Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa
File: fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa (raw, json)
Hash identifier: cSxGhHYQml141fj37gKAJwSw85H9h6RgshCRKAwKOps=
Subject key identifier: DA:7F:7D:65:67:92:27:CE:C1:A6:D0:D3:98:DD:C6:2C:6F:3A:8F:FD
Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37
Certificate serial: 1C9DACDC85277E66DD65D5095EB2AB221410A5B5
Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa
Signing time: Mon 03 Feb 2025 00:00:00 +0000
ROA not before: Mon 03 Feb 2025 00:00:00 +0000
ROA not after: Mon 10 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2406:dafb:f000::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 03 Feb 2025 18:51:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:9d:ac:dc:85:27:7e:66:dd:65:d5:09:5e:b2:ab:22:14:10:a5:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F635F0000
Validity
Not Before: Feb 3 00:00:00 2025 GMT
Not After : Mar 10 23:59:59 2025 GMT
Subject: CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cd:86:61:fc:9d:0c:3a:43:a2:41:44:0e:fc:
07:aa:45:49:3f:15:b9:6c:2e:05:0b:b9:8a:f7:40:
85:44:76:fa:88:7d:cd:f1:96:18:4c:61:5a:d3:41:
e5:32:ed:a3:3d:21:2e:d5:36:40:b4:ad:d8:eb:b0:
e4:4f:eb:a8:7f:e3:f7:16:bf:52:41:82:26:c2:41:
2b:31:67:54:f1:b4:03:89:ff:4c:24:d1:c2:42:b6:
f8:21:01:17:7d:d9:f5:ac:27:fe:dd:9a:ad:1d:8c:
bc:2f:db:45:01:ff:84:3c:fc:dd:79:06:a4:a1:53:
54:06:18:89:e8:ad:d3:2c:af:a8:e0:6f:19:aa:84:
5f:42:0f:c6:fb:0b:a2:79:8c:d4:bf:76:b7:2c:60:
5b:74:6e:6d:33:44:f7:21:ff:98:53:41:a0:98:75:
6a:09:38:81:8c:99:6c:40:6c:26:08:5a:9c:29:26:
8e:20:1e:7a:a4:cf:a2:8f:b1:a9:1d:dd:a2:66:9b:
c0:98:69:9c:3f:7f:96:e0:9b:71:8e:20:c3:e3:d6:
75:46:7a:3a:dc:a0:f3:e4:9e:c6:bc:88:48:5c:0a:
81:20:4d:8d:06:7c:73:b7:83:78:7e:45:d5:dd:c9:
eb:ab:99:50:9c:b6:9d:33:c8:df:f6:f2:71:a2:db:
22:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:7F:7D:65:67:92:27:CE:C1:A6:D0:D3:98:DD:C6:2C:6F:3A:8F:FD
X509v3 Authority Key Identifier:
keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/fdaea9a5-1194-4a2b-afd2-28ea6c6c90f9.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:dafb:f000::/40
Signature Algorithm: sha256WithRSAEncryption
c1:97:ed:5c:b0:67:be:bc:18:38:ce:5d:69:39:5f:9a:47:e2:
e3:76:bc:0c:ec:9c:57:6e:c6:c0:e9:14:29:85:f3:92:a9:de:
ed:29:d4:37:f5:1f:81:51:aa:21:ba:3d:59:38:32:4b:93:38:
b1:6a:75:3a:c1:0c:bb:8f:ff:70:d2:ad:b8:9f:bf:1d:b5:ae:
fa:96:dc:2a:dd:9a:c7:18:17:8e:6e:06:94:ac:67:13:11:5e:
02:1c:71:c0:38:6a:39:26:0e:19:e0:c5:79:bd:04:74:79:41:
68:4f:3c:9d:af:79:31:08:a0:40:a2:ba:bf:fb:9d:a9:ba:f2:
9e:8a:d6:a5:79:5e:69:91:5f:29:d0:22:fd:54:f9:2f:fb:3c:
88:4a:6e:fd:5b:7b:76:9f:60:c7:05:dc:79:d3:8e:75:53:72:
b3:b0:d2:38:04:ee:cb:aa:ac:78:13:cc:50:35:c3:10:c4:0a:
29:2c:1e:c8:99:65:95:14:88:d9:02:d4:65:bd:38:ea:fd:27:
93:3d:da:25:8b:81:f6:d3:94:ab:bb:44:75:1e:04:f8:7e:83:
52:00:e9:51:5b:48:dc:e7:3f:a7:b7:34:a4:d5:10:57:93:49:
13:7d:e0:2e:14:38:93:18:8b:f6:84:16:32:c9:ce:75:23:15:
f1:a0:f7:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 04:05:36 2025 by rpki-client