Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8e52381d018e8593884d2a30/0/3230392e38372e3137302e302f32342d3234203d3e20343030383636.roa
File: 3230392e38372e3137302e302f32342d3234203d3e20343030383636.roa (raw, json)
Hash identifier: XIJAsodjyngEYfRo1eOvFrKnz8L2c2wQNghMnHRUxJE=
Subject key identifier: 40:7D:59:C5:D7:57:17:A4:90:9A:05:4D:0E:CF:16:E0:68:E7:33:42
Certificate issuer: /CN=137bca5a0ff837b3808ba493bd14ab78cc4fd6296629253051
Certificate serial: 0EFD24A6DD788AAA318EAAB82DAD76840EDD11CB
Authority key identifier: 4F:44:9F:0C:CB:37:8E:C6:D3:FC:D7:6A:A7:EE:D5:9A:F1:15:93:BB
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/35213db6-703a-4ad8-9450-0a0e1d371cff/137bca5a0ff837b3808ba493bd14ab78cc4fd6296629253051.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8e52381d018e8593884d2a30/0/3230392e38372e3137302e302f32342d3234203d3e20343030383636.roa
Signing time: Sun 31 Mar 2024 16:13:01 +0000
ROA not before: Sun 31 Mar 2024 16:08:01 +0000
ROA not after: Sun 30 Mar 2025 16:13:01 +0000
asID: 400866
IP address blocks: 209.87.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 00:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:fd:24:a6:dd:78:8a:aa:31:8e:aa:b8:2d:ad:76:84:0e:dd:11:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=137bca5a0ff837b3808ba493bd14ab78cc4fd6296629253051
Validity
Not Before: Mar 31 16:08:01 2024 GMT
Not After : Mar 30 16:13:01 2025 GMT
Subject: CN=407D59C5D75717A4909A054D0ECF16E068E73342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a0:59:f7:3c:c9:ca:9d:23:d3:bc:2c:24:db:
bf:03:7d:b2:e5:f2:b4:5a:56:4f:5b:7c:1e:48:88:
b6:df:4d:7a:5a:bd:74:43:f6:c2:c1:38:c1:71:0c:
ec:06:a3:8e:95:4d:b8:fd:71:d5:09:3d:54:0a:ee:
b9:e6:8f:0a:3c:00:ae:17:d9:4a:14:63:35:fb:f6:
45:8d:b2:84:f5:c0:91:32:0b:26:46:63:e7:1f:96:
7b:54:dc:63:11:f6:b1:de:83:13:08:33:d8:3e:00:
27:fd:1b:dc:97:7e:b2:3f:62:b4:83:dc:da:e2:ab:
35:08:56:53:70:97:69:e5:37:89:28:d1:1d:40:5b:
db:57:b5:7c:aa:5f:6a:24:5c:16:92:5b:bc:94:3a:
e2:a6:44:7d:86:fe:b3:dd:87:3d:c8:fb:b8:db:ee:
67:81:e8:26:94:91:84:38:86:e8:0e:58:b9:1c:8c:
24:4f:2c:0c:9b:c6:9e:91:c2:3f:35:77:a6:f4:d8:
9a:1e:26:98:2f:2b:fe:9b:42:b9:0d:21:23:d1:a8:
33:5e:9c:3b:92:80:eb:24:a3:b8:ad:62:33:48:8b:
28:9f:78:b9:20:99:45:8f:56:88:da:10:55:2c:8e:
27:8b:d2:9d:b0:a1:5e:c9:b0:c5:99:db:3d:94:e6:
4d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7D:59:C5:D7:57:17:A4:90:9A:05:4D:0E:CF:16:E0:68:E7:33:42
X509v3 Authority Key Identifier:
keyid:4F:44:9F:0C:CB:37:8E:C6:D3:FC:D7:6A:A7:EE:D5:9A:F1:15:93:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf8e52381d018e8593884d2a30/0/4F449F0CCB378EC6D3FCD76AA7EED59AF11593BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/35213db6-703a-4ad8-9450-0a0e1d371cff/137bca5a0ff837b3808ba493bd14ab78cc4fd6296629253051.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8e52381d018e8593884d2a30/0/3230392e38372e3137302e302f32342d3234203d3e20343030383636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.87.170.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:d5:eb:f6:fa:f9:45:64:aa:c3:12:b1:12:fc:f4:39:b1:95:
