
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80e736af-9d57-41cb-8afc-93289d28a342.roa
File: 80e736af-9d57-41cb-8afc-93289d28a342.roa (raw, json)
Hash identifier: uJ8GNYPdZyMHoQrbsF7DIhqDBVTNgkJAJuIvLcXdc20=
Subject key identifier: 0C:B7:8B:EA:9A:F2:CC:D6:DE:01:11:AA:71:57:F0:F2:6F:8D:B7:6D
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 51E6E117B7873A3EC77DD47682459CA6D3B0AE71
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80e736af-9d57-41cb-8afc-93289d28a342.roa
Signing time: Tue 29 Jul 2025 00:50:12 +0000
ROA not before: Tue 29 Jul 2025 00:50:12 +0000
ROA not after: Tue 02 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafb:7080::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 18:38:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:e6:e1:17:b7:87:3a:3e:c7:7d:d4:76:82:45:9c:a6:d3:b0:ae:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 29 00:50:12 2025 GMT
Not After : Sep 2 23:59:59 2025 GMT
Subject: serialNumber=648de717e276dced202890e34c7377b8120755b50c75dd0cbced7eb04d6d7718, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:59:a6:4c:35:d2:b4:ae:f3:b4:13:b9:36:56:
0b:cd:8a:16:b8:b1:8f:e0:65:f6:d1:98:d3:f4:d8:
e3:a0:49:fc:a6:f9:83:40:25:fc:ff:01:82:9e:b6:
53:1c:55:b2:68:ee:57:a4:b3:36:f5:d7:eb:97:ef:
9c:2b:ea:20:db:5d:ff:92:64:d6:7c:0f:17:60:e8:
43:58:39:68:68:35:aa:90:72:d6:ae:fe:b6:8c:62:
a6:6f:8b:96:20:08:ff:34:50:01:d2:15:16:46:ee:
f1:88:bc:44:34:f7:10:ef:81:e4:99:49:6d:ef:45:
c7:3d:66:2f:20:2e:c6:a3:8d:23:42:f8:bb:c7:17:
78:88:11:73:43:6f:b5:6a:c4:0d:9f:4c:dc:1c:f7:
1c:c6:82:da:b3:24:24:03:01:3f:94:3c:16:74:21:
47:ab:00:a5:7d:2f:fa:32:bc:4e:40:13:9c:9f:d9:
51:b7:ea:34:c6:0d:57:d8:3c:fe:41:32:8c:0b:79:
f0:8b:7c:3d:a2:d1:ea:79:07:10:cc:b4:40:4f:6c:
3f:0e:d4:c9:8d:ea:11:6c:ac:05:82:11:a2:74:9f:
1e:f3:9f:21:bb:fa:8c:ac:f1:d9:3c:00:20:3e:c3:
29:74:d2:48:1e:4f:c9:19:9b:ef:1e:2a:be:53:0f:
b4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B7:8B:EA:9A:F2:CC:D6:DE:01:11:AA:71:57:F0:F2:6F:8D:B7:6D
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/80e736af-9d57-41cb-8afc-93289d28a342.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafb:7080::/46
Signature Algorithm: sha256WithRSAEncryption
27:72:ca:a6:39:1e:09:62:7c:bb:6a:4c:9a:0b:04:11:a1:12:
1f:18:27:4e:7b:fa:8b:e3:9d:4d:6a:f8:21:7e:4e:a3:56:a9:
5e:66:c9:f1:33:93:71:96:e7:e9:5c:79:9f:8f:21:01:53:77:
cd:39:f9:fc:22:25:e0:2b:a5:0f:aa:32:9a:f4:13:b3:10:74:
d3:34:06:64:1a:df:72:9f:94:1b:ea:64:e8:84:28:cb:90:5b:
b0:20:99:d8:5b:bc:30:0e:f0:9c:e6:8a:0f:6a:df:8e:83:f6:
10:2d:f5:d9:ed:cb:9e:f9:fb:43:f0:20:72:19:1b:36:8a:ed:
08:87:af:f4:45:8c:d5:7f:da:36:45:4c:8f:3c:c8:37:56:b1:
df:27:42:04:63:3f:b8:fd:07:55:3e:89:e2:6d:42:67:55:46:
d8:c8:02:57:0a:93:ae:3f:d2:c5:db:8a:3e:08:a9:1f:fc:6e:
6b:28:4e:a1:6c:b7:e9:28:75:d0:d8:94:77:91:49:e3:01:b6:
e5:ef:5b:6f:65:de:62:4b:67:ba:fd:ff:96:1e:4a:cf:ac:b2:
99:63:14:19:31:ca:17:a0:88:b5:65:1d:0f:01:f4:aa:16:51:
ed:8f:4e:ad:06:bc:3f:8b:62:4a:2b:7a:88:b2:75:c7:f4:c0:
4b:59:6f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 01:03:52 2025 by rpki-client