Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f60ea6a2-5eb0-4353-8369-2d30fd5d7414.roa
File: f60ea6a2-5eb0-4353-8369-2d30fd5d7414.roa (raw, json)
Hash identifier: 3Mb4foSufr1kK7bwTtj1yj1dgdBiXFZDg7ReghWqZX8=
Subject key identifier: 20:A0:AC:37:B5:81:56:16:2E:19:B7:59:6B:49:AE:93:FA:D0:55:D8
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 525D83926866FAC244B89FDAF89FB85F07CBE74C
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f60ea6a2-5eb0-4353-8369-2d30fd5d7414.roa
Signing time: Wed 28 May 2025 13:38:28 +0000
ROA not before: Wed 28 May 2025 13:38:28 +0000
ROA not after: Wed 02 Jul 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:9000:5206::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Jun 2025 18:37:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:5d:83:92:68:66:fa:c2:44:b8:9f:da:f8:9f:b8:5f:07:cb:e7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: May 28 13:38:28 2025 GMT
Not After : Jul 2 23:59:59 2025 GMT
Subject: serialNumber=807fae401db8c2b5ac74b501b0a7e1ff593872e46641f0b3764fc78267920723, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2c:68:cd:cb:78:97:2d:01:37:8b:ed:a6:49:
48:d6:f1:c1:89:46:4f:b2:e2:ec:12:7e:a1:a7:60:
33:cd:52:fb:91:40:f7:52:6f:7d:b2:64:07:90:12:
d3:9e:c2:0c:66:13:9f:a6:a3:ad:62:62:9e:f7:98:
a3:a3:dc:3d:bf:14:aa:be:65:6f:c1:cd:e9:be:78:
70:e3:87:d0:7f:29:dd:c9:80:e4:3d:1a:bd:16:7b:
12:70:3b:2c:00:3f:42:3c:e1:a9:28:f8:29:39:6d:
cd:bf:92:b2:0e:c3:a1:8e:f0:cd:af:87:c2:8a:ae:
e8:84:52:30:c5:c2:30:d8:f5:06:a5:f4:8a:df:27:
bb:60:9d:23:1d:2b:d8:27:d1:7f:01:25:c7:5a:c1:
d2:e0:a1:5c:ff:d5:67:35:ef:4b:47:75:e2:a5:9d:
43:d6:f3:25:36:84:60:b9:d7:ef:61:dd:20:21:f1:
48:c3:a8:2e:21:d4:89:74:8d:64:80:0c:fd:6f:31:
8e:ba:4b:b1:07:b9:4c:6a:2f:62:5c:89:8e:7e:6f:
8a:b1:2a:1e:59:e7:c0:01:75:b3:dc:1e:52:5e:e9:
47:06:01:45:07:2b:bb:3d:d6:8f:d5:b6:f4:ed:0e:
90:87:fe:a0:1f:80:93:ad:b9:e6:47:9c:29:b6:4b:
25:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:A0:AC:37:B5:81:56:16:2E:19:B7:59:6B:49:AE:93:FA:D0:55:D8
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/f60ea6a2-5eb0-4353-8369-2d30fd5d7414.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:5206::/48
Signature Algorithm: sha256WithRSAEncryption
9a:6d:6b:c1:75:07:5a:5c:9e:47:b2:00:05:bd:d6:7d:00:9b:
85:38:21:68:9c:b3:9b:f0:93:4e:ea:80:76:d8:eb:a2:ce:06:
c0:81:bd:3c:c8:6e:c5:c9:45:bf:90:bd:06:db:51:cd:82:f1:
6e:21:cf:89:d5:1b:42:b2:aa:d2:4b:47:23:b6:ea:d0:75:1d:
69:1c:35:a3:1e:b4:69:dd:87:75:5c:c2:b2:a5:07:1c:51:1d:
