Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa
File: 58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa (raw, json)
Hash identifier: QMZFe8dm5Lk4gw6pkYQSMVftYYwOI0RaHuvI+yFq7X4=
Subject key identifier: 9E:02:AD:D8:CF:EF:37:0A:47:A2:B7:BD:C7:2D:BA:DA:39:1A:71:76
Certificate issuer: /CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
Certificate serial: 010D0C9F43285844F4655C55D29BB43E21017980
Authority key identifier: C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa
Signing time: Tue 20 Feb 2024 14:00:31 +0000
ROA not before: Tue 20 Feb 2024 14:00:31 +0000
ROA not after: Mon 20 May 2024 13:00:31 +0000
asID: 11798
IP address blocks: 166.1.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 22:46:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:f4:65:5c:55:d2:9b:b4:3e:21:01:79:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
Validity
Not Before: Feb 20 14:00:31 2024 GMT
Not After : May 20 13:00:31 2024 GMT
Subject: CN=014b9b7e-7c1c-459c-a90d-6308bd4ee9dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:ba:66:69:ae:c6:5f:00:62:91:5b:8e:f8:
b4:3c:8d:d6:04:f4:af:90:b9:60:59:f9:6b:1c:7f:
9e:d8:a6:ab:26:df:ae:00:f6:af:3f:64:c9:54:73:
80:ae:34:44:be:a1:9d:88:f4:30:48:8e:2f:b6:fe:
19:45:7c:60:bb:87:58:be:7e:47:a7:d9:7b:15:ab:
a8:a4:4f:8b:3d:e7:8f:35:de:8d:a8:8a:2c:41:b2:
f3:d0:42:91:11:6c:b0:17:bd:1c:89:42:84:1c:eb:
14:c7:dc:a3:de:fd:c3:d0:ef:66:69:2b:63:a8:04:
b6:e7:9f:ef:c3:2f:01:81:1e:47:c4:db:8a:0f:e8:
78:6f:2f:a7:31:1b:f2:38:9f:d2:b9:8b:3a:c0:44:
f9:c1:9f:ae:1c:0f:02:f2:aa:8f:0b:16:d3:b7:e4:
62:5d:f8:59:d5:0e:22:96:5c:a2:aa:3f:0e:46:66:
70:75:f7:b3:41:00:79:73:95:49:ba:5b:c8:75:71:
d9:8c:74:98:ca:d9:eb:6f:df:c1:a9:c9:ff:1e:3b:
05:07:a4:e9:f6:ba:2e:f1:a9:51:44:89:c5:42:ca:
23:22:c6:f4:b9:a9:9e:04:aa:92:83:07:16:57:ff:
ea:5f:9f:a1:aa:29:b2:06:ae:44:89:27:d0:ee:07:
b8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:02:AD:D8:CF:EF:37:0A:47:A2:B7:BD:C7:2D:BA:DA:39:1A:71:76
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/58520faa-6ff0-354b-bdd0-ac1e3486fbec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl
X509v3 Authority Key Identifier:
keyid:C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer
sbgp-ipAddrBlock: critical
IPv4:
166.1.20.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
af:92:d3:22:1d:c5:ee:5a:17:a2:12:91:56:d1:72:07:a7:17:
e9:f8:e4:59:de:63:6b:62:a6:db:28:dc:ee:b9:12:e8:e8:61:
61:86:42:12:50:d7:78:54:e8:fb:d3:65:a8:f0:85:dd:29:e7:
45:16:1e:fd:81:be:a2:dc:f3:bd:52:9d:d2:a4:2a:18:2f:82:
a6:94:39:ee:f3:ab:bf:8b:1d:bc:c5:41:9d:9f:03:16:98:bc:
75:75:76:ba:53:2e:ef:b2:c2:75:99:47:24:08:9f:1e:b7:42:
7a:1e:04:33:28:57:29:1f:3e:40:fb:d3:b1:cd:48:55:b5:b2:
f2:67:15:28:fb:b5:82:f1:ca:f5:5b:d1:b8:bb:0d:6f:89:a7:
1a:73:a5:9c:b2:a6:b7:bd:be:c0:b3:22:fa:56:50:0f:58:46:
76:50:30:05:2d:f7:cc:36:fa:34:9e:a3:ca:d3:f4:1e:4d:75:
50:d0:e1:60:49:14:6d:4b:87:13:eb:f7:af:cf:03:07:65:a4:
52:fe:5b:fb:33:5c:28:03:02:e1:8b:7c:d5:57:34:37:65:0e:
c5:42:80:14:04:a0:27:ad:27:d4:b3:68:04:84:a2:53:3b:42:
bd:6d:d7:2b:f2:11:92:4a:d4:b1:0e:d7:94:06:8b:71:af:82:
76:fa:f8:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 20 23:37:46 2024 by rpki-client on console-fra.rpki-client.org