd:c8:d5:55:eb:db:15:38:c0:
1d:0b:06:d9:ca:10:41:22:35:06:8f:47:20:c4:29:27:8e:5e:
39:88:89:99:01:af:d0:c3:0f:7a:c7:4e:d0:80:36:27:c9:31:
1e:25:5f:aa:64:de:3a:46:0e:04:52:4d:45:1a:0e:9f:ef:2c:
4b:95:87:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 00:59:12 2025 by rpki-client