Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd1d4a0b-cd5d-4980-8629-6b70af1f60e6.roa
File: fd1d4a0b-cd5d-4980-8629-6b70af1f60e6.roa (raw, json)
Hash identifier: wW9U5IfvgTkj7O9Ve/IzDgRxH2qsqbzdGNCFQIFRgVQ=
Subject key identifier: D0:F2:CD:CD:1E:66:A9:48:48:C9:05:D1:5A:23:12:D5:F3:26:09:70
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 46BB9F9C54AD1B13D535B1CCD3A61A4CAAEB91DF
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd1d4a0b-cd5d-4980-8629-6b70af1f60e6.roa
Signing time: Wed 30 Jul 2025 00:41:45 +0000
ROA not before: Wed 30 Jul 2025 00:41:45 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:daf7:6000::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 30 Jul 2025 18:52:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:bb:9f:9c:54:ad:1b:13:d5:35:b1:cc:d3:a6:1a:4c:aa:eb:91:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:41:45 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=49c4aeb0f96dfceed93d9e94746dab003f7a5596ee6df2c230ac930cc2d12429, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:41:08:6e:ae:3c:af:dc:57:2a:2f:be:26:0b:
48:21:e7:ba:ac:48:76:31:c3:3b:d9:e8:3c:29:5c:
be:21:aa:19:c5:e1:91:e8:c8:e8:9b:0a:e1:8a:23:
e9:d8:5f:a8:eb:a9:89:b6:53:03:ef:34:d1:0e:20:
a6:30:c3:6c:4d:88:38:47:fd:c5:48:0d:9e:76:1f:
4b:dc:3c:cb:09:58:8d:e0:4d:8c:06:d0:31:62:b2:
8b:b9:11:98:6a:ae:bf:53:b4:62:a8:8b:04:d8:0a:
d6:71:6e:29:c8:78:1c:c3:ed:8a:2b:fb:ba:82:85:
ea:1b:b6:a3:17:45:46:64:ca:c8:b2:a5:15:62:b0:
83:a2:b4:f8:c9:66:21:32:76:54:25:2d:6f:be:2e:
5a:cd:cb:1d:57:40:2e:72:98:e5:78:a1:83:26:fe:
c8:e1:11:e1:b3:75:ad:e9:b8:4b:75:61:0b:51:d6:
4d:d5:92:f5:88:f7:af:2f:0f:72:81:08:d2:e1:99:
d9:ba:86:ce:20:33:fb:35:23:c1:25:c0:cb:2a:60:
2a:30:54:70:fc:d2:f6:e3:57:bf:16:1e:31:19:bc:
c5:6b:7c:21:94:ed:0d:6a:74:9c:2e:5f:75:c4:35:
d3:42:74:a0:52:61:f1:dc:42:d5:d6:92:72:95:81:
80:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:F2:CD:CD:1E:66:A9:48:48:C9:05:D1:5A:23:12:D5:F3:26:09:70
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fd1d4a0b-cd5d-4980-8629-6b70af1f60e6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:daf7:6000::/40
Signature Algorithm: sha256WithRSAEncryption
8a:95:26:ad:e7:3e:4c:99:d2:eb:b8:d5:5e:f0:5e:bf:63:d0:
aa:c6:7e:3b:eb:62:b8:4e:ad:ce:b3:7c:c1:5c:9d:1e:89:84:
29:bf:0e:eb:23:bc:7e:13:ff:d8:14:fc:99:0d:56:a6:02:c7:
00:03:31:fb:93:14:7c:f5:62:0d:14:1d:8d:ba:c7:73:3f:9b:
b1:ea:dc:f6:27:49:fb:a0:e0:95:7f:2f:e3:7a:a5:fe:a9:91:
f0:7c:d2:b4:3a:79:47:b5:57:02:db:e6:64:29:c7:57:13:5a:
c0:b9:67:53:46:d3:7a:60:95:1f:54:ad:07:fe:f9:4f:1e:36:
92:93:ae:3a:e5:b5:ef:3d:e1:55:6b:7d:69:4d:86:bd:cb:0b:
c1:26:66:f2:e0:2e:80:7a:21:34:be:9d:5c:84:5c:6c:56:84:
cf:78:2a:1d:c8:33:8d:b6:aa:86:71:1b:08:a2:af:d4:a0:14:
16:1d:42:54:21:12:b5:76:a7:41:a5:af:bc:3c:18:1f:6a:74:
4f:42:ca:fd:08:64:80:6b:48:bd:45:ec:d4:d3:72:22:3c:ef:
63:99:43:82:9f:4e:c0:e6:9a:76:53:eb:a9:9b:e8:63:e5:9b:
1b:28:69:a2:49:af:e9:6c:e1:2b:9a:3a:da:14:47:21:cf:9d:
58:4b:10:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 31 01:02:39 2025 by rpki-client