Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dff9539e-a68c-4eed-ad98-26f67ff446ff/11976473-115a-32eb-a24b-4dcb4bf28781.roa
File: 11976473-115a-32eb-a24b-4dcb4bf28781.roa (raw, json)
Hash identifier: MxDCku5ox2Zdt38btvj4CwT38PuMXebOT2KBBCYKmgA=
Subject key identifier: 15:2E:F9:81:1A:E4:C1:F6:E0:34:7D:99:88:7C:4E:71:22:CE:77:C2
Certificate issuer: /CN=dff9539e-a68c-4eed-ad98-26f67ff446ff
Certificate serial: 010D0C9F4328584439596FA48687DB0BC3C4B400
Authority key identifier: 1C:01:4D:4D:CF:6F:FE:97:DA:2C:22:49:83:6A:44:5C:24:74:6A:36
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dff9539e-a68c-4eed-ad98-26f67ff446ff.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dff9539e-a68c-4eed-ad98-26f67ff446ff/11976473-115a-32eb-a24b-4dcb4bf28781.roa
Signing time: Fri 15 Dec 2023 14:00:20 +0000
ROA not before: Fri 15 Dec 2023 14:00:20 +0000
ROA not after: Thu 14 Mar 2024 13:00:20 +0000
asID: 35874
IP address blocks: 69.58.53.0/24 maxlen: 24
69.58.48.0/22 maxlen: 24
69.58.42.0/23 maxlen: 24
69.58.32.0/21 maxlen: 24
69.58.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 17:26:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:39:59:6f:a4:86:87:db:0b:c3:c4:b4:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff9539e-a68c-4eed-ad98-26f67ff446ff
Validity
Not Before: Dec 15 14:00:20 2023 GMT
Not After : Mar 14 13:00:20 2024 GMT
Subject: CN=5d7e753c-db91-4c47-b41f-4695294ec65d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c8:90:9f:66:16:05:cc:13:6a:04:0a:7c:83:
d8:5e:67:25:c4:c6:70:c9:36:40:c8:6f:30:39:23:
d9:56:07:6b:a8:ef:2b:e6:c2:32:89:4f:23:49:b7:
d0:72:5e:63:23:25:d8:8f:41:a2:94:b8:9b:77:f2:
27:5a:5d:fb:bc:ca:18:52:43:aa:4f:d7:93:2e:7c:
68:9f:42:b1:ee:5e:b8:4a:78:32:a7:1f:31:8e:68:
75:7e:c8:e8:fb:dd:f7:f1:2e:25:a2:a9:d0:4a:ca:
b1:a9:6b:2a:00:60:f4:b3:cb:ea:73:43:6e:00:e8:
72:de:eb:7c:28:6a:71:0b:0e:a0:0a:7f:64:cb:68:
f4:ca:fc:09:de:5b:fe:d6:22:97:1c:7d:36:95:1e:
1c:b9:7d:64:b4:9e:dc:92:3e:de:3a:d8:04:da:cf:
ec:5b:20:d3:d1:6a:07:da:ce:65:26:98:8f:68:2d:
21:8b:fa:94:58:61:6d:41:ba:b7:56:5c:eb:28:bd:
8c:80:e9:61:10:f2:72:a9:47:df:97:c9:44:37:fd:
dd:8d:73:c5:26:8d:55:1e:25:b6:8f:64:a9:2c:1c:
1f:e2:e3:d3:e7:1d:af:21:3b:d2:34:27:de:be:fe:
34:76:53:25:f7:83:ab:2c:10:8a:e4:c8:86:b0:f9:
d1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:2E:F9:81:1A:E4:C1:F6:E0:34:7D:99:88:7C:4E:71:22:CE:77:C2
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dff9539e-a68c-4eed-ad98-26f67ff446ff/11976473-115a-32eb-a24b-4dcb4bf28781.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dff9539e-a68c-4eed-ad98-26f67ff446ff/dff9539e-a68c-4eed-ad98-26f67ff446ff.crl
X509v3 Authority Key Identifier:
keyid:1C:01:4D:4D:CF:6F:FE:97:DA:2C:22:49:83:6A:44:5C:24:74:6A:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/dff9539e-a68c-4eed-ad98-26f67ff446ff.cer
sbgp-ipAddrBlock: critical
IPv4:
69.58.32.0/21
69.58.41.0-69.58.43.255
69.58.48.0/22
69.58.53.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
0c:1a:1a:4e:f3:f3:d6:a9:1e:67:9d:42:de:df:a7:cd:5c:8f:
8e:9c:a5:70:03:b5:37:73:97:76:4d:c1:2b:4c:28:8f:49:32:
85:c8:97:36:0a:64:97:bc:f8:dd:fd:39:44:e9:75:36:86:c6:
90:d4:cc:61:e8:98:be:9d:d2:bf:86:a4:3a:17:63:40:47:c6:
e4:bd:8c:e7:9f:ac:1c:13:8a:17:00:c9:92:c7:19:cc:0d:48:
60:9f:83:1e:4b:e1:e7:e5:3d:f3:1a:07:32:a7:f3:95:2b:7c:
4f:d4:7e:94:20:22:6a:35:72:c6:4e:0a:d3:ed:1c:26:ae:78:
c2:37:fd:02:ff:27:5f:5b:f6:13:1c:34:d8:ac:11:ed:7d:a8:
fd:4f:bb:3b:5d:b1:d1:74:bc:8d:41:ae:bb:eb:53:83:ba:56:
93:40:a6:0f:98:85:ba:4b:7d:70:4d:94:c8:c4:d1:7d:dc:9a:
79:13:65:c1:1d:11:d1:4a:31:0f:3e:8e:16:4a:50:30:d3:c0:
fe:57:e2:11:0c:72:03:43:b4:26:5a:8c:fb:5c:bf:4b:b1:2a:
c7:33:ae:2d:47:2a:ce:e4:71:40:93:e6:1e:f4:04:1b:15:80:
ed:0e:85:69:30:ee:cc:a5:ef:5c:aa:26:d2:81:20:8c:7d:64:
44:fa:32:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 16 22:12:51 2024 by rpki-client on console-fra.rpki-client.org