
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa
File: a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa (raw, json)
Hash identifier: QEzHdCntIHOzAgoXi+lrMUVLscTNEeXZCqv5Im4mtJY=
Subject key identifier: F2:86:80:25:0F:93:A6:48:5F:67:20:69:51:D6:65:A9:53:DC:7D:14
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 32341CB1C502985E08D7E5450825ABB80DE15F98
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa
Signing time: Wed 30 Jul 2025 00:21:32 +0000
ROA not before: Wed 30 Jul 2025 00:21:32 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafb:2880::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 18:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:34:1c:b1:c5:02:98:5e:08:d7:e5:45:08:25:ab:b8:0d:e1:5f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:21:32 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=6413220f15ddb9f692cf4ee577aaaa4aa9d508e1b310b1eff702cbf8f8858f6a, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b6:87:5d:76:86:f6:27:1a:96:33:f2:09:b4:
88:33:a9:a3:45:92:3f:9e:22:26:41:5d:1a:78:00:
1c:aa:5a:b7:f4:bf:14:aa:0f:79:58:99:fb:39:8f:
53:b2:80:b5:40:82:07:2b:de:d3:e2:56:24:a4:44:
8a:da:71:1e:6f:32:02:28:95:5f:1a:0d:c5:1d:ac:
25:07:bf:5c:17:5e:01:d2:18:18:44:53:da:e6:b8:
e2:79:63:26:49:79:22:33:ff:f7:62:89:12:be:7c:
2c:9c:f2:a3:ae:7d:7c:ac:32:83:e5:a5:e0:01:33:
72:b0:fc:7b:4e:4e:a1:de:de:bd:67:02:05:f9:df:
d9:e7:73:52:cb:60:26:ae:3b:09:c6:dd:a3:a2:24:
14:17:c6:e3:04:cf:3b:80:14:d2:5a:dd:10:b2:65:
b5:e4:e6:64:3e:1d:bf:d4:2c:86:55:b1:37:dc:25:
21:11:44:4a:56:66:9c:13:c5:68:b3:9e:b8:5c:c9:
99:42:df:22:03:24:13:35:14:35:d5:ac:8c:11:43:
b4:e5:4d:43:e5:e4:e5:01:6e:a2:2e:89:91:15:c5:
77:3b:98:1f:4f:ea:a0:4e:e1:ec:2c:0a:31:e2:e2:
14:de:2d:b3:ed:05:c8:58:56:49:10:9b:1d:ee:f6:
3e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:86:80:25:0F:93:A6:48:5F:67:20:69:51:D6:65:A9:53:DC:7D:14
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/a0d3f3d6-c3fa-4c51-aa7c-9d3df1d2fcb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafb:2880::/46
Signature Algorithm: sha256WithRSAEncryption
36:15:8f:aa:05:08:e2:93:1d:38:95:08:0d:44:dd:f0:79:a5:
97:57:02:da:fd:61:13:3b:56:7d:38:57:73:41:7a:64:df:da:
fe:73:9a:8b:72:45:c7:05:6d:a8:cb:b0:74:e6:c1:de:f3:c2:
d2:18:18:94:bb:d7:43:cc:13:9f:b2:ab:ee:b7:fd:86:74:25:
0d:85:d7:57:d4:7e:e0:e0:7a:87:f9:b8:84:24:8d:12:8c:7b:
ca:95:b5:b5:67:ca:aa:da:55:eb:fa:50:7d:6a:ac:e3:73:93:
02:65:55:59:82:22:20:ca:ba:19:c5:5a:a8:dd:1f:65:a4:64:
84:ea:0d:59:52:43:1a:26:b5:da:73:ef:53:8f:91:ca:5e:65:
7f:2a:4f:80:9b:78:12:57:10:4d:64:49:e6:59:e7:c0:08:9d:
9a:29:18:5e:e8:42:08:85:ce:c8:06:90:71:56:ca:3d:7b:20:
19:c2:8a:84:fe:1a:41:b1:2d:20:98:04:85:2e:65:cd:17:04:
7c:db:0b:03:79:41:1c:00:62:ff:e4:44:16:95:84:c3:0c:b2:
75:61:e2:8f:8b:26:e9:30:af:3c:8f:73:db:24:21:30:63:85:
29:28:02:96:5d:cc:43:f1:14:f5:79:6d:9e:58:b3:08:0b:71:
85:43:43:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 00:57:25 2025 by rpki-client