Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b5082fa-83b2-4d42-ba4b-3d46dea3f642.roa
File: 4b5082fa-83b2-4d42-ba4b-3d46dea3f642.roa (raw, json)
Hash identifier: tomoEKqpOiKmbchX+NbawLRhS9voe9XSgDwwPNPnQ5o=
Subject key identifier: 29:62:D3:44:83:A9:67:2C:74:D3:DA:93:90:CB:0D:42:E9:C5:5F:AF
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 583337FF5E906BB5662EDCD08EEF0CD81A09C9BE
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b5082fa-83b2-4d42-ba4b-3d46dea3f642.roa
Signing time: Mon 12 May 2025 16:20:18 +0000
ROA not before: Mon 12 May 2025 16:20:18 +0000
ROA not after: Mon 16 Jun 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d06e:5000::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Jun 2025 18:52:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:33:37:ff:5e:90:6b:b5:66:2e:dc:d0:8e:ef:0c:d8:1a:09:c9:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 12 16:20:18 2025 GMT
Not After : Jun 16 23:59:59 2025 GMT
Subject: serialNumber=1912af80da535f88dc8282e3b4347aa37f9757773cddb2cdefe337ea24441f9c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f5:fd:f9:7c:64:b3:b4:ef:f2:ac:19:5f:b7:
64:dc:03:13:25:ae:ae:c2:5a:8d:89:29:4f:ad:df:
51:c7:72:32:7f:ad:e2:8b:51:ce:34:70:69:46:87:
84:f5:ae:8f:48:65:e5:18:2f:d5:69:ad:0e:f7:2b:
1e:0b:1d:65:50:0d:24:f8:aa:d3:cf:bc:ac:50:e3:
7d:fd:6f:64:bb:f4:fa:90:1f:28:32:25:f0:5a:af:
7d:2e:a3:7f:99:7d:83:a7:fb:46:7a:4a:0e:1c:e0:
80:25:56:30:91:76:4b:fa:11:56:00:f0:62:93:22:
12:aa:e6:3a:e5:f6:8d:9a:c7:51:8b:48:19:0f:0a:
b2:03:17:ad:a9:9c:1b:7c:70:fa:b0:3c:7f:38:cc:
ff:2f:34:2e:46:59:23:fe:a0:fc:d1:0a:f6:af:f4:
a4:75:78:8b:b1:a3:c7:4e:05:7f:44:2f:cc:3c:6c:
54:e3:87:03:3b:b7:ef:f8:4e:c4:b0:d7:b6:da:0c:
8a:c1:df:a6:68:ae:ab:7b:3b:9f:5c:a1:89:de:54:
e5:11:45:a3:d3:6f:e8:b9:45:a2:53:dd:ae:0d:d0:
d3:73:1f:61:c2:7b:9a:14:35:f3:68:34:ef:a9:2b:
0a:59:cb:12:9f:2c:2c:18:0b:54:2c:be:2c:ef:2d:
82:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:62:D3:44:83:A9:67:2C:74:D3:DA:93:90:CB:0D:42:E9:C5:5F:AF
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/4b5082fa-83b2-4d42-ba4b-3d46dea3f642.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d06e:5000::/40
Signature Algorithm: sha256WithRSAEncryption
29:40:ea:98:b8:3e:a1:c5:d4:d0:4a:2d:d2:1f:aa:a7:3f:fc:
bd:d0:71:28:9a:1a:54:3e:49:e0:e5:4b:1c:ba:80:c4:c5:65:
1e:61:ec:13:cc:7c:3b:30:a8:fb:35:23:0b:71:47:50:33:c2:
0f:df:6d:1c:d5:6e:53:50:a8:af:6a:31:bb:dc:3b:a6:bc:a1:
71:27:2f:21:1f:82:3f:a6:7a:fb:50:01:9b:e3:72:3c:dd:de:
22:ff:63:69:14:dd:8a:39:7e:36:15:1a:d8:f0:87:76:77:16:
75:85:fd:f0:b1:a8:8c:e5:4f:d1:26:38:02:1d:df:96:aa:5f:
d0:71:d3:35:23:56:74:f4:be:3c:69:b7:39:de:75:25:2f:aa:
a5:8d:82:5e:39:37:2c:55:7c:76:c3:f9:98:2f:b3:83:25:b4:
19:8f:41:f2:2b:e5:31:f5:a1:67:28:ab:99:bc:8b:9e:8c:ba:
7b:8e:97:f2:5f:d7:12:19:60:a6:3a:77:07:b7:b5:f6:82:53:
7b:f9:ce:aa:16:d6:f4:1d:c7:70:af:98:6b:84:32:9e:20:62:
e8:70:ff:6c:5f:74:b8:2a:9b:5c:fd:df:f0:7f:24:bd:6e:b5:
d2:1b:02:bd:c1:21:2a:ba:0c:a3:8f:af:18:73:97:fb:93:19:
ad:ff:d0:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:58:38 2025 by rpki-client