
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e7391c5-2e41-4005-97dd-32e5f11569cb.roa
File: 9e7391c5-2e41-4005-97dd-32e5f11569cb.roa (raw, json)
Hash identifier: LlAny0bgQ0zPZjMoO06OjijFyB3SmNmViT7QaiokVk4=
Subject key identifier: 89:52:0A:97:28:2F:7C:08:DE:83:BB:70:F4:F5:EC:84:B1:9B:D9:53
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 728E9779E3D183A37E96C5C44AAFC9B0C9D11583
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e7391c5-2e41-4005-97dd-32e5f11569cb.roa
Signing time: Wed 30 Jul 2025 00:20:08 +0000
ROA not before: Wed 30 Jul 2025 00:20:08 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafb:f0c0::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 18:52:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:8e:97:79:e3:d1:83:a3:7e:96:c5:c4:4a:af:c9:b0:c9:d1:15:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:20:08 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=f808b1f48671a51c5fa7cd9c2a14eb27b2b6156b28ef1ef0aba9aee5aab2b198, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5b:01:98:99:77:8c:c8:17:8b:9f:73:69:78:
b6:8d:20:58:8e:9c:80:a9:d0:ca:de:42:b1:9b:db:
90:a7:07:a5:48:ea:21:d9:cf:21:1f:40:c4:4b:69:
8f:96:32:a9:bb:eb:c4:a2:00:31:3c:b9:ed:8a:82:
a1:b5:50:e4:b2:bb:90:8d:b3:d9:a0:eb:ee:64:6e:
f9:4d:12:6e:65:20:4c:1e:bb:fa:05:23:74:0f:61:
f8:a9:aa:36:56:1d:36:f3:2c:f4:42:8c:1c:0a:10:
7b:7d:0d:53:b3:cb:76:e0:fd:e3:86:3e:ae:91:91:
b1:c4:bc:c8:5a:f1:cb:a4:d0:c1:65:8d:8a:6c:11:
29:e9:99:dc:09:da:a2:05:ca:8c:b0:bf:63:6c:12:
2e:a8:00:eb:29:06:d2:18:88:d7:78:e9:0d:9b:de:
60:75:8a:18:97:28:27:64:61:12:e3:2f:18:1d:08:
f4:7b:7e:76:86:13:37:55:32:0f:20:5c:59:6e:51:
82:6b:72:ed:df:ab:4c:f0:d0:b6:7b:97:62:ce:52:
b9:68:cd:5f:8c:36:a8:02:10:eb:d4:ed:be:d5:84:
27:40:b2:b4:73:fe:7d:9c:66:11:74:82:00:89:87:
ca:ea:58:51:ed:4d:34:65:d6:0a:71:8d:36:5d:35:
44:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:52:0A:97:28:2F:7C:08:DE:83:BB:70:F4:F5:EC:84:B1:9B:D9:53
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/9e7391c5-2e41-4005-97dd-32e5f11569cb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafb:f0c0::/46
Signature Algorithm: sha256WithRSAEncryption
29:88:81:f7:35:3d:71:0a:f3:b0:16:b0:04:34:a9:39:68:9a:
e6:c9:25:9f:6d:f2:4e:cc:5d:fb:13:ab:c4:7b:81:93:be:d3:
a0:f6:8f:06:b5:6b:3e:ee:9c:36:97:8c:79:2c:b8:4a:1e:db:
e8:e3:f5:7e:31:8d:d1:e1:b0:58:b6:d1:be:b6:fe:24:3c:c3:
8b:f1:15:2b:fb:9d:fb:29:fc:70:8b:d4:45:fa:52:43:e5:92:
58:6d:21:fd:ba:c6:34:25:df:ab:9c:b7:0b:ca:51:58:4e:5c:
e7:ae:57:72:9c:f3:a4:48:c1:26:2d:38:e9:f1:7f:81:84:2a:
28:04:8b:57:6b:fb:bc:d3:7d:54:f8:67:35:95:f4:93:0f:a5:
3d:5d:44:13:d3:33:40:19:8c:e6:07:4b:7a:48:0d:d4:ef:69:
f4:90:a6:90:b0:d3:62:98:45:60:d2:4b:21:d4:2f:91:07:c0:
fe:ac:53:09:53:49:de:db:d9:2b:cd:d9:7c:e3:99:e8:31:06:
13:8c:b6:c9:98:72:4b:3d:61:8b:39:22:25:66:ed:48:ef:89:
81:9b:35:12:1a:eb:5b:36:1b:c6:24:8a:92:f5:55:8d:a9:36:
a2:c8:36:1a:4e:f6:c8:68:e8:53:36:f2:fc:24:63:4d:0a:ec:
4f:9d:fd:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 01:03:52 2025 by rpki-client