68:5a:f5:80:8d:c9:8d:37:e5:bf:23:30:cb:a7:83:5a:5a:fc:
48:f8:24:f6:83:69:91:2b:68:d2:3d:e7:b0:e2:d3:50:80:70:
7b:1a:62:73:65:2f:e5:53:10:34:fc:d9:46:79:9c:1e:2b:7e:
68:46:d8:7e:09:c8:df:22:3d:86:29:de:c2:ef:87:30:71:4b:
bd:46:2a:d4:ce:03:be:df:69:23:e0:62:ec:97:d4:02:5a:99:
99:2a:44:da:6b:52:2f:27:58:c8:c2:2b:82:f2:10:4c:b8:8a:
3f:9a:51:19:bf:2b:2e:74:28:13:b3:2a:27:e1:c5:43:ad:81:
de:f9:da:98:f7:10:d0:82:83:49:13:18:2a:5c:dd:c4:4f:37:
a0:44:2f:a7:fc:b9:d8:e8:69:88:ff:26:f5:ab:3e:cb:db:c2:
0c:03:e3:7f:11:06:fe:d2:23:2b:1b:d9:16:15:c9:c5:32:f6:
3d:d3:19:15:94:1f:84:f4:2a:a8:c9:ba:f9:45:cf:9b:eb:aa:
4a:a1:03:80:c2:7d:63:da:62:0b:37:19:d0:e4:84:d4:a0:5c:
43:35:bb:92:bd:75:85:35:8c:65:cd:89:7a:72:3c:18:b9:60:
4d:df:6a:a9
-----BEGIN CERTIFICATE-----
MIIFtDCCBJygAwIBAgIUDv0kpt14iqoxjqq4La12hA7dEcswDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMTM3YmNhNWEwZmY4MzdiMzgwOGJhNDkzYmQxNGFiNzhj
YzRmZDYyOTY2MjkyNTMwNTEwHhcNMjQwMzMxMTYwODAxWhcNMjUwMzMwMTYxMzAx
WjAzMTEwLwYDVQQDEyg0MDdENTlDNUQ3NTcxN0E0OTA5QTA1NEQwRUNGMTZFMDY4
RTczMzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2aBZ9zzJyp0j
07wsJNu/A32y5fK0WlZPW3weSIi23016Wr10Q/bCwTjBcQzsBqOOlU24/XHVCT1U
Cu655o8KPACuF9lKFGM1+/ZFjbKE9cCRMgsmRmPnH5Z7VNxjEfax3oMTCDPYPgAn
/Rvcl36yP2K0g9za4qs1CFZTcJdp5TeJKNEdQFvbV7V8ql9qJFwWklu8lDripkR9
hv6z3Yc9yPu42+5ngegmlJGEOIboDli5HIwkTywMm8aekcI/NXem9NiaHiaYLyv+
m0K5DSEj0agzXpw7koDrJKO4rWIzSIson3i5IJlFj1aI2hBVLI4ni9KdsKFeybDF
mds9lOZNoQIDAQABo4ICtDCCArAwHQYDVR0OBBYEFEB9WcXXVxekkJoFTQ7PFuBo
5zNCMB8GA1UdIwQYMBaAFE9EnwzLN47G0/zXaqfu1ZrxFZO7MA4GA1UdDwEB/wQE
AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l
dC9yZXBvc2l0b3J5LzhhODQ4YWRmOGU1MjM4MWQwMThlODU5Mzg4NGQyYTMwLzAv
NEY0NDlGMENDQjM3OEVDNkQzRkNENzZBQTdFRUQ1OUFGMTE1OTNCQi5jcmwwgfMG
CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu
Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut
YjA4Yy0yMTcxZGEyMTU3ZDMvNGFiN2FlNGQtYmQ3Yi00YjMzLTlhODgtNWIyMmQy
YTgzMzdkLzM1MjEzZGI2LTcwM2EtNGFkOC05NDUwLTBhMGUxZDM3MWNmZi8xMzdi
Y2E1YTBmZjgzN2IzODA4YmE0OTNiZDE0YWI3OGNjNGZkNjI5NjYyOTI1MzA1MS5j
ZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5jOi8vcnBr
aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjhlNTIzODFkMDE4ZTg1
OTM4ODRkMmEzMC8wLzMyMzAzOTJlMzgzNzJlMzEzNzMwMmUzMDJmMzIzNDJkMzIz
NDIwM2QzZTIwMzQzMDMwMzgzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0VeqMA0GCSqGSIb3DQEB
CwUAA4IBAQAO1ev2+vlFZKrDErES/PQ5sZVoWvWAjcmNN+W/IzDLp4NaWvxI+CT2
g2mRK2jSPeew4tNQgHB7GmJzZS/lUxA0/NlGeZweK35oRth+CcjfIj2GKd7C74cw
cUu9RirUzgO+32kj4GLsl9QCWpmZKkTaa1IvJ1jIwiuC8hBMuIo/mlEZvysudCgT
syon4cVDrYHe+dqY9xDQgoNJExgqXN3ETzegRC+n/LnY6GmI/yb1qz7L28IMA+N/
EQb+0iMrG9kWFcnFMvY90xkVlB+E9Cqoybr5Rc+b66pKoQOAwn1j2mILNxnQ5ITU
oFxDNbuSvXWFNYxlzYl6cjwYuWBN32qp
-----END CERTIFICATE-----
Generated at Fri May 31 00:54:55 2024 by rpki-client on console-fra.rpki-client.org