Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b355bf84-223a-40db-b012-87ca07f79405.roa
File: b355bf84-223a-40db-b012-87ca07f79405.roa (raw, json)
Hash identifier: 8ZC5rJJeVBUaChjzvPIwxgC+18sdmZ4VcJsoEP/XwYQ=
Subject key identifier: 52:7C:C5:F3:C3:C0:04:D3:00:DC:8B:CF:55:DF:BF:38:91:F3:CC:C2
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 11A41FD82F64F90CEA8A97077B90B7C96C177B58
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b355bf84-223a-40db-b012-87ca07f79405.roa
Signing time: Wed 30 Jul 2025 00:40:05 +0000
ROA not before: Wed 30 Jul 2025 00:40:05 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:da69:c800::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 30 Jul 2025 17:39:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:a4:1f:d8:2f:64:f9:0c:ea:8a:97:07:7b:90:b7:c9:6c:17:7b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:40:05 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=a6c194571c02dcdc90bb79b364a2981f39b3bf5263d90825d31b896a9dd7a70c, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:65:9d:9f:44:4b:40:c3:5d:8b:58:09:52:e3:
9f:21:7d:85:b4:65:e1:b4:95:45:cb:3a:11:6e:d8:
a3:29:78:d3:f6:22:cb:56:9c:40:70:c4:39:8d:07:
9e:f4:89:59:44:3d:2a:b2:22:1a:a8:65:95:6c:d5:
82:e4:81:32:79:b0:0a:6f:c2:86:aa:9e:4a:bd:79:
b9:d9:4b:46:3e:45:7a:a5:5c:a7:3e:19:e5:29:9c:
d6:62:e5:b2:93:28:1b:4e:74:5d:68:21:fb:6f:24:
fe:af:6a:17:5a:84:03:7c:0c:47:ed:7f:fb:06:cf:
24:c3:54:6d:76:86:e4:aa:a3:a5:79:c4:df:b0:1b:
9c:1a:a8:fc:c3:34:59:35:c1:d7:7c:8e:d3:2c:52:
68:ff:b2:04:c0:2b:5a:5f:9c:24:28:ba:70:64:38:
af:a2:92:71:ab:63:87:3b:d3:bd:88:7a:75:33:5c:
af:78:dd:27:4b:0b:f8:98:22:f4:e1:ef:4e:a0:31:
15:59:af:f3:d1:77:28:80:74:11:3a:fb:38:37:90:
1c:df:79:50:0d:71:19:29:71:5d:8e:07:2b:aa:3a:
68:9e:83:b7:ae:2b:e1:71:48:62:56:c4:e2:6e:b4:
0e:42:35:a9:a8:84:fd:ac:15:6b:72:fc:0c:55:e7:
b1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7C:C5:F3:C3:C0:04:D3:00:DC:8B:CF:55:DF:BF:38:91:F3:CC:C2
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/b355bf84-223a-40db-b012-87ca07f79405.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:da69:c800::/40
Signature Algorithm: sha256WithRSAEncryption
4e:59:9a:65:9c:8a:08:2d:17:9c:a1:b4:3b:3b:a6:26:71:3a:
90:cc:dc:32:29:c3:3d:23:73:95:07:d3:b7:40:b6:4e:3c:bb:
65:e2:06:ff:da:5c:59:b5:0e:71:17:d7:06:d4:e0:60:64:9f:
18:74:23:97:34:42:ca:c4:96:97:43:0f:8b:62:95:a8:85:41:
64:d5:a9:e0:48:63:bf:22:36:b5:7f:b5:46:53:3d:a8:b5:ef:
1f:ad:2c:c6:ca:ae:4d:24:32:da:6e:e5:1e:85:cc:6f:f1:26:
8f:b2:90:6c:9e:a2:5f:77:8d:44:fa:79:65:36:fa:ef:6c:4d:
e3:42:69:24:c8:37:87:83:b3:a1:15:a8:46:b0:84:99:79:de:
7a:b2:c2:7e:65:1d:3b:5c:21:19:f8:a7:ce:c6:34:58:3e:ce:
2d:06:2f:08:fc:6f:4e:b5:e5:80:a9:e6:67:07:6b:c3:7a:4c:
f8:e9:31:43:e9:0f:10:3c:78:83:f7:78:ae:23:4e:1a:05:68:
05:5c:5c:86:b2:26:e8:1d:17:d9:e0:2a:5f:60:ac:a2:ac:dc:
ed:90:03:bc:a5:b0:f3:d2:58:73:14:4d:53:d1:f9:53:96:c8:
cc:5a:1d:3c:aa:59:94:85:05:88:7d:5e:06:2a:05:9c:ef:67:
8b:34:cd:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 00:58:26 2025 by rpki-client