Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS152179.roa
File: AS152179.roa (raw, json)
Hash identifier: l2CNKEDBrNkv88wdDLTrK9ZoDh+z7aKhRyGDIQoj8yM=
Subject key identifier: EF:4F:98:86:D8:16:BD:08:6B:82:23:20:CB:16:5D:A6:00:72:81:67
Certificate issuer: /CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9
Certificate serial: 4C06E784C104235E145F7945FEAA6E3F8A272F70
Authority key identifier: AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS152179.roa
Signing time: Tue 16 Jul 2024 14:01:16 +0000
ROA not before: Tue 16 Jul 2024 13:56:16 +0000
ROA not after: Tue 15 Jul 2025 14:01:16 +0000
asID: 152179
IP address blocks: 104.234.206.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 00:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:06:e7:84:c1:04:23:5e:14:5f:79:45:fe:aa:6e:3f:8a:27:2f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9
Validity
Not Before: Jul 16 13:56:16 2024 GMT
Not After : Jul 15 14:01:16 2025 GMT
Subject: CN=EF4F9886D816BD086B822320CB165DA600728167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:db:eb:27:a0:68:26:b4:96:9a:89:1f:6f:cf:
7b:42:63:63:99:4b:56:4c:dd:04:a8:44:6d:3a:37:
2e:ad:f5:5f:25:e9:c9:b0:64:9d:6a:ac:82:46:7b:
3e:01:e7:b1:b9:d8:31:d8:63:51:68:9d:69:ae:5f:
14:5a:c5:be:09:d1:fa:a5:83:9f:d6:c0:6b:39:68:
d0:bc:6d:1f:d1:a4:29:20:ae:45:57:f8:d5:54:1b:
d5:e6:41:7f:dd:66:ec:7c:92:1d:c1:10:b6:a7:b2:
e0:9e:b7:f9:0d:e5:2b:b4:7b:94:e4:83:13:8c:d2:
a5:0b:bc:82:ba:3a:63:4b:48:3f:39:11:73:d0:8b:
c8:a6:df:b6:21:c4:0c:f0:4b:33:61:28:ac:ac:d3:
c0:64:8b:8d:5a:da:84:84:13:36:5c:57:e4:df:9a:
17:bc:3b:b8:bf:f6:fa:1b:05:f8:90:64:33:05:e1:
db:57:77:cf:02:f0:20:38:80:87:33:cc:24:77:1b:
b4:d7:80:70:c9:de:ce:ae:01:e2:b0:24:f3:c9:aa:
29:5c:dd:c0:2c:be:c2:f9:c3:17:63:6c:96:0c:ab:
55:9a:5d:22:33:45:07:e3:ef:d4:d1:09:ce:f3:85:
43:aa:b8:3c:5a:4b:05:1b:b3:ff:f6:99:98:32:dd:
0f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4F:98:86:D8:16:BD:08:6B:82:23:20:CB:16:5D:A6:00:72:81:67
X509v3 Authority Key Identifier:
keyid:AB:5C:AF:A9:57:06:33:73:38:93:D9:1E:E4:B0:5A:1F:0E:CC:D0:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AB5CAFA9570633733893D91EE4B05A1F0ECCD06B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/3f5e2e5b-c731-4db8-9b87-af9f8e58a1c6/72cc1fd28d4a04c8473c3ac0b19940270cbbf123f3c0b1f7f9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8587fa200185c5cb9bcb2bac/0/AS152179.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.234.206.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:3a:bb:a1:6a:d1:30:0a:ef:df:47:25:08:25:fd:70:26:c4:
e2:3b:b6:9a:19:93:bb:c7:42:d1:15:49:2f:9b:f2:5e:62:3d:
99:80:af:48:b7:9e:15:a1:4f:fc:db:53:21:93:60:e2:80:a8:
10:5e:82:cc:bb:96:e9:16:f7:f4:c4:ec:94:93:27:ac:18:8b:
ee:24:c9:e5:85:d7:0f:f7:66:72:41:ef:a9:9c:ea:6b:bf:ec:
1f:5e:ae:d8:83:2e:73:d3:78:5e:4f:73:e4:08:f7:d2:ef:fe:
97:30:dc:6c:fc:f1:5d:fe:20:36:d1:32:81:a9:64:75:b8:6f:
69:69:f5:97:b4:49:d3:c5:4b:18:6d:97:9e:e5:4e:90:71:68:
eb:32:ad:98:12:da:8e:4c:ac:1d:72:76:db:d1:56:91:45:9c:
b4:37:f6:12:26:7c:64:f5:83:b2:39:4b:8f:55:7a:5d:b5:d5:
fe:96:14:39:05:b5:e3:e6:6f:e4:7c:a4:b0:29:8d:77:f8:0b:
4f:97:d8:64:40:e2:ed:2e:28:04:25:2d:21:52:67:14:6a:d9:
e1:1a:9c:b3:ca:0d:c7:6f:06:c4:5e:c7:e7:6f:bb:ea:2f:63:
f9:a0:65:bb:c0:d3:85:27:9c:25:d1:ae:5d:6c:2d:31:51:ff:
96:e3:ec:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 03:48:50 2024 by rpki-client on console-ams.rpki-client.org