Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e77f2ecc-83c9-48cf-99e0-a46fa060d297.roa
File: e77f2ecc-83c9-48cf-99e0-a46fa060d297.roa (raw, json)
Hash identifier: kAatUSuO8k0VTsbJ85P9W2LKuWDVBbdADaR28Qxo7Jk=
Subject key identifier: EF:97:61:5B:A1:DA:D6:61:B3:73:50:AD:EE:44:CE:13:F2:63:D1:04
Certificate issuer: /CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Certificate serial: 084AB6B9025FF7ABFDF11AEE46CA09EB5F1F3D29
Authority key identifier: 8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e77f2ecc-83c9-48cf-99e0-a46fa060d297.roa
Signing time: Tue 20 May 2025 18:51:09 +0000
ROA not before: Tue 20 May 2025 18:51:09 +0000
ROA not after: Tue 24 Jun 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2a05:d074:e080::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Jun 2025 21:22:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:4a:b6:b9:02:5f:f7:ab:fd:f1:1a:ee:46:ca:09:eb:5f:1f:3d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6263dbe9799dd6793e0e882ad21cb4849970bc
Validity
Not Before: May 20 18:51:09 2025 GMT
Not After : Jun 24 23:59:59 2025 GMT
Subject: serialNumber=f700c9eb48aeb606a2f2cd754f5203bbbc6cc6c55e2a983c00a3e83346cfc9fa, CN=6615a38b-3ad7-47b7-8fb2-685c38d00914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ec:56:16:05:b3:f7:5a:82:e9:5a:bd:57:b7:
d8:e6:3c:73:72:b7:f1:7f:f5:7f:69:8a:ba:4c:6f:
f1:2a:3d:db:0d:ad:15:e9:91:04:22:71:f1:46:06:
6b:fe:ee:12:55:de:ce:98:9d:f4:34:a4:18:02:42:
ec:6d:5c:c8:6a:59:11:99:72:3e:39:6e:80:44:e1:
b6:02:39:c9:a3:e5:c5:52:fa:e0:33:cc:68:ae:94:
ed:f4:b3:21:30:2d:a8:b6:a6:5a:2e:1e:96:89:f2:
81:f9:83:c9:3c:2b:b9:92:0d:7e:ba:04:16:5e:d5:
db:ef:9b:dc:5c:8b:71:5e:0b:31:71:78:c5:85:1f:
7d:7a:d2:62:66:f0:e8:5d:23:60:dc:6c:ab:17:d5:
6d:fc:c8:dd:35:90:0f:56:aa:1d:e6:f3:fd:d0:26:
ad:57:ee:12:3a:2e:cf:89:86:58:0b:f2:5b:9f:28:
82:98:ce:d8:e7:90:23:c3:d4:7b:a7:12:1d:d2:39:
6d:68:45:a8:8c:02:e7:54:7c:80:d5:b8:6c:cd:c2:
83:2b:68:de:43:2e:28:e0:4f:7f:04:b9:c7:10:38:
b0:4f:8d:96:b9:c2:59:39:3b:43:c8:0e:8d:45:6d:
33:f0:ab:ee:d7:a4:2f:a4:f3:73:b5:b3:c9:cf:2d:
4a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:97:61:5B:A1:DA:D6:61:B3:73:50:AD:EE:44:CE:13:F2:63:D1:04
X509v3 Authority Key Identifier:
keyid:8B:62:63:DB:E9:79:9D:D6:79:3E:0E:88:2A:D2:1C:B4:84:99:70:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i2Jj2-l5ndZ5Pg6IKtIctISZcLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/e77f2ecc-83c9-48cf-99e0-a46fa060d297.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dba8f01c-9669-44a3-ac6e-db2edb099b84/uODatdtYc1HrhtUQVQyrDK08GeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:d074:e080::/48
Signature Algorithm: sha256WithRSAEncryption
43:2b:0e:aa:b3:3c:0e:06:90:6f:f0:74:66:5d:bd:fc:77:98:
3a:76:78:ff:b2:64:f0:5d:cd:34:36:84:4b:a0:d7:07:07:aa:
8c:db:97:93:8c:a0:e2:5e:7b:b5:4b:06:62:e4:a4:7f:17:11:
80:93:27:19:59:6a:66:ab:d1:71:c4:a8:60:19:e4:eb:d1:21:
a9:3c:ec:c6:c3:f8:94:83:88:0b:f8:22:e4:94:5f:62:81:9d:
94:fa:6c:de:d5:27:35:51:5c:3a:76:bf:36:38:81:01:4a:21:
41:e1:ae:9c:c6:5a:a1:0d:1a:88:6b:2b:ba:4e:2b:4a:8d:9e:
0a:33:96:b4:74:23:0b:89:a6:89:f2:35:b6:4c:76:58:84:b4:
36:47:b1:1f:af:4c:e5:9d:5a:47:b9:b4:12:cf:6c:c4:32:cf:
c5:27:7a:3a:d3:81:b1:af:09:32:10:14:44:7b:9b:42:2a:ee:
1d:f2:92:0b:19:25:13:f4:98:d2:a6:b7:20:56:18:89:77:d8:
1c:23:76:81:1d:1c:90:d6:30:2c:3c:3a:af:1e:2e:32:38:b9:
89:7d:ef:68:cf:9a:26:74:68:56:ea:1b:52:9d:f1:3d:d8:e6:
24:13:3c:0f:23:30:1e:27:83:de:a4:ea:bc:fa:37:4f:2a:13:
f6:cc:b5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:57:54 2025 by rpki-client