Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ed1f1bc8-4479-43fe-8791-ebb390c7416c.roa
File: ed1f1bc8-4479-43fe-8791-ebb390c7416c.roa (raw, json)
Hash identifier: sFYlhXRx8GQQE2WNoqyIMR1ZOl/Zv2d5Ksr6p/+jwxY=
Subject key identifier: B8:CB:CF:C2:29:08:29:4F:B1:30:BF:13:7A:EC:0D:52:3F:DD:2B:BF
Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Certificate serial: 085035B77EAFA3233E7DC97A1A49A07D28D1B92C
Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ed1f1bc8-4479-43fe-8791-ebb390c7416c.roa
Signing time: Wed 28 May 2025 13:51:59 +0000
ROA not before: Wed 28 May 2025 13:51:59 +0000
ROA not after: Wed 02 Jul 2025 23:59:59 +0000
asID: 16509
IP address blocks: 2600:9000:5213::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Jun 2025 18:37:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:50:35:b7:7e:af:a3:23:3e:7d:c9:7a:1a:49:a0:7d:28:d1:b9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce
Validity
Not Before: May 28 13:51:59 2025 GMT
Not After : Jul 2 23:59:59 2025 GMT
Subject: serialNumber=a756b9825919429c4a1cc52e1bf554cdd914960c69fba67acc1d3b0c494b4598, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2d:3c:3f:26:bc:48:db:77:55:41:a5:12:9a:
87:b7:1f:d4:4c:7b:66:ab:50:22:28:18:4c:bd:7a:
b7:d4:9d:7e:1f:7c:4b:b2:0e:7b:31:85:13:3a:6f:
be:4d:cd:a4:7b:fc:f4:b3:88:ab:1e:fc:11:c6:dc:
47:8b:dd:57:65:05:f5:5a:6a:3b:ea:ef:6f:9b:b4:
db:d1:ad:3b:99:e8:35:aa:1a:b3:6a:14:c0:7c:43:
24:01:fb:dc:73:99:28:14:6f:56:49:cc:75:61:d9:
fb:c4:04:46:90:ba:75:9d:db:63:38:bf:70:33:19:
18:1b:a0:8f:db:be:6c:dd:32:b9:8a:8e:06:5b:03:
e9:aa:24:46:50:d2:25:c7:03:27:f7:76:2b:e8:0d:
02:1e:1b:38:df:66:78:77:eb:26:39:1b:5e:0c:b5:
3e:84:b0:09:a5:66:7b:bb:be:8e:3e:ec:09:d2:5d:
f7:3b:bf:92:7c:1d:0d:9c:a2:53:6e:fe:54:29:58:
5a:20:8a:12:f1:d5:5a:e8:9f:a0:cd:bb:af:7e:89:
9c:cb:a7:2a:ee:1f:98:37:09:55:b9:29:10:6b:e5:
e5:c0:8d:57:8c:48:47:58:a1:35:f0:1d:b6:dc:c9:
79:ea:4b:a5:03:01:f3:82:1a:1c:88:8b:3e:0a:01:
66:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CB:CF:C2:29:08:29:4F:B1:30:BF:13:7A:EC:0D:52:3F:DD:2B:BF
X509v3 Authority Key Identifier:
keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/ed1f1bc8-4479-43fe-8791-ebb390c7416c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:9000:5213::/48
Signature Algorithm: sha256WithRSAEncryption
9c:1c:cc:03:06:fb:42:35:09:e9:a8:32:97:6f:7d:f5:0b:67:
8f:e3:e5:86:ae:ac:2b:81:94:2f:da:23:14:34:2b:c3:68:e3:
49:b7:dd:73:af:6e:32:73:d8:ae:e5:54:8c:31:6a:07:97:31:
30:6f:08:af:4e:ac:a0:f3:0c:51:f4:cc:a2:84:8f:e1:9a:8d:
d3:3c:6b:5e:c9:59:16:1f:2e:f0:47:b5:a9:80:f4:ef:fa:4a:
63:7f:51:e8:f3:af:df:19:a4:1b:05:2b:08:62:70:d8:dc:fa:
89:48:2b:9d:f8:67:95:d4:fc:21:72:a7:51:ec:75:ab:72:f5:
5b:ab:6a:7b:1d:f2:87:1b:ca:c7:d7:dd:b6:d5:3a:b5:1d:71:
f0:ff:6b:5d:85:37:f3:0f:70:72:11:cf:e8:6f:5c:17:ba:ae:
9f:98:1e:42:9a:e8:7e:a9:e6:f3:49:83:a0:5e:94:fd:00:45:
b0:89:1b:d3:eb:39:db:01:76:30:1c:aa:e0:c8:0c:92:0e:ff:
d3:f2:93:af:fa:8f:d4:a9:bb:d4:f5:13:7b:fd:ce:54:b6:41:
cf:e0:5c:95:09:db:0b:04:52:af:43:8d:c5:fc:11:22:73:13:
3f:f2:e4:6d:cf:0d:21:f0:09:3f:d9:13:2b:37:5b:af:2c:36:
db:ce:b4:ba
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Jun 15 11:52:43 2025 by rpki-client