Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa
File: fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa (raw, json)
Hash identifier: me3yNQ5pwO34vPnH/h6HzaTOMh4NG9eDr8klcVOGz0k=
Subject key identifier: 96:05:1C:69:11:11:F7:22:00:29:04:C4:87:18:91:B2:77:2D:38:16
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 22FDC0EDC5CE58CC6AA8B68D86990D2C9EC95383
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa
Signing time: Wed 30 Jul 2025 00:41:02 +0000
ROA not before: Wed 30 Jul 2025 00:41:02 +0000
ROA not after: Wed 03 Sep 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafb:f000::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 30 Jul 2025 17:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:fd:c0:ed:c5:ce:58:cc:6a:a8:b6:8d:86:99:0d:2c:9e:c9:53:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Validity
Not Before: Jul 30 00:41:02 2025 GMT
Not After : Sep 3 23:59:59 2025 GMT
Subject: serialNumber=27a90749921846f9cd93108bbfb53bd5a02207a1600929ded88115f06820c1cc, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:b9:70:87:2a:de:5a:f9:92:05:95:2f:0c:f7:
80:02:38:01:b0:ac:7b:4a:91:b4:4b:1d:57:27:62:
b9:b7:34:0d:f2:4b:f2:87:83:14:e4:84:e2:1e:5d:
ee:5d:72:8f:6b:ad:bd:4c:89:a6:f7:51:90:bf:23:
31:96:83:67:5f:d4:d6:43:59:2d:2f:2a:1d:47:ff:
32:27:c0:38:39:bb:8d:6b:cc:1c:46:76:0c:f9:cb:
07:eb:73:88:1b:94:b1:0d:38:97:3d:8e:97:63:a5:
bd:8d:ca:ff:c1:87:13:56:6b:02:4c:05:91:04:3c:
4a:7a:68:8e:61:78:cc:bd:cd:95:0a:7a:5c:a0:b9:
55:92:b0:6d:76:28:2f:e3:0e:c7:6e:d0:9e:87:57:
8e:53:6d:9a:96:2b:45:96:37:84:aa:87:95:14:9f:
5f:12:d1:f8:a5:f6:a2:04:a1:be:00:07:38:56:92:
16:77:23:0d:77:e4:b4:e9:46:fb:63:66:38:0b:78:
85:bd:89:76:c1:dc:76:a8:0b:2c:e4:5d:e0:bc:38:
54:60:fc:3b:d6:16:45:50:ca:45:e9:f4:0d:ec:e5:
67:d5:9a:d3:65:d4:8f:1e:9d:fd:18:b5:13:23:aa:
ee:0e:97:8d:55:4d:d2:64:d6:6a:9c:7e:e4:5f:2a:
14:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:05:1C:69:11:11:F7:22:00:29:04:C4:87:18:91:B2:77:2D:38:16
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafb:f000::/40
Signature Algorithm: sha256WithRSAEncryption
3f:69:9a:82:e0:eb:ac:49:02:d5:dd:57:4f:2c:0d:3c:af:95:
3e:cb:2c:f8:f1:f8:6b:b4:fb:80:c8:56:4d:31:b8:ec:c5:d0:
44:32:0c:bc:e7:63:5c:5b:91:c6:a5:d5:21:cf:62:49:90:2a:
a1:f0:95:d8:da:50:25:cd:c4:08:ff:33:8a:10:3a:f8:fe:06:
02:c7:29:5b:b1:a1:7e:f7:85:62:01:61:8e:6e:70:9d:9c:32:
31:c2:5d:d8:ea:d3:05:9b:a2:01:71:55:69:d6:48:d4:ad:b4:
98:47:af:e2:9f:1d:1d:01:e7:41:1c:d7:03:47:b3:a9:41:2b:
85:51:32:ce:b0:1c:aa:af:a4:a8:55:61:5c:55:1d:a2:44:1e:
0d:b0:08:7c:d7:22:43:f3:2f:bf:63:46:07:51:27:03:2f:ef:
3a:f0:9f:a3:5f:cf:1e:12:c2:5a:6b:37:78:72:53:d7:95:be:
4c:1c:a7:60:4a:3a:db:b5:3e:38:fb:4f:f4:ee:bf:f6:1a:8e:
54:d2:8e:82:b5:1d:54:47:4c:16:03:9e:9b:e1:07:ac:33:a0:
43:10:3d:f5:62:70:3d:38:61:ce:d0:1c:12:01:e5:c5:d0:6a:
3a:56:ec:2f:97:bc:9b:3f:1b:0f:77:86:32:9f:7c:76:51:27:
ab:fd:89:6a
-----BEGIN CERTIFICATE-----
MIIFnjCCBIagAwIBAgIUIv3A7cXOWMxqqLaNhpkNLJ7JU4MwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0
RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI1MDczMDAwNDEwMloX
DTI1MDkwMzIzNTk1OVowejFJMEcGA1UEBRNAMjdhOTA3NDk5MjE4NDZmOWNkOTMx
MDhiYmZiNTNiZDVhMDIyMDdhMTYwMDkyOWRlZDg4MTE1ZjA2ODIwYzFjYzEtMCsG
A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+blwhyreWvmSBZUvDPeAAjgBsKx7
SpG0Sx1XJ2K5tzQN8kvyh4MU5ITiHl3uXXKPa629TImm91GQvyMxloNnX9TWQ1kt
LyodR/8yJ8A4ObuNa8wcRnYM+csH63OIG5SxDTiXPY6XY6W9jcr/wYcTVmsCTAWR
BDxKemiOYXjMvc2VCnpcoLlVkrBtdigv4w7HbtCeh1eOU22alitFljeEqoeVFJ9f
EtH4pfaiBKG+AAc4VpIWdyMNd+S06Ub7Y2Y4C3iFvYl2wdx2qAss5F3gvDhUYPw7
1hZFUMpF6fQN7OVn1ZrTZdSPHp39GLUTI6ruDpeNVU3SZNZqnH7kXyoUkQIDAQAB
o4ICSjCCAkYwHQYDVR0OBBYEFJYFHGkREfciACkExIcYkbJ3LTgWMB8GA1UdIwQY
MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF
BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw
b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU
U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI
KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz
LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx
L2ZkYWVhOWE1LTExOTQtNGEyYi1hZmQyLTI4ZWE2YzZjOTBmOS5yb2EwgZUGA1Ud
HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h
bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1
MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy
bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAO
BAIAAjAIAwYAJAba+/AwDQYJKoZIhvcNAQELBQADggEBAD9pmoLg66xJAtXdV08s
DTyvlT7LLPjx+Gu0+4DIVk0xuOzF0EQyDLznY1xbkcal1SHPYkmQKqHwldjaUCXN
xAj/M4oQOvj+BgLHKVuxoX73hWIBYY5ucJ2cMjHCXdjq0wWbogFxVWnWSNSttJhH
r+KfHR0B50Ec1wNHs6lBK4VRMs6wHKqvpKhVYVxVHaJEHg2wCHzXIkPzL79jRgdR
JwMv7zrwn6Nfzx4SwlprN3hyU9eVvkwcp2BKOtu1Pjj7T/Tuv/YajlTSjoK1HVRH
TBYDnpvhB6wzoEMQPfVicD04Yc7QHBIB5cXQajpW7C+XvJs/Gw93hjKffHZRJ6v9
iWo=
-----END CERTIFICATE-----
Generated at Thu Jul 31 00:59:16 2025 by rpki-client