Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/79721917-42c2-429a-b1f0-c3959488aecb.roa
File: 79721917-42c2-429a-b1f0-c3959488aecb.roa (raw, json)
Hash identifier: rqMWVCqL9IFTQLqzs5xl19a2LNQXeJVnGUnsjRSfWCE=
Subject key identifier: B9:E4:38:1A:84:C9:2E:8D:35:01:EC:42:00:2E:13:54:DE:6D:45:DF
Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Certificate serial: 431AF65A9208E3F78E2E10B113D2E5BDF489F388
Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/79721917-42c2-429a-b1f0-c3959488aecb.roa
Signing time: Tue 28 Apr 2026 14:10:44 +0000
ROA not before: Tue 28 Apr 2026 14:10:44 +0000
ROA not after: Mon 27 Jul 2026 23:59:59 +0000
asID: 21664
IP address blocks: 2605:9cc0:d00::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 Apr 2026 15:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:1a:f6:5a:92:08:e3:f7:8e:2e:10:b1:13:d2:e5:bd:f4:89:f3:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424
Validity
Not Before: Apr 28 14:10:44 2026 GMT
Not After : Jul 27 23:59:59 2026 GMT
Subject: serialNumber=35e01c27a23729a95110550ec3a934b023fc7649adb36d99b05bf5ebfbff8f41, CN=f7243785-46de-414b-9b8f-7a9699e979e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:66:c8:1f:62:91:f1:a8:c8:e4:c3:fd:20:7d:
3a:2a:84:ad:aa:9b:78:18:94:7d:2e:98:f8:35:8e:
98:70:3e:02:85:f8:d1:c6:3f:37:0e:bb:c9:65:0b:
14:9e:16:80:e9:5d:46:43:ae:28:64:5e:38:2f:2f:
0f:a2:a7:71:c9:98:f0:c4:6a:9b:c1:d9:51:e1:eb:
1a:5d:ca:d9:76:58:8f:69:42:df:b3:17:e0:5c:94:
95:67:a6:10:e2:bf:dc:da:a0:68:21:8f:86:ef:1a:
5b:77:19:72:40:24:96:01:29:d4:c9:00:84:0e:28:
60:b5:cf:d2:82:29:03:a1:5b:2e:fe:0f:9c:e7:4a:
b4:72:e8:ec:e4:a3:a3:7c:a8:62:98:1d:cb:27:d7:
a8:f7:97:b5:92:22:b5:85:de:3a:77:6f:c6:76:85:
7a:1e:f7:05:81:34:1a:cc:7a:9b:3e:25:5d:94:e0:
92:c4:ad:a3:0f:bd:b3:a3:b8:b8:0d:00:b1:42:27:
1c:69:4e:18:c9:78:26:4c:30:bd:24:61:01:7a:34:
05:c3:c7:55:01:6a:bd:4f:6f:84:71:af:e7:7c:d1:
df:e2:2c:24:4a:13:f4:69:38:ec:1a:b4:e1:36:32:
db:e9:4c:16:f9:5a:9b:9f:ac:62:c3:bd:e4:7b:79:
5a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E4:38:1A:84:C9:2E:8D:35:01:EC:42:00:2E:13:54:DE:6D:45:DF
X509v3 Authority Key Identifier:
keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/79721917-42c2-429a-b1f0-c3959488aecb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2605:9cc0:d00::/40
Signature Algorithm: sha256WithRSAEncryption
5a:bc:50:05:06:f0:ec:fa:e2:a6:8c:71:47:c0:c3:e2:78:ac:
44:33:c6:77:51:3b:df:7e:e0:eb:8f:52:33:1a:11:e2:51:8a:
1d:52:43:b6:2d:66:39:b2:98:12:a2:5f:b4:07:e4:a1:71:13:
03:30:4e:ae:fc:80:d2:95:6c:7b:16:e0:e1:ae:fc:90:e3:4a:
c1:e0:d2:27:5a:ab:13:bf:c6:5f:7d:d5:1c:48:38:bf:70:b3:
82:7a:79:a5:a8:76:a8:fc:1e:0e:c7:89:50:c3:ea:d0:00:ee:
3f:25:7f:cb:20:a4:93:90:09:cd:98:12:89:18:b1:7f:a3:04:
c0:a9:0d:9f:27:36:db:bd:a8:b8:41:62:a3:7a:f4:2f:a7:b6:
38:45:c0:12:6b:68:42:98:70:52:ff:da:dc:47:b9:a1:34:3e:
8a:72:fb:f1:83:b9:a6:91:76:60:d4:00:73:c9:cf:5a:9e:92:
53:8b:a1:46:85:6e:a3:a1:e5:00:48:81:cb:dc:a8:68:b1:53:
23:15:93:00:2c:e0:62:88:4a:83:05:23:16:26:bc:8e:49:b8:
f7:d6:f2:11:2b:88:50:d8:1c:b0:cd:63:59:06:24:5c:43:11:
da:7e:ba:2e:e5:e1:fa:0a:3e:c5:c4:da:d3:6d:ac:c2:8e:81:
b1:f7:ed:dd
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Tue Apr 28 17:01:02 2026 by rpki-client