Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/69802baa-274e-464f-9528-c2e45ae56d0d.roa
File: 69802baa-274e-464f-9528-c2e45ae56d0d.roa (raw, json)
Hash identifier: bSRpR9tFsINM3CyNiVGECXgfKIdSGuGwZ21SpbjNVRA=
Subject key identifier: E3:C4:69:28:E7:96:2C:62:AA:08:6D:C5:16:5C:86:BE:19:66:68:81
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 012610BC1D3D88F0E5573AF6DD3880A1050EC4E3
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/69802baa-274e-464f-9528-c2e45ae56d0d.roa
Signing time: Tue 20 May 2025 18:20:46 +0000
ROA not before: Tue 20 May 2025 18:20:46 +0000
ROA not after: Tue 24 Jun 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:e040::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Jun 2025 21:22:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:26:10:bc:1d:3d:88:f0:e5:57:3a:f6:dd:38:80:a1:05:0e:c4:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 20 18:20:46 2025 GMT
Not After : Jun 24 23:59:59 2025 GMT
Subject: serialNumber=8deeb214f328b06d5dd324c2c9a3b357acc2ddb200512160f68f4c41b12a10b0, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e2:6f:c7:2e:54:8e:a8:ba:75:e4:a4:7f:1e:
ab:ff:c3:10:2a:d9:02:fe:2a:79:87:2a:2c:4a:4e:
9a:60:62:92:18:21:1f:dd:c2:9c:de:2f:67:2b:d3:
e2:72:83:4f:65:17:4a:7c:49:75:07:f1:bb:0a:b2:
74:03:c3:a2:58:5c:9d:28:22:f4:e4:91:73:9b:04:
0f:8b:f5:7f:aa:8e:ae:04:4d:8e:d0:7d:fc:c6:a0:
1a:8c:88:34:56:35:f9:6b:74:79:f0:b4:ba:9d:4a:
4e:5a:39:98:f8:be:bd:db:20:5e:b8:c7:f4:23:ca:
10:78:48:21:37:54:21:10:0d:ca:6f:24:71:3e:cf:
00:a8:42:b6:38:79:5e:32:ee:5d:64:4c:0d:8c:54:
fe:dc:32:ff:84:51:eb:6b:62:6d:f6:3d:f1:c7:a4:
6b:34:5f:44:a1:6f:60:ab:a7:df:2c:8d:43:7e:36:
ca:e6:42:78:43:fe:e5:ee:1e:6d:fc:f1:fd:95:cd:
16:68:fc:17:af:2f:44:b5:ad:1a:7b:40:b9:89:f0:
8a:25:e8:36:98:81:1b:20:b2:9f:a0:ad:4f:88:fe:
57:04:82:c4:e5:3e:0b:e6:9d:b5:cb:a3:36:b4:89:
4a:40:10:db:01:2d:95:6e:62:8a:63:af:c1:60:a5:
4a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C4:69:28:E7:96:2C:62:AA:08:6D:C5:16:5C:86:BE:19:66:68:81
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/69802baa-274e-464f-9528-c2e45ae56d0d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:e040::/48
Signature Algorithm: sha256WithRSAEncryption
6d:eb:83:69:da:1f:a7:99:94:ea:95:c4:e2:70:dc:4e:2b:dc:
92:0f:db:b4:43:f4:fc:b4:9b:71:44:3a:2f:97:51:11:c5:59:
ae:cf:f5:cd:d1:3c:cc:12:dd:3f:c9:6d:05:7c:ee:71:38:e8:
12:dd:58:1b:d5:29:00:10:4c:16:6a:bc:27:06:a0:b6:d9:50:
c3:55:d9:ed:8c:8e:41:fe:37:82:84:c5:a3:eb:75:bc:0c:f1:
00:30:9f:7a:07:c8:7b:c7:dc:db:f4:dc:25:83:26:23:1a:03:
d4:5d:63:c7:c1:a1:3e:15:92:2a:d0:f8:d0:f3:a1:3b:3a:c5:
f6:26:33:44:ab:be:82:03:78:3c:02:12:76:17:0c:9d:14:c2:
8d:69:2e:3e:7e:58:e2:c2:b0:e6:4c:72:9b:df:67:6f:6a:47:
98:bd:60:aa:e3:76:31:bb:d3:95:39:f8:42:11:f6:e1:e8:97:
d1:15:14:d1:26:f8:e7:e6:a4:38:7c:e1:9c:93:80:9c:2d:36:
36:6e:b0:0b:9f:bc:63:ca:d4:6a:90:82:8c:39:18:3b:e8:f9:
5a:2a:27:ba:ba:61:50:72:a7:72:df:a4:17:f9:83:51:13:30:
25:d5:28:bf:b1:06:d0:72:4f:3d:96:f2:63:11:d3:c1:89:44:
f9:08:1a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:02:53 2025 by rpki-client