Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa
File: e9bd7780-4f41-490c-9ef8-0c9f02433493.roa (raw, json)
Hash identifier: Th91fUmbW2o2uP/aqg4zpwVcXhiPrNEvnP2qP0liR2s=
Subject key identifier: F9:60:FD:F8:39:72:FF:E4:D9:F4:42:89:8A:5A:C0:BD:1D:EC:1E:DC
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 5A45D2A9DDA0320C63C41946E5DCB487AF45E841
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa
Signing time: Fri 13 Jun 2025 16:30:16 +0000
ROA not before: Fri 13 Jun 2025 16:30:16 +0000
ROA not after: Fri 18 Jul 2025 23:59:59 +0000
asID: 8987
IP address blocks: 2600:1ff5:2000::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 16 Jun 2025 21:52:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:45:d2:a9:dd:a0:32:0c:63:c4:19:46:e5:dc:b4:87:af:45:e8:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jun 13 16:30:16 2025 GMT
Not After : Jul 18 23:59:59 2025 GMT
Subject: serialNumber=e80badf5b8db608970733a30774b8a9b5eec0cd101b9190497fed7a123846ab3, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bd:61:92:0d:c8:da:c1:01:0f:93:e5:d8:27:
bc:94:83:48:93:c2:a2:61:0c:5d:7c:bd:e3:e8:b2:
97:f7:2e:c6:77:64:43:51:5f:ef:39:ee:38:89:aa:
8c:0a:8f:d0:ed:ec:d3:2b:75:2e:51:33:98:99:f6:
5f:70:e0:ff:fa:f9:68:19:6a:64:4c:dc:ef:e9:7b:
89:af:de:8f:a9:5c:94:69:4b:5f:b9:90:af:e9:d7:
f4:43:08:7d:14:3b:09:9e:ea:fa:6c:e8:a6:35:92:
39:07:85:ad:41:89:03:33:ac:ac:77:3b:d3:47:d6:
93:dc:89:1f:32:20:6c:2d:9d:a2:50:f5:19:1c:72:
e3:c8:ba:36:92:50:06:15:21:67:e2:05:dd:ad:30:
a5:c5:73:22:fd:f4:85:36:db:18:8c:f6:35:d1:67:
d7:cc:42:11:90:3f:6f:09:87:04:ce:ec:a4:f9:e6:
1e:ef:39:b4:20:81:ec:ee:d3:00:40:d2:06:0e:05:
96:7c:3d:70:6a:b7:7d:59:0b:d2:85:2d:94:5d:36:
5d:53:bc:a0:b8:b0:e2:bf:40:11:73:ff:bf:b5:11:
81:90:f7:43:30:73:96:59:e2:bb:7d:d6:03:c7:70:
b3:df:6b:fa:62:4a:b8:11:af:99:5c:3d:df:f8:7e:
7d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:60:FD:F8:39:72:FF:E4:D9:F4:42:89:8A:5A:C0:BD:1D:EC:1E:DC
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:1ff5:2000::/40
Signature Algorithm: sha256WithRSAEncryption
5d:f0:d7:8b:16:40:dd:f7:be:6e:d4:d3:8c:19:0f:b8:bf:b7:
f2:f9:c5:3f:0d:1d:55:a0:f4:62:95:dd:60:b2:54:42:f3:8e:
c9:73:f5:dc:8e:40:80:c6:db:20:80:22:8e:fa:e8:96:eb:68:
ea:c5:ab:66:a7:2a:e4:58:b0:a0:0a:76:36:f0:9e:74:5b:21:
9f:16:88:eb:86:53:28:a2:6e:1f:0f:19:3a:ec:d7:7d:21:d7:
98:a9:4d:1d:a6:8f:db:d1:51:e9:ca:a6:f9:2b:76:9d:2a:bc:
3c:4f:12:3e:1f:dd:10:17:7d:0b:7e:cf:e4:18:14:13:ef:ef:
18:f9:4a:4e:0d:d7:dc:dc:19:74:29:24:49:6e:3c:b9:01:4b:
e0:a9:49:a4:1d:be:ea:d5:ce:f8:91:cd:1f:6e:9b:11:ed:3e:
e4:5f:64:41:a4:c2:54:35:02:38:80:e3:2f:e0:3e:9a:24:6d:
e4:e7:f6:a5:61:77:68:97:fc:a1:a3:64:53:4a:cb:8e:cd:0c:
d1:a2:d5:db:cb:1a:24:c3:13:49:88:0a:46:d0:80:a0:d0:35:
06:21:4d:6b:d4:97:33:7b:e6:dd:03:b7:df:7d:80:73:63:76:
38:03:61:de:9d:19:9e:c3:ad:25:62:2d:53:5c:ff:7f:4a:cf:
27:5a:be:56
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Jul 4 02:16:05 2025 by rpki-client