Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ca7bf699-efac-47b3-ae0d-204a8f457ba8.roa
File: ca7bf699-efac-47b3-ae0d-204a8f457ba8.roa (raw, json)
Hash identifier: ivBA0jivg+EylsZhL/PcXX4vuYN01DBSdR7MTKXPTOg=
Subject key identifier: 6D:6E:BD:E5:29:9A:5B:76:7C:4F:51:BE:AF:CF:AF:88:7B:83:26:0F
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 5F27CD73ACDA06F2CEDA4D682E6C6B33E8C3320B
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ca7bf699-efac-47b3-ae0d-204a8f457ba8.roa
Signing time: Wed 28 May 2025 13:38:37 +0000
ROA not before: Wed 28 May 2025 13:38:37 +0000
ROA not after: Wed 02 Jul 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:9000:5211::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Jun 2025 18:37:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:27:cd:73:ac:da:06:f2:ce:da:4d:68:2e:6c:6b:33:e8:c3:32:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: May 28 13:38:37 2025 GMT
Not After : Jul 2 23:59:59 2025 GMT
Subject: serialNumber=e93fd6cb7edcd00899f6c8056278eba1b32ad556268ca0ff43b923a2d0633d8d, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:8e:7e:7c:87:d8:66:e9:be:5b:9c:45:3b:e3:
f6:9e:68:c8:72:81:57:fb:d6:ab:32:f4:2c:8c:e2:
f5:e5:12:3b:ed:bc:1b:5a:44:6a:3d:5c:2a:57:2b:
6a:83:1e:8e:7d:d1:4a:d9:76:97:05:90:4e:7a:93:
1b:ad:f2:5f:6f:cf:a4:39:c8:f1:26:8b:17:f1:e2:
1b:40:cc:a3:58:e2:ae:c6:a8:5e:fd:57:07:70:87:
8f:9d:44:d4:d8:0b:fe:a7:90:44:07:90:d9:97:dc:
e0:8d:4f:8f:18:c7:73:ea:ca:0b:ff:e4:3d:f6:8c:
ba:83:d2:30:46:c4:c8:ee:d6:1b:aa:0f:ba:bc:9c:
b8:82:28:30:05:45:a9:ae:cd:77:d6:d1:46:cc:a9:
ca:9e:25:dd:bb:c1:96:80:9f:9d:ea:2a:af:5d:95:
f2:a9:df:d8:ce:d3:49:95:80:a6:90:ce:59:6d:6f:
6f:6a:e3:21:ad:36:eb:d5:da:4a:2e:10:ea:60:62:
41:39:e5:13:14:d6:77:51:6d:ed:4c:a9:01:a8:62:
e1:1e:1c:8f:33:81:bf:2f:b0:f2:81:8b:5c:be:bc:
1e:a9:8d:b4:f9:43:d1:92:39:2f:39:7b:44:40:d1:
0c:29:95:5d:b8:0c:7d:1b:c2:68:7d:54:c8:d3:49:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:6E:BD:E5:29:9A:5B:76:7C:4F:51:BE:AF:CF:AF:88:7B:83:26:0F
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ca7bf699-efac-47b3-ae0d-204a8f457ba8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:5211::/48
Signature Algorithm: sha256WithRSAEncryption
65:a1:d4:ec:cf:06:dc:f5:93:90:22:b6:cb:cf:e0:02:ea:32:
34:b8:d4:c8:b6:e3:53:19:1c:03:4e:09:79:8b:4d:ff:5f:c9:
4f:d3:ad:98:4a:90:27:d4:a1:a5:fb:19:9a:c3:4c:78:66:c5:
63:44:62:95:1d:5b:97:9e:cc:7a:15:07:80:f5:76:6d:3b:78:
69:3e:b6:e4:34:d9:1b:9e:95:2b:62:c9:6b:da:0e:b0:be:b7:
61:16:7f:f7:d3:b5:62:fa:c5:70:78:06:0f:f9:54:23:97:e7:
12:1d:d2:ee:6c:62:05:d9:2c:c9:1b:fa:67:90:88:d1:49:5d:
e3:62:8d:eb:45:b8:98:df:9e:f1:82:e6:ee:24:fb:9f:ce:29:
f5:01:e5:e2:d8:60:7d:9a:22:6c:e7:26:00:8c:ce:4f:9e:c9:
1e:f6:6e:0e:90:0d:02:50:a4:ca:e2:ac:a9:05:02:1e:40:91:
a2:fb:c3:69:99:72:12:35:12:8d:b0:93:2b:e0:d6:02:ce:8d:
e7:07:a4:55:aa:73:a0:14:55:81:55:07:f0:8e:77:c4:04:5b:
1a:28:18:39:00:18:fe:06:0e:86:a9:68:d8:65:cb:aa:5b:ad:
01:a9:aa:3e:de:98:f0:c8:d2:54:4b:9d:a3:ee:22:45:23:c4:
ef:03:d2:60
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Jun 7 05:02:45 2025 by rpki-client