Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/57166fdd-8031-475e-a7c3-4a94e8e8484e.roa
File: 57166fdd-8031-475e-a7c3-4a94e8e8484e.roa (raw, json)
Hash identifier: sa93h/Il5nvdWWVjNcFhSwSr/ndncPn9aU+CkD+m0AE=
Subject key identifier: A7:BF:62:2D:74:A4:E1:E7:F8:90:4B:E3:24:7C:87:3D:C3:0F:5E:11
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 33E26C3C0F3A92A1373E47F3AC89E7F4EADE1D95
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/57166fdd-8031-475e-a7c3-4a94e8e8484e.roa
Signing time: Mon 12 May 2025 16:20:07 +0000
ROA not before: Mon 12 May 2025 16:20:07 +0000
ROA not after: Mon 16 Jun 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d06e:6000::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Jun 2025 18:52:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:e2:6c:3c:0f:3a:92:a1:37:3e:47:f3:ac:89:e7:f4:ea:de:1d:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 12 16:20:07 2025 GMT
Not After : Jun 16 23:59:59 2025 GMT
Subject: serialNumber=1c91cb1cab25d11209e5bba3c0f54c794dd6f26eb02923bfe47c124edb4bc84a, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9e:29:27:2b:ca:6a:58:66:92:b0:1d:98:3e:
59:21:3f:1e:19:25:15:f2:1a:70:52:2c:ba:39:40:
fc:8f:82:a7:cb:4a:85:be:e3:d2:84:82:88:f3:8e:
23:e3:82:24:52:ac:79:c3:b4:00:38:e6:92:f5:e6:
ef:2c:cd:39:67:5d:1d:9b:2c:4b:43:77:3e:24:ec:
77:83:90:aa:e6:d6:f4:7a:9f:7a:b7:94:73:56:1e:
2c:66:3c:76:62:51:ca:89:ea:b8:5f:51:d7:03:4c:
b7:f1:74:8f:c8:25:0a:e8:5c:84:ef:80:f1:69:05:
eb:7a:0c:df:44:a8:19:60:4b:41:80:6c:ce:cc:28:
88:a3:a8:c0:f8:37:8e:93:43:e1:cf:84:c2:80:0d:
1e:ba:93:75:7d:68:1e:43:df:65:7c:87:e8:a4:6b:
7f:64:1e:e4:e8:2a:e9:bd:65:5c:5b:d4:71:ac:a4:
b7:5e:d7:05:a5:e9:d1:ee:7a:29:b2:40:88:d2:32:
08:c8:69:b8:d0:ea:a7:db:8e:88:51:97:09:d2:bf:
bc:f7:71:ca:fc:05:c0:14:aa:3b:ed:fa:2c:1d:16:
8c:1f:7c:d2:a4:c9:60:e5:87:e0:98:5a:9b:2b:f7:
47:d3:2b:d2:de:0d:9a:d5:c4:8b:33:5b:78:29:fd:
b0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BF:62:2D:74:A4:E1:E7:F8:90:4B:E3:24:7C:87:3D:C3:0F:5E:11
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/57166fdd-8031-475e-a7c3-4a94e8e8484e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d06e:6000::/40
Signature Algorithm: sha256WithRSAEncryption
6b:49:b7:7d:12:30:a1:24:ec:1e:76:ed:cc:a0:76:ce:69:0c:
33:55:06:60:62:42:ee:ec:e3:e7:85:56:2d:f6:a6:80:8f:26:
bf:a6:54:23:3e:4e:0f:51:e9:e3:13:57:35:f2:2e:c8:f8:5f:
05:c1:d4:b2:61:0d:86:b3:4d:bb:83:71:14:1f:5d:5a:eb:72:
e6:5c:e8:78:f7:53:02:3b:3e:03:86:4b:14:61:f2:6c:78:d7:
b4:04:30:d1:4b:38:08:20:d8:44:fc:ac:28:15:55:0f:1b:d5:
58:3a:3c:85:d3:4a:e1:0a:3c:f6:a8:8e:07:b6:fe:f8:0a:84:
90:21:d5:b4:4f:50:8d:5e:95:f4:1b:b0:e9:6f:82:dc:f2:c6:
e4:f5:b4:a7:5f:0c:49:8e:93:85:70:55:1f:78:e8:aa:4b:01:
98:32:be:69:f9:7d:c0:61:48:74:2a:c3:af:bc:4f:26:a3:7f:
a5:77:48:3f:35:19:8c:d5:2f:2f:0a:b9:f1:87:18:37:31:dc:
32:c1:2b:f5:da:e7:14:b9:4f:59:cf:3a:38:61:2e:aa:e7:4e:
59:c8:8c:6c:40:8a:f1:55:89:b9:bf:6a:eb:ee:a5:27:e1:8f:
02:b2:d8:17:33:2b:5e:c8:e4:2d:dd:88:23:a1:33:61:71:18:
48:a0:53:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:57:17 2025 by rpki-client