![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/656de0c4-8d15-4b0a-bca4-a372c2430656.roa
File: 656de0c4-8d15-4b0a-bca4-a372c2430656.roa (raw, json)
Hash identifier: B/SyJIF53vrB1+SfJGJF+FbkS0B0pe0XK3AFzLhi3RE=
Subject key identifier: A9:B9:0D:12:F7:FA:14:E2:5F:C2:B1:AB:3C:F2:31:DE:5D:6F:C4:EF
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 6A37D6D8F4089F372EE4D2C692CF54FEC3D5E1D9
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/656de0c4-8d15-4b0a-bca4-a372c2430656.roa
Signing time: Fri 13 Dec 2024 00:00:00 +0000
ROA not before: Fri 13 Dec 2024 00:00:00 +0000
ROA not after: Fri 17 Jan 2025 23:59:59 +0000
asID: 14618
IP address blocks: 2600:f0f0:600::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 06 Jan 2025 23:22:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:37:d6:d8:f4:08:9f:37:2e:e4:d2:c6:92:cf:54:fe:c3:d5:e1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Dec 13 00:00:00 2024 GMT
Not After : Jan 17 23:59:59 2025 GMT
Subject: serialNumber=be390c61a6407bd36034693773fc0f9a000fcebad73cf72ac7a20947d0c2d7b5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:94:48:45:5d:65:f0:96:0e:5e:42:3f:10:
8c:90:4b:1b:7b:fd:52:b2:74:ff:17:71:15:50:28:
da:2c:20:c3:2b:4f:2b:c0:a9:d7:41:a6:dc:07:62:
65:1d:25:a4:ba:2e:05:7c:e5:59:87:f5:6f:06:d6:
d0:19:9d:da:e1:45:69:79:be:fe:45:63:24:c5:13:
92:f9:84:3b:24:cd:63:f3:01:12:49:ea:82:d7:af:
98:b8:cc:93:8e:e9:25:39:09:1e:11:c7:85:0e:d6:
bc:00:b4:a0:c2:2e:90:67:b5:82:37:bc:af:78:75:
5f:2e:61:37:37:49:cf:02:37:17:fd:31:18:fb:3f:
7c:2b:b3:c4:34:aa:da:e9:12:92:dc:c9:39:67:ea:
de:e2:3a:41:dd:c9:0e:e3:93:dc:bb:9c:21:8b:54:
3b:21:bf:fb:6c:b3:3f:cd:4b:80:c8:85:03:c1:cf:
f0:86:c3:c9:d5:fe:af:ab:64:c5:80:22:88:c7:39:
f1:19:38:d6:24:f1:3b:b2:a3:25:36:56:f8:e0:ef:
d4:7a:21:98:cf:f1:d8:40:ef:2b:a7:89:62:55:3b:
27:9f:67:f7:85:89:59:fc:01:57:b1:bd:28:48:37:
5c:67:a1:49:32:c5:ad:bc:76:62:52:7b:eb:60:c9:
2c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:B9:0D:12:F7:FA:14:E2:5F:C2:B1:AB:3C:F2:31:DE:5D:6F:C4:EF
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/656de0c4-8d15-4b0a-bca4-a372c2430656.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:600::/48
Signature Algorithm: sha256WithRSAEncryption
8f:7e:95:a0:f3:70:ef:87:48:3c:3d:52:15:ed:d1:b0:2c:f5:
77:41:e5:fb:78:c2:4e:b8:20:12:3a:86:8a:cf:c6:bd:76:ff:
d4:49:4b:65:75:90:4c:50:5b:49:31:1b:74:c7:38:d3:1d:ce:
e0:1f:03:4e:7b:47:a7:60:58:4f:4c:60:da:79:91:21:65:d1:
1a:7d:4f:1b:bc:6d:70:ba:15:41:2c:e3:18:41:78:71:92:49:
cd:e1:62:62:53:3f:c4:be:4b:0b:45:82:26:56:db:5a:30:33:
02:28:f3:b1:18:e3:d8:e5:c3:a5:8e:e2:39:70:f1:f9:5a:e9:
70:4a:79:98:32:4c:ab:68:a6:77:ee:62:5a:65:ed:04:22:3b:
32:59:2b:34:0d:69:58:c4:82:86:fa:cc:bd:48:1c:8e:5c:b1:
a2:b3:e7:41:3a:64:2c:fc:fa:50:59:62:7a:35:a7:c1:c7:0c:
8c:46:31:6d:4d:ed:c2:ac:5c:b6:c2:67:ab:dd:bd:af:66:7e:
9c:d1:5c:8d:82:8f:ca:e7:e6:d7:bd:30:89:79:29:c0:4a:b5:
60:6f:32:12:11:b2:eb:61:ed:f1:ca:37:75:2e:1a:07:f8:ee:
43:fe:54:bf:83:6c:5b:30:46:bf:3c:c8:3e:d5:83:34:99:2b:
b7:b5:c6:9a
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUajfW2PQInzcu5NLGks9U/sPV4dkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi
MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQxMjEzMDAwMDAwWhcNMjUwMTE3MjM1OTU5
WjB6MUkwRwYDVQQFE0BiZTM5MGM2MWE2NDA3YmQzNjAzNDY5Mzc3M2ZjMGY5YTAw
MGZjZWJhZDczY2Y3MmFjN2EyMDk0N2QwYzJkN2I1MS0wKwYDVQQDEyRmYmIyNzU3
Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDI+5RIRV1l8JYOXkI/EIyQSxt7/VKydP8XcRVQKNosIMMr
TyvAqddBptwHYmUdJaS6LgV85VmH9W8G1tAZndrhRWl5vv5FYyTFE5L5hDskzWPz
ARJJ6oLXr5i4zJOO6SU5CR4Rx4UO1rwAtKDCLpBntYI3vK94dV8uYTc3Sc8CNxf9
MRj7P3wrs8Q0qtrpEpLcyTln6t7iOkHdyQ7jk9y7nCGLVDshv/tssz/NS4DIhQPB
z/CGw8nV/q+rZMWAIojHOfEZONYk8TuyoyU2Vvjg79R6IZjP8dhA7yuniWJVOyef
Z/eFiVn8AVexvShIN1xnoUkyxa28dmJSe+tgySzvAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUqbkNEvf6FOJfwrGrPPIx3l1vxO8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ
fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h
Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4
YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk
NjJlNDhmMDU2LzY1NmRlMGM0LThkMTUtNGIwYS1iY2E0LWEzNzJjMjQzMDY1Ni5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3
LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmAPDwBgAwDQYJKoZIhvcNAQELBQADggEBAI9+laDzcO+HSDw9UhXt0bAs
9XdB5ft4wk64IBI6horPxr12/9RJS2V1kExQW0kxG3THONMdzuAfA057R6dgWE9M
YNp5kSFl0Rp9Txu8bXC6FUEs4xhBeHGSSc3hYmJTP8S+SwtFgiZW21owMwIo87EY
49jlw6WO4jlw8fla6XBKeZgyTKtopnfuYlpl7QQiOzJZKzQNaVjEgob6zL1IHI5c
saKz50E6ZCz8+lBZYno1p8HHDIxGMW1N7cKsXLbCZ6vdva9mfpzRXI2Cj8rn5te9
MIl5KcBKtWBvMhIRsuth7fHKN3UuGgf47kP+VL+DbFswRr88yD7VgzSZK7e1xpo=
-----END CERTIFICATE-----
Generated at Tue Jan 7 02:45:23 2025 by rpki-client on console-ams.rpki-client.org