![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e01cc7b-65b0-4e96-921f-bd4c1001a0b3.roa
File: 0e01cc7b-65b0-4e96-921f-bd4c1001a0b3.roa (raw, json)
Hash identifier: YRU27oSBAZ/uEwmDqVhBBBBA+4W0wVKNy5g1BBJhOrM=
Subject key identifier: 16:8A:8D:15:AD:C6:EE:9A:5E:56:68:6E:1D:E1:6F:CA:AC:51:D5:3D
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 103E547F2063ED8174E74FBDCA4BD5EE18625FD1
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e01cc7b-65b0-4e96-921f-bd4c1001a0b3.roa
Signing time: Mon 06 Jan 2025 00:00:00 +0000
ROA not before: Mon 06 Jan 2025 00:00:00 +0000
ROA not after: Mon 10 Feb 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:5530::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:21:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:3e:54:7f:20:63:ed:81:74:e7:4f:bd:ca:4b:d5:ee:18:62:5f:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jan 6 00:00:00 2025 GMT
Not After : Feb 10 23:59:59 2025 GMT
Subject: serialNumber=aee1c72e774ae4c72aae0f2e91bfd190ac28aa0f4a280fc1da2aadb75b095fa2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2c:c0:2b:9d:84:2d:a4:86:af:44:67:ae:bd:
fb:f6:20:d9:9a:ae:dd:6f:06:8f:63:6a:df:1f:f1:
de:e2:26:a1:da:49:4a:65:81:f9:34:85:9c:58:54:
68:95:11:85:d8:8e:35:9e:fe:5d:bd:d7:01:10:3e:
4f:d4:81:9b:99:d2:8f:47:23:4f:4c:9f:5a:ea:cb:
73:b6:c4:10:bc:ec:1b:af:f4:9d:19:13:b7:10:2e:
a6:bb:79:e0:b8:60:3a:4c:c8:e4:00:87:14:b1:eb:
43:ce:d3:07:e1:e3:be:2f:f0:89:b2:58:48:ba:da:
09:cc:b6:50:40:a1:7c:21:71:a4:44:b2:a9:78:98:
69:91:3b:89:e6:a5:49:e1:c4:46:4f:28:39:89:56:
33:97:a3:94:f3:4a:82:74:75:d5:9b:fc:b0:33:04:
9b:89:42:7f:4f:cc:ed:96:9b:12:40:89:53:b6:5e:
ef:78:da:e3:a8:e4:56:95:97:bb:2d:aa:92:c7:e9:
e1:b2:1e:44:43:33:ab:af:43:31:67:e7:9a:72:43:
86:4e:74:59:2f:ce:c4:20:7f:f0:87:2b:27:8b:d5:
89:3a:6c:76:3a:40:e6:cf:67:98:82:25:e3:1a:18:
06:c0:6c:60:4e:f9:f6:1a:a6:05:49:81:ec:84:8b:
18:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:8A:8D:15:AD:C6:EE:9A:5E:56:68:6E:1D:E1:6F:CA:AC:51:D5:3D
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0e01cc7b-65b0-4e96-921f-bd4c1001a0b3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:5530::/48
Signature Algorithm: sha256WithRSAEncryption
2b:63:cb:10:48:a1:bc:ff:fd:eb:66:67:a4:01:2b:51:7f:04:
6e:d4:2b:f8:80:87:98:b6:07:ff:35:e5:1f:06:fc:8b:27:f4:
ac:a0:d0:ae:f9:9f:45:1c:37:c0:2b:b5:ca:4e:e7:d4:54:6d:
9a:9c:77:fe:b4:fe:e1:c5:d8:6a:e9:a8:b2:ac:3f:ec:75:b9:
27:f2:3b:e1:42:20:ac:45:aa:2f:9b:8a:ad:51:0a:e0:76:30:
02:cf:36:ae:39:62:9d:09:4b:19:c8:f9:4a:63:66:f8:53:e3:
4d:39:81:bb:4d:32:44:5a:8c:8c:73:77:67:88:30:5b:72:2e:
aa:04:6c:73:e4:2f:0e:f4:14:b3:c2:0a:6d:fd:a4:17:bd:e2:
1d:bd:71:e8:ed:5d:b9:2f:84:a5:cd:9b:5a:75:86:b3:1c:2e:
64:5b:f7:c9:0f:eb:11:84:3c:b2:9b:62:0f:73:19:7c:14:f6:
8a:f7:cf:8c:06:bb:dd:da:c5:5b:ca:e4:ce:4b:c5:ae:d2:c8:
07:fd:e8:2d:b8:33:11:7f:ec:03:bb:8f:4b:41:a0:90:2f:b1:
48:56:60:3c:cc:cf:a0:2a:ea:30:f1:af:cb:b9:d4:51:f4:19:
1e:83:6f:e6:3b:eb:a4:8a:3b:1f:35:21:a5:de:bc:32:f0:93:
90:ad:11:76
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Jan 7 05:36:24 2025 by rpki-client on console-fra.rpki-client.org