Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS400601.roa
File: AS400601.roa (raw, json)
Hash identifier: Azr0PxtTLkznxyS1MlIWHDuiN8USSRcU1GBiKz/GkiA=
Subject key identifier: 39:46:20:33:47:EC:1B:37:AA:84:D0:33:2F:77:52:A7:EB:EA:21:71
Certificate issuer: /CN=ec93568485034d6f590126278015e55786765323f329d6aa05
Certificate serial: 7A55FBC4A6F4B7A15D38CD5C4378B64E1D7A30BD
Authority key identifier: BB:27:B3:7B:58:F0:56:06:E1:5F:52:CA:24:2E:A1:D4:FE:B6:B3:04
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/ec93568485034d6f590126278015e55786765323f329d6aa05.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS400601.roa
Signing time: Sat 24 Jun 2023 14:23:08 +0000
ROA not before: Sat 24 Jun 2023 14:18:08 +0000
ROA not after: Sat 22 Jun 2024 14:23:08 +0000
asID: 400601
IP address blocks: 140.99.114.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jan 2024 08:45:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:55:fb:c4:a6:f4:b7:a1:5d:38:cd:5c:43:78:b6:4e:1d:7a:30:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec93568485034d6f590126278015e55786765323f329d6aa05
Validity
Not Before: Jun 24 14:18:08 2023 GMT
Not After : Jun 22 14:23:08 2024 GMT
Subject: CN=3946203347EC1B37AA84D0332F7752A7EBEA2171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f4:6f:27:0e:d8:54:e5:c5:0d:34:36:39:ac:
83:6d:cf:37:09:db:4e:b7:d3:86:0e:38:c4:06:d4:
c8:c6:c3:39:38:e5:8c:6e:f5:d4:ba:03:4c:ca:ca:
45:c8:47:78:4a:85:06:2b:47:99:65:4a:9c:a4:14:
a1:3f:47:0e:e5:9f:c9:2a:c2:f8:d6:92:dc:ee:d4:
d4:18:a8:4e:97:da:2f:4a:06:5d:44:44:1c:c1:df:
3c:d5:30:81:13:d2:ca:39:2e:e2:1c:f9:a5:b1:42:
af:de:be:9b:2d:49:d4:47:77:0f:15:66:1a:18:cc:
ea:0b:a4:e4:8c:9f:2d:d1:60:3e:4b:56:3a:8e:ce:
55:c9:ef:e1:50:42:de:8d:85:df:18:71:a7:a8:03:
be:e1:ae:f7:29:49:cc:bf:69:a0:fd:81:44:cd:41:
ab:b7:b8:66:f0:38:ff:8a:aa:40:b5:08:5f:b2:f6:
80:b0:b4:95:50:db:b0:b4:c8:39:f0:99:fc:6d:5d:
b4:0f:ac:c0:c3:e3:f2:f0:50:3d:fc:0d:b4:96:17:
1b:b9:98:d6:3e:58:33:dc:55:c7:bd:0c:b1:a9:db:
26:4a:17:45:13:28:ee:68:07:ff:fb:85:d3:0d:fc:
e0:2c:81:cf:d2:70:2b:a7:34:57:f9:32:1b:12:4f:
30:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:46:20:33:47:EC:1B:37:AA:84:D0:33:2F:77:52:A7:EB:EA:21:71
X509v3 Authority Key Identifier:
keyid:BB:27:B3:7B:58:F0:56:06:E1:5F:52:CA:24:2E:A1:D4:FE:B6:B3:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/BB27B37B58F05606E15F52CA242EA1D4FEB6B304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/ec93568485034d6f590126278015e55786765323f329d6aa05.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS400601.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.99.114.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:7f:7f:cd:35:ab:c8:75:ca:c3:82:90:04:32:16:1e:5e:9c:
e5:7e:46:93:55:b7:9e:4c:89:d5:47:35:86:27:00:34:e0:f4:
93:9e:6c:3a:52:0d:7b:41:ca:7a:e1:60:3f:13:9c:11:02:1a:
18:69:1d:0c:4b:80:d2:66:7a:f7:28:3e:11:db:9c:a6:67:1e:
93:e4:43:49:f9:31:96:ee:e8:a0:16:0b:9f:53:99:65:ea:e6:
a7:43:6c:eb:ae:de:6a:a5:46:ce:5f:21:c7:37:be:7d:ce:80:
e0:fb:50:96:0c:af:66:f1:48:46:84:12:ac:e2:70:a3:55:94:
cd:67:62:4f:7a:74:48:87:aa:50:0b:1e:28:3f:9d:5b:e9:af:
b7:e2:9a:71:4e:4e:ea:3f:6a:5d:10:8a:0c:93:4e:c7:d5:6c:
f2:67:f6:bf:77:e5:05:75:98:e1:65:a2:55:90:ef:6b:ad:19:
86:82:e9:aa:aa:bc:3c:67:09:cc:ee:5c:59:64:93:cf:65:42:
a8:db:91:b3:b7:6c:39:db:2f:61:27:f3:c5:1f:4c:d8:94:2a:
1d:67:24:c4:1d:49:d5:b3:ac:61:2f:a9:9c:9c:13:f9:e6:d9:
5c:a5:34:06:ea:d8:91:69:e7:04:f3:3e:02:6b:84:fe:fe:53:
62:78:c9:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 24 11:03:53 2024 by rpki-client on console-ams.rpki-client.org