Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b3d27c60-169b-477d-99dd-f2e3b4dcbada.roa
File: b3d27c60-169b-477d-99dd-f2e3b4dcbada.roa (raw, json)
Hash identifier: E/am3IJ6rlR0WnPLX/Tlx6QF7gcvDhiSHsWXG+6ITx8=
Subject key identifier: 46:5E:4F:63:AA:59:49:B4:5D:82:AC:5C:AB:89:15:82:34:53:C6:A9
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 13A114DCF5B6C72204F33D6C5751E8A4AD45CEFA
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b3d27c60-169b-477d-99dd-f2e3b4dcbada.roa
Signing time: Fri 16 May 2025 17:30:32 +0000
ROA not before: Fri 16 May 2025 17:30:32 +0000
ROA not after: Fri 20 Jun 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:8c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Jun 2025 21:08:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:a1:14:dc:f5:b6:c7:22:04:f3:3d:6c:57:51:e8:a4:ad:45:ce:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 16 17:30:32 2025 GMT
Not After : Jun 20 23:59:59 2025 GMT
Subject: serialNumber=2477f15671a6b308b76eea08fb7d265c8c7a8879f128f6a6a4ea42e50ae1194c, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a5:21:9d:7b:4b:e5:b5:0d:e2:35:43:34:b2:
ae:40:fa:12:63:16:32:e9:2d:29:90:42:d7:d4:cb:
e9:d7:b6:65:fd:44:ac:49:ca:62:bf:9e:dd:b2:c0:
d3:85:94:b5:de:29:4e:67:a7:95:06:4a:6d:1a:fb:
25:52:cf:fd:62:60:1c:14:e7:d6:04:08:f7:20:d5:
08:49:8c:1a:47:c2:6a:a8:99:98:19:f4:91:89:ba:
89:07:7b:45:f9:cf:6b:7e:8f:62:fe:f7:26:1b:18:
96:ee:f5:f4:72:b5:99:b3:95:08:21:1d:4b:ad:b2:
5c:19:40:e2:8b:ba:88:86:75:75:f6:31:b3:c4:51:
a4:68:17:bd:ca:6b:3b:1e:3b:2f:ea:a0:d6:92:36:
f2:45:5e:f9:9d:49:cd:c6:94:dd:ec:7a:ef:62:e6:
a6:36:86:f8:52:69:e6:7a:04:13:ae:22:a1:8d:98:
56:b0:96:1f:bd:5e:ce:e2:32:36:e2:09:49:c0:11:
4b:dc:18:0d:f8:44:b4:45:0e:f5:b0:70:fe:a4:2f:
44:2d:0b:78:88:e5:b8:b4:ba:f4:ef:74:bf:fd:ed:
9e:10:70:ca:ba:fe:f6:a0:1a:86:e3:c4:20:23:b2:
8c:46:ca:3d:72:83:fa:fa:89:5a:f7:99:7e:98:27:
f2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:5E:4F:63:AA:59:49:B4:5D:82:AC:5C:AB:89:15:82:34:53:C6:A9
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/b3d27c60-169b-477d-99dd-f2e3b4dcbada.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:8c0::/48
Signature Algorithm: sha256WithRSAEncryption
c9:86:38:bf:04:17:33:ca:fa:31:27:d5:9b:3e:2b:83:fd:9f:
3c:3e:34:81:0d:f9:57:ee:86:59:d7:3d:7d:12:84:19:a0:48:
44:a1:ad:42:11:45:7e:48:1d:48:db:1d:69:3a:6a:03:fa:1d:
41:c0:92:e5:83:7b:a2:2e:88:08:04:41:24:99:6c:40:19:2e:
44:50:ac:7d:5b:61:a0:4b:77:6a:4f:56:54:80:0c:a6:4a:e1:
59:48:0f:bd:a6:b2:05:2e:53:09:70:13:64:7b:cc:7d:3e:b3:
be:e3:fe:48:04:94:73:c9:06:72:61:34:fd:c8:cc:ba:6b:76:
f0:15:81:67:6a:8f:b8:3d:e7:d0:7b:50:ce:31:76:64:f5:91:
d1:6a:eb:74:85:05:c3:63:56:8b:78:cb:de:f0:0a:09:0a:6e:
8a:b4:ea:f6:b0:be:66:90:14:7c:2a:83:f5:46:bb:a9:d5:e7:
62:ca:c4:a2:26:94:af:31:42:10:93:cf:87:82:a1:42:d6:ba:
ed:0f:07:f4:31:79:f7:d8:56:e2:50:8b:60:c6:79:c1:ab:5f:
64:79:2a:30:a5:60:b0:b8:a7:ca:1c:99:cc:03:8e:b9:e0:bd:
0d:7d:bd:bc:e4:94:26:09:8a:e0:53:c7:96:c0:0e:7a:7c:fe:
8f:10:d1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:58:05 2025 by rpki-client