Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/58a57efc-c80e-4942-be52-27b7aa819f65.roa
File: 58a57efc-c80e-4942-be52-27b7aa819f65.roa (raw, json)
Hash identifier: heyUohzJ02v6Whnb6MEH1GGdZUd3Kj74cy0X2Bwk+zo=
Subject key identifier: B0:02:59:F4:3A:80:CF:3B:6C:B7:C1:32:F8:8D:19:12:A1:C0:6E:1A
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 1497AE4418100BEF82D70EF3797B58C343EA91C9
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/58a57efc-c80e-4942-be52-27b7aa819f65.roa
Signing time: Mon 12 May 2025 16:21:25 +0000
ROA not before: Mon 12 May 2025 16:21:25 +0000
ROA not after: Mon 16 Jun 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d05b::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 03 Jun 2025 18:52:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:97:ae:44:18:10:0b:ef:82:d7:0e:f3:79:7b:58:c3:43:ea:91:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 12 16:21:25 2025 GMT
Not After : Jun 16 23:59:59 2025 GMT
Subject: serialNumber=67905b690a9a54df8d46399381694fb8b692fc0807ebe3f74ed3bb399184efc6, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:df:76:74:b5:06:e3:ae:9c:84:f1:5a:60:c7:
9b:0d:33:a5:83:18:82:f4:40:89:61:c3:2e:50:36:
9d:d3:3e:11:0b:af:b7:92:2f:8b:4a:af:08:ed:45:
4b:9c:b3:aa:de:0d:84:3e:4d:2a:df:7b:bf:07:f3:
e5:2b:68:cb:22:15:85:80:ea:29:eb:c3:cc:b1:ad:
50:c8:92:d1:d2:51:06:d3:fa:e0:2b:f5:d4:3d:94:
31:0c:fe:76:ce:f9:22:2f:30:5b:55:8b:c6:fd:66:
0c:b1:bb:75:3b:86:13:17:5f:e2:fc:ad:68:31:14:
99:4e:b9:73:e3:8c:39:f0:75:bc:0a:19:e0:6c:78:
d8:03:cf:20:b9:c8:aa:e8:e5:e0:4a:7f:15:bb:5d:
77:62:fb:19:6b:3b:b3:e5:21:55:70:b6:0a:b8:6d:
2b:d6:10:56:d0:b1:03:5f:3c:df:7b:62:a2:42:4e:
fd:98:dc:ea:a7:d0:6c:9e:d2:68:46:93:26:21:a5:
cf:b3:9f:38:d2:b7:dc:01:0d:c6:5f:91:0d:89:8c:
ad:cc:05:9a:81:a3:3c:58:f8:54:3d:07:eb:5a:fc:
79:44:e5:75:fc:19:50:28:8e:9d:fa:34:30:d8:be:
35:a7:e3:da:df:f0:4f:9b:76:36:9b:7e:70:9b:e9:
3c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:02:59:F4:3A:80:CF:3B:6C:B7:C1:32:F8:8D:19:12:A1:C0:6E:1A
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/58a57efc-c80e-4942-be52-27b7aa819f65.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d05b::/32
Signature Algorithm: sha256WithRSAEncryption
1f:ab:0e:f8:46:d4:2e:76:b3:7c:a9:b3:b1:80:7c:05:26:2a:
2a:7b:15:a7:67:ad:cd:d3:7b:de:92:c3:4e:7f:34:1a:46:e9:
b6:0e:ef:7d:d1:92:74:d0:27:c3:1c:c4:b9:8d:d1:68:21:fd:
c6:e6:4d:b5:60:81:f9:64:ea:55:99:91:9e:4c:8b:67:fd:f5:
3d:99:b1:b5:3c:0c:bd:b7:03:af:0a:10:83:d3:5d:ff:0a:b6:
38:2c:dd:ef:9c:fd:02:d3:f0:39:17:a4:0d:f0:7a:59:1f:ad:
ae:c7:fd:15:ff:d6:64:37:41:09:b8:4d:17:de:71:9f:b6:34:
f0:9e:32:32:b6:3b:0e:31:53:fe:5d:ee:3b:fb:2e:40:b4:b7:
7e:f4:2b:45:69:ca:90:46:45:f0:12:45:07:84:4a:94:20:ab:
c1:6c:00:e0:99:67:5c:7f:b6:60:ac:35:b1:ff:a2:64:82:05:
a2:5b:0a:1a:2d:b4:af:cb:3b:70:84:94:49:6c:68:5c:02:2f:
0a:6a:77:7a:f9:d0:b0:25:5a:76:90:57:b5:63:2f:16:ef:79:
de:72:92:2f:d1:13:b8:94:f2:0d:87:17:d5:8e:39:b3:e5:78:
80:4c:35:96:b3:09:43:f5:c3:19:91:4e:14:2b:14:31:6b:44:
b5:22:1c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:58:45 2025 by rpki-client