Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/304c3c26-658c-45dd-afe8-9a7b242a073d.roa
File: 304c3c26-658c-45dd-afe8-9a7b242a073d.roa (raw, json)
Hash identifier: zj+Qtx4ocpk8YJPfU2+wdcDC5j+nk9ajyyqXjjrU/kw=
Subject key identifier: 8A:DB:84:AC:20:7D:6C:A6:BD:DF:70:6C:14:33:1C:73:D5:4F:83:20
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 1C94DE88B83A6151D4283BBF5B71CB7C3DB28418
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/304c3c26-658c-45dd-afe8-9a7b242a073d.roa
Signing time: Wed 28 May 2025 13:37:00 +0000
ROA not before: Wed 28 May 2025 13:37:00 +0000
ROA not after: Wed 02 Jul 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:9000:a300::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Jun 2025 18:38:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:94:de:88:b8:3a:61:51:d4:28:3b:bf:5b:71:cb:7c:3d:b2:84:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: May 28 13:37:00 2025 GMT
Not After : Jul 2 23:59:59 2025 GMT
Subject: serialNumber=ae7b7db62f3f8dd2057cb199c2b9265c8287bce2e556f8e84bb52b5c20119716, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:5b:ab:c0:82:3a:c0:ad:ac:1b:d8:8b:8c:
13:3a:a9:90:ee:32:e9:07:87:7a:d6:ae:b8:10:8c:
55:91:f9:3f:58:67:c0:a1:3b:ce:6e:9a:cd:c0:be:
74:43:9c:94:c0:fc:58:66:ac:a9:53:da:b0:e4:ef:
22:6f:25:79:a7:d9:a9:e3:cf:4f:c0:b1:63:f8:0e:
c1:6a:04:79:f9:83:c1:47:42:2c:22:ca:76:66:6b:
c1:7d:c3:b5:8c:b6:29:8c:49:aa:9d:96:b1:b4:49:
e7:72:c3:14:bd:f8:b4:9c:cc:5f:97:76:72:ea:6f:
56:c8:7f:ec:de:ac:88:8a:98:4c:2f:57:ab:8d:56:
f1:bd:78:c5:04:2b:8a:15:02:dd:be:ee:34:b7:2f:
5f:8f:e7:0c:0a:35:de:72:c7:ff:2c:ec:ba:be:33:
fa:d2:c6:93:df:7e:b8:98:a5:53:34:60:9a:19:15:
16:01:41:86:9f:c9:2a:ff:d8:f0:97:c8:99:9a:7b:
d3:23:a6:d0:80:d7:07:55:ba:c6:37:27:89:9f:d7:
3d:38:81:55:b2:4c:6d:cb:ce:0d:4e:b0:3c:3f:6b:
a2:af:ef:27:e6:c6:f1:67:2c:60:1d:87:c4:29:1f:
43:af:1a:cf:12:7a:15:fa:9a:82:9d:10:1a:d8:83:
75:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:DB:84:AC:20:7D:6C:A6:BD:DF:70:6C:14:33:1C:73:D5:4F:83:20
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/304c3c26-658c-45dd-afe8-9a7b242a073d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:a300::/40
Signature Algorithm: sha256WithRSAEncryption
79:d7:c5:49:3c:bd:ba:62:48:2d:bf:ea:bc:f1:73:54:68:a7:
30:f2:1a:26:33:1c:c3:37:e2:94:11:3c:f0:f9:56:ac:b9:7d:
f1:1e:b1:7d:db:51:bc:0f:52:71:ae:77:bd:32:fd:10:7b:e2:
0b:ec:fc:83:1c:9e:69:c7:f3:92:db:89:da:07:72:5e:a5:2f:
4b:13:c1:61:6d:97:b5:da:ea:1b:69:45:c6:8b:ad:90:17:a5:
78:67:7f:44:54:1f:aa:0d:88:1e:56:d3:dc:10:9c:2f:05:27:
e3:0e:57:3b:f4:94:e2:c3:07:1f:81:fa:14:2b:8c:43:63:22:
de:9b:ac:15:08:c1:71:3a:09:71:0a:16:6b:bd:d8:ca:cc:43:
ed:e4:28:92:4b:dc:7a:22:84:69:a1:f7:89:d4:65:0e:a1:30:
c5:44:9e:07:c3:6a:90:16:34:ef:ae:43:e8:55:a0:a4:2d:61:
7a:23:1b:34:de:f9:0e:1c:40:b8:99:fc:dd:e7:1e:37:a6:bb:
cf:d1:e4:b4:3e:6e:db:24:2e:f1:f6:1d:9f:ca:e0:96:41:7b:
00:6c:1c:1e:a9:f9:7b:66:a1:6b:06:fb:9f:a4:47:ff:a4:27:
5e:c9:2d:0e:a9:36:06:a2:91:76:14:db:a9:36:79:e4:65:a2:
41:c1:d9:12
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Jun 15 12:02:07 2025 by rpki-client