
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07de3d6-bd1c-45fc-a092-f2635716b267.roa
File: e07de3d6-bd1c-45fc-a092-f2635716b267.roa (raw, json)
Hash identifier: pLFowPhtXIw1WQ6zmU1JnmwFx2K/TXGOEXOMG3FEYfg=
Subject key identifier: 03:28:CE:45:37:CC:A9:CE:36:F0:6A:33:3E:09:B7:99:18:2B:21:D2
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 055CE0FF39E98EAF9ACAD0D04C2ED539F73D3FC3
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07de3d6-bd1c-45fc-a092-f2635716b267.roa
Signing time: Wed 30 Jul 2025 00:31:03 +0000
ROA not before: Wed 30 Jul 2025 00:31:03 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf7:c080::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 18:24:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:5c:e0:ff:39:e9:8e:af:9a:ca:d0:d0:4c:2e:d5:39:f7:3d:3f:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:31:03 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=c21f9091b5970bef1691fad4c61dcf7ecd35845efbd401de9699d836c4384c40, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:94:bf:8f:19:2a:4f:05:a8:19:ee:d2:dd:99:
db:fb:69:85:69:1d:b9:f6:2c:5a:5f:28:61:e9:b9:
fe:e7:fc:c5:b4:19:89:b0:07:f8:ad:8d:83:d3:0e:
55:a8:02:27:81:62:07:fa:28:4f:9b:35:56:f2:b5:
6c:ea:fe:92:06:51:7d:9a:52:6f:e8:4e:ea:95:c9:
db:a5:e1:0f:c3:15:1b:53:9c:04:c8:87:49:90:94:
09:4e:76:09:dc:23:0e:e8:51:fc:f2:29:be:eb:bc:
28:a9:6e:a2:87:4f:96:05:31:29:49:08:4f:6d:1e:
ae:bf:5f:15:bd:89:a1:b8:a2:49:7f:36:0a:52:ee:
54:57:28:e1:5e:55:26:c2:5f:3b:f9:25:88:60:4d:
37:d8:bf:3d:29:54:c9:2e:b5:13:81:d7:dc:95:6d:
6a:3a:e8:e6:c1:ee:7f:0f:11:3f:cd:ad:bb:12:77:
49:1f:23:d9:5a:21:dd:ce:93:8c:57:4e:55:bf:00:
67:a3:85:5e:64:f3:b5:9b:ea:7c:ca:28:4a:30:76:
ec:f1:11:1c:f5:5b:45:f4:79:7e:b5:e7:0e:9c:45:
0e:00:7c:ea:e2:de:41:24:3c:8d:ca:9f:02:56:fa:
55:50:67:75:98:a5:d7:86:73:42:d2:d4:96:89:fd:
4a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:28:CE:45:37:CC:A9:CE:36:F0:6A:33:3E:09:B7:99:18:2B:21:D2
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/e07de3d6-bd1c-45fc-a092-f2635716b267.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf7:c080::/46
Signature Algorithm: sha256WithRSAEncryption
1f:ce:f0:06:b4:97:16:e1:76:cb:77:e0:b3:f3:8f:05:d7:21:
4b:88:95:06:30:0a:2a:3d:2a:a9:c8:fb:b7:d7:ba:ee:33:45:
7f:5d:16:5d:45:54:25:44:16:e8:16:d6:04:07:8e:d9:78:b7:
bb:8e:d6:ce:0a:db:af:50:34:52:1b:a2:53:0e:77:a1:94:9f:
e2:08:0f:17:3a:47:67:9a:24:f0:f2:ac:06:b5:9e:78:78:d2:
b7:5a:58:ae:8c:9a:24:09:d8:c0:61:55:51:64:20:07:7d:65:
df:90:4b:d3:8c:01:43:79:55:68:58:75:01:e1:f7:0d:3e:ec:
59:b9:06:62:3a:62:c7:72:f0:6c:51:1b:d9:87:df:18:b3:f5:
63:79:d6:8c:75:86:a1:52:52:93:fc:ec:c8:96:1c:12:a2:01:
c3:44:3a:d1:95:e6:3c:a1:ad:c1:03:94:8b:ab:7e:8e:fe:e2:
5c:00:09:34:b2:e6:2b:54:0d:d6:03:f5:1c:b6:b6:10:11:5d:
14:17:d9:8d:14:29:4d:70:8b:d9:9f:cd:06:25:8f:e7:f8:0d:
68:a3:f5:70:27:35:b9:32:54:48:7b:92:df:2a:2b:18:80:6e:
d1:85:64:26:28:1e:58:8b:28:9f:e7:d7:9d:1a:5f:5f:94:32:
50:ba:09:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 00:57:22 2025 by rpki-client