6e:a1:2b:a7:e2:84:13:28:49:8b:67:c3:d0:08:4a:95:93:80:
e6:9a:ef:31:66:ce:85:22:5b:bf:fa:0d:60:4c:38:a4:5b:b0:
19:63:9a:6a:ec:d6:28:ac:43:08:f7:74:d2:49:5c:ca:5a:85:
1b:f7:84:d3:8f:d2:1a:55:d4:66:ba:1f:9f:89:82:20:cf:9f:
5a:61:14:03:7f:e2:9d:8e:03:c3:34:af:1c:18:8d:23:7f:a1:
7b:34:a1:69:b4:c0:fd:10:aa:a4:49:71:df:9f:8d:bd:ad:f3:
e1:cb:f8:19:74:c1:8a:14:66:e2:eb:27:a3:35:05:3e:04:c9:
c6:08:e8:96:f5:66:3f:aa:3d:04:45:50:fe:ea:8a:24:29:13:
1b:71:3f:55:21:a6:0c:7e:61:99:ab:78:5c:20:a3:82:33:1a:
07:eb:85:e4
-----BEGIN CERTIFICATE-----
MIIF+zCCBOOgAwIBAgIUUl2Dkmhm+sJEuJ/a+J+4XwfL50wwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2
NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNTI4MTMzODI4WhcNMjUwNzAyMjM1OTU5
WjB6MUkwRwYDVQQFE0A4MDdmYWU0MDFkYjhjMmI1YWM3NGI1MDFiMGE3ZTFmZjU5
Mzg3MmU0NjY0MWYwYjM3NjRmYzc4MjY3OTIwNzIzMS0wKwYDVQQDEyQ5ZjIzMGZh
OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDgLGjNy3iXLQE3i+2mSUjW8cGJRk+y4uwSfqGnYDPNUvuR
QPdSb32yZAeQEtOewgxmE5+mo61iYp73mKOj3D2/FKq+ZW/Bzem+eHDjh9B/Kd3J
gOQ9Gr0WexJwOywAP0I84ako+Ck5bc2/krIOw6GO8M2vh8KKruiEUjDFwjDY9Qal
9IrfJ7tgnSMdK9gn0X8BJcdawdLgoVz/1Wc170tHdeKlnUPW8yU2hGC51+9h3SAh
8UjDqC4h1Il0jWSADP1vMY66S7EHuUxqL2JciY5+b4qxKh5Z58ABdbPcHlJe6UcG
AUUHK7s91o/VtvTtDpCH/qAfgJOtueZHnCm2SyUTAgMBAAGjggK0MIICsDAdBgNV
HQ4EFgQUIKCsN7WBVhYuGbdZa0muk/rQVdgwHwYDVR0jBBgwFoAU6PPFIOIO8l06
t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB
4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h
cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz
L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y
OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm
MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB
kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu
YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4
MmI2ZTYwNTA1L2Y2MGVhNmEyLTVlYjAtNDM1My04MzY5LTJkMzBmZDVkNzQxNC5y
b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz
dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4
LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC
MAkDBwAmAJAAUgYwDQYJKoZIhvcNAQELBQADggEBAJpta8F1B1pcnkeyAAW91n0A
m4U4IWics5vwk07qgHbY66LOBsCBvTzIbsXJRb+QvQbbUc2C8W4hz4nVG0KyqtJL
RyO26tB1HWkcNaMetGndh3VcwrKlBxxRHW6hK6fihBMoSYtnw9AISpWTgOaa7zFm
zoUiW7/6DWBMOKRbsBljmmrs1iisQwj3dNJJXMpahRv3hNOP0hpV1Ga6H5+JgiDP
n1phFAN/4p2OA8M0rxwYjSN/oXs0oWm0wP0QqqRJcd+fjb2t8+HL+Bl0wYoUZuLr
J6M1BT4EycYI6Jb1Zj+qPQRFUP7qiiQpExtxP1Uhpgx+YZmreFwgo4IzGgfrheQ=
-----END CERTIFICATE-----
Generated at Fri Jun 6 17:44:17 2025 by rpki-client