Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/47ab50a1-fe55-45fe-99e6-cd7b2f672a8e.roa
File: 47ab50a1-fe55-45fe-99e6-cd7b2f672a8e.roa (raw, json)
Hash identifier: laFcUw91/LlcT2XIl42M/elmwmWrIM9KS2KbHD1oGkc=
Subject key identifier: D1:1E:3F:77:BA:9B:63:E4:89:47:AD:D2:88:C3:AA:21:09:51:CC:E6
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 65F44BA81EAA5DADC3B5227058B41BBD6214B59D
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/47ab50a1-fe55-45fe-99e6-cd7b2f672a8e.roa
Signing time: Wed 30 Jul 2025 00:51:14 +0000
ROA not before: Wed 30 Jul 2025 00:51:14 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf7::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 30 Jul 2025 17:39:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:f4:4b:a8:1e:aa:5d:ad:c3:b5:22:70:58:b4:1b:bd:62:14:b5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:51:14 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=0fcc2bb844e13ccce032af580c5692f727591d369e473434f17ebb255987a3e2, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3c:6c:67:19:6e:cf:b5:e0:7a:b6:87:69:b3:
0a:54:88:b7:bf:3e:3b:5e:b3:f7:2a:a7:84:d1:41:
b1:3a:7e:f8:04:47:02:92:ec:60:8a:20:3e:bc:e7:
ff:fa:a5:a7:9a:d7:e6:39:11:6b:b5:60:18:a2:b2:
43:5d:25:25:d3:a2:02:47:b8:73:0a:68:89:2e:b7:
6b:62:48:5b:45:6c:83:78:49:bf:2e:dd:71:6d:9d:
23:8c:6d:59:b3:fd:0c:f7:47:ab:2f:bf:7b:ea:63:
76:e1:84:b5:7b:e5:4d:62:24:2c:0e:f4:b6:6a:7b:
dc:4e:34:fc:6d:f1:78:11:24:8d:19:ec:18:02:96:
4c:e4:c8:7d:f7:0e:eb:02:9f:e7:a8:ac:27:70:0f:
6d:9e:18:21:2b:40:12:fb:7a:a0:35:2a:f1:3b:4f:
27:52:51:96:4d:8c:1a:2d:d7:da:cf:72:14:ec:a9:
52:49:46:e3:d9:4c:6e:91:b0:bf:ec:d2:6e:ef:5d:
5d:64:fe:af:0f:01:5d:4b:e8:85:f9:57:30:d0:3c:
c3:d2:f6:7e:72:25:97:94:8b:b5:bc:55:3b:95:c9:
5a:18:03:89:b5:db:c3:0c:b9:c0:c6:67:82:81:c9:
72:bd:9f:7a:dc:d9:8f:95:c0:b0:00:4a:89:4b:fa:
aa:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:1E:3F:77:BA:9B:63:E4:89:47:AD:D2:88:C3:AA:21:09:51:CC:E6
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/47ab50a1-fe55-45fe-99e6-cd7b2f672a8e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf7::/32
Signature Algorithm: sha256WithRSAEncryption
4c:bc:65:df:bc:02:77:59:3b:69:52:4a:e8:26:6a:d1:16:f7:
06:2e:dc:42:50:ff:12:ae:b0:93:ca:5e:3f:8d:7e:72:b5:6a:
2d:4e:41:f5:02:c9:ed:94:92:28:d9:8a:87:3d:42:5f:5f:84:
23:39:9f:c6:64:b5:4c:7c:70:d8:81:b4:e8:05:4f:ac:88:d8:
6e:40:09:91:6c:67:52:b7:b4:72:cd:cd:ce:64:a2:50:58:a5:
1c:c0:44:0a:21:66:71:c2:d1:b7:af:70:cd:b6:e6:2c:36:bc:
3e:23:33:b5:1d:65:37:77:5f:61:55:ee:6a:a6:b6:a8:34:b9:
73:a8:68:1a:08:d6:48:bf:b4:28:3f:95:89:9b:30:6c:68:dd:
c5:97:b8:0a:9f:d3:68:5b:43:69:0d:60:30:27:fa:f9:66:62:
d0:82:1c:ad:f8:23:02:a7:ed:d0:5b:dc:f1:38:3b:65:96:26:
a4:37:1c:e9:64:f7:53:80:38:ed:f1:a8:d1:ef:db:6b:02:9f:
ab:f3:9b:b2:b4:8b:49:f0:26:75:b8:c9:f2:df:72:8c:97:62:
7d:7c:70:4a:64:93:0c:9d:43:67:a9:e6:e8:7d:b5:90:a0:9b:
48:82:d3:7e:54:5d:39:c5:20:0a:de:46:31:b2:63:85:80:62:
f4:87:df:5c
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgIUZfRLqB6qXa3DtSJwWLQbvWIUtZ0wDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0
RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDczMDAwNTExNFoX
DTI1MDkwMzIzNTk1OVowejFJMEcGA1UEBRNAMGZjYzJiYjg0NGUxM2NjY2UwMzJh
ZjU4MGM1NjkyZjcyNzU5MWQzNjllNDczNDM0ZjE3ZWJiMjU1OTg3YTNlMjEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjxsZxluz7XgeraHabMKVIi3vz47
XrP3KqeE0UGxOn74BEcCkuxgiiA+vOf/+qWnmtfmORFrtWAYorJDXSUl06ICR7hz
CmiJLrdrYkhbRWyDeEm/Lt1xbZ0jjG1Zs/0M90erL7976mN24YS1e+VNYiQsDvS2
anvcTjT8bfF4ESSNGewYApZM5Mh99w7rAp/nqKwncA9tnhghK0AS+3qgNSrxO08n
UlGWTYwaLdfaz3IU7KlSSUbj2UxukbC/7NJu711dZP6vDwFdS+iF+Vcw0DzD0vZ+
ciWXlIu1vFU7lclaGAOJtdvDDLnAxmeCgclyvZ963NmPlcCwAEqJS/qqzQIDAQAB
o4ICSTCCAkUwHQYDVR0OBBYEFNEeP3e6m2PkiUet0ojDqiEJUczmMB8GA1UdIwQY
MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU
U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx
LzQ3YWI1MGExLWZlNTUtNDVmZS05OWU2LWNkN2IyZjY3MmE4ZS5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1
MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN
BAIAAjAHAwUAJAba9zANBgkqhkiG9w0BAQsFAAOCAQEATLxl37wCd1k7aVJK6CZq
0Rb3Bi7cQlD/Eq6wk8peP41+crVqLU5B9QLJ7ZSSKNmKhz1CX1+EIzmfxmS1THxw
2IG06AVPrIjYbkAJkWxnUre0cs3NzmSiUFilHMBECiFmccLRt69wzbbmLDa8PiMz
tR1lN3dfYVXuaqa2qDS5c6hoGgjWSL+0KD+ViZswbGjdxZe4Cp/TaFtDaQ1gMCf6
+WZi0IIcrfgjAqft0Fvc8Tg7ZZYmpDcc6WT3U4A47fGo0e/bawKfq/ObsrSLSfAm
dbjJ8t9yjJdifXxwSmSTDJ1DZ6nm6H21kKCbSILTflRdOcUgCt5GMbJjhYBi9Iff
XA==
-----END CERTIFICATE-----
Generated at Thu Jul 31 01:00:41 2025 by rpki-client