Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/777a9208-f45b-4a4b-9889-9e76109bfd60.roa
File: 777a9208-f45b-4a4b-9889-9e76109bfd60.roa (raw, json)
Hash identifier: lOBBpZvuiEdn1KqyhWmY+2ApB24aK42U9M4+fhosCKA=
Subject key identifier: C3:C9:C2:FD:BA:02:29:0A:2D:60:67:29:C8:2F:42:B3:4A:F7:8A:E6
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 59897D0113BB4F2E91355C967275A7BE55BD6B51
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/777a9208-f45b-4a4b-9889-9e76109bfd60.roa
Signing time: Tue 08 Jul 2025 00:52:00 +0000
ROA not before: Tue 08 Jul 2025 00:52:00 +0000
ROA not after: Tue 12 Aug 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:1ff7:5080::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 30 Jul 2025 19:37:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:89:7d:01:13:bb:4f:2e:91:35:5c:96:72:75:a7:be:55:bd:6b:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jul 8 00:52:00 2025 GMT
Not After : Aug 12 23:59:59 2025 GMT
Subject: serialNumber=cafdc3757b15da938395ef6d08f776dab9dacaa0bef80a1c979ebf0a432c2229, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cb:28:50:3c:77:c8:dd:46:71:b4:69:e4:c8:
5a:e8:8d:d1:e0:b4:4e:f0:4e:75:3d:81:f8:55:8c:
14:55:1d:7a:12:20:2e:53:c3:c0:39:6c:f7:ad:ad:
43:fe:b8:09:5f:94:c0:a5:42:f7:2a:04:cf:31:fe:
5f:f2:83:31:3d:68:77:27:26:23:ce:d6:82:9e:cb:
ec:96:47:23:ff:eb:d5:68:a0:cd:97:54:f0:bc:17:
30:0f:33:79:71:f9:09:0a:b0:33:b8:3f:32:41:aa:
c7:85:e9:ff:80:69:3c:8e:51:83:f6:08:18:dd:96:
0a:63:0b:38:48:f6:29:39:7f:39:f0:59:28:b0:ca:
34:94:10:7a:db:32:d0:2d:91:ed:a2:e5:e4:9f:02:
04:41:4f:0b:e8:55:01:bd:b9:10:7f:58:7a:10:86:
8a:78:5f:ff:88:61:2d:14:af:fb:40:63:58:1f:9b:
1f:bf:84:60:b1:55:01:b5:d1:41:7a:69:67:06:4a:
c0:53:28:ca:a6:ac:93:ad:d3:2f:28:34:a0:eb:07:
95:67:e0:2f:e1:28:39:e1:ef:c6:a0:0c:5e:d5:df:
95:27:bd:ac:b3:ac:c8:87:07:16:16:bf:ce:39:37:
99:2d:17:c5:0a:27:e6:67:33:2a:4e:1a:ec:a9:09:
94:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C9:C2:FD:BA:02:29:0A:2D:60:67:29:C8:2F:42:B3:4A:F7:8A:E6
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/777a9208-f45b-4a4b-9889-9e76109bfd60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff7:5080::/46
Signature Algorithm: sha256WithRSAEncryption
3d:32:b8:39:d3:8b:68:e9:92:51:98:db:34:f3:c1:6a:95:a8:
9b:9f:76:f2:6a:aa:3e:75:72:e4:d7:db:de:b3:8f:1f:08:ba:
1d:35:26:97:ca:2b:51:65:f4:e6:30:ca:12:47:81:0f:6b:5b:
c8:7b:c5:8a:19:fa:fc:a2:b1:1d:b6:bb:88:57:3b:48:d4:f1:
a0:c8:57:2e:8f:ed:6b:ec:5b:93:82:95:03:64:29:f6:99:04:
20:cd:c3:ee:55:10:2b:1c:a7:22:3c:56:be:7b:1f:7e:15:18:
93:96:a6:47:53:a5:05:93:fc:25:12:b5:e7:66:fe:08:ee:0f:
8c:e1:b5:d5:10:b3:fe:62:c9:9f:a9:de:7d:ee:ab:14:c3:af:
16:aa:a8:4e:0b:f6:44:5a:d4:bd:47:75:7f:67:35:06:72:ea:
36:8e:2f:ad:a4:8f:ed:ff:c5:b5:9a:a3:aa:bb:cb:93:b1:2e:
bd:cb:db:af:78:91:7d:cd:07:39:80:8b:21:9c:8f:6b:b7:53:
e6:05:d0:f3:fc:0e:4a:e7:2d:0b:7d:6c:bb:95:3b:f2:73:b9:
34:15:1e:6e:00:4e:a0:20:9c:09:1a:aa:cf:59:75:17:ef:06:
40:ce:c7:7e:61:40:09:e3:0b:d4:2e:0b:bd:9a:5c:fc:fa:ba:
b9:31:18:f1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jul 31 01:17:07 2025 by rpki-client