Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/3137322e39352e3233322e302f32312d3231203d3e2035363530.roa
File: 3137322e39352e3233322e302f32312d3231203d3e2035363530.roa (raw, json)
Hash identifier: xVTCPssCK8sxAyms/wXK+gVuJ56AY8arqCQLvJ/JPZo=
Subject key identifier: 4F:49:BE:4E:70:F0:92:51:B1:42:33:AA:11:17:F1:14:21:D0:8E:57
Certificate issuer: /CN=37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef
Certificate serial: 3D4A1B6324A8F5C460F3A853DA3E699567FAEC7F
Authority key identifier: F7:8B:3E:52:D2:7B:D2:E7:4B:EA:4F:E6:E8:62:40:60:DD:38:5D:37
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/f16705a2-07ac-4031-9237-10489c31b96a/37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/3137322e39352e3233322e302f32312d3231203d3e2035363530.roa
Signing time: Tue 05 Mar 2024 06:03:59 +0000
ROA not before: Tue 05 Mar 2024 05:58:59 +0000
ROA not after: Tue 04 Mar 2025 06:03:59 +0000
asID: 5650
IP address blocks: 172.95.232.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 20 Mar 2024 04:17:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:4a:1b:63:24:a8:f5:c4:60:f3:a8:53:da:3e:69:95:67:fa:ec:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef
Validity
Not Before: Mar 5 05:58:59 2024 GMT
Not After : Mar 4 06:03:59 2025 GMT
Subject: CN=4F49BE4E70F09251B14233AA1117F11421D08E57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c4:a5:94:81:88:df:91:2f:f8:4a:05:27:8c:
6f:40:61:4c:94:7b:50:d0:5f:9b:6f:18:19:77:8b:
23:d2:4c:b3:8c:15:95:01:c2:5f:a6:e9:90:ea:1c:
58:f3:83:20:25:81:a3:fb:72:f7:4c:72:6c:c2:73:
bf:3e:ab:b7:72:52:65:16:09:e7:39:7f:a9:9e:84:
d4:2c:66:e8:88:a1:dd:1a:25:e4:de:0f:8a:ed:d2:
30:07:28:68:fc:5f:b7:7c:11:e8:25:0c:e3:06:b3:
0c:44:30:04:93:e3:e8:f7:30:47:e8:fd:82:cb:d7:
45:2a:ea:d3:f4:b5:09:c7:9a:96:fb:63:4d:f9:1a:
b3:53:28:a0:f8:f9:1f:56:90:71:22:c2:2c:30:9a:
a9:c3:5e:a7:e5:73:e5:01:49:17:5b:fe:84:bd:e3:
15:b4:9d:7c:79:84:9b:5b:66:31:b9:eb:64:bf:0f:
dd:f8:fc:6e:07:60:68:b8:41:e0:46:7c:d7:ae:f7:
00:35:1a:33:6c:bc:ec:3c:20:bd:8e:dc:78:c2:2f:
fe:f3:ed:03:14:d3:44:ea:ca:07:49:eb:80:81:c7:
d6:48:da:77:dd:c0:81:02:00:79:43:1c:90:44:98:
8b:fc:a0:d9:83:42:db:3a:59:3d:73:25:cb:e6:6d:
50:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:49:BE:4E:70:F0:92:51:B1:42:33:AA:11:17:F1:14:21:D0:8E:57
X509v3 Authority Key Identifier:
keyid:F7:8B:3E:52:D2:7B:D2:E7:4B:EA:4F:E6:E8:62:40:60:DD:38:5D:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/F78B3E52D27BD2E74BEA4FE6E8624060DD385D37.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/f16705a2-07ac-4031-9237-10489c31b96a/37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/3137322e39352e3233322e302f32312d3231203d3e2035363530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
172.95.232.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:2b:a1:c7:3e:df:98:64:e4:3e:85:28:0c:ad:ca:6c:13:54:
16:ac:e4:60:0f:7a:ce:2d:68:39:6d:ca:48:6f:f3:96:5f:01:
a8:fc:3e:e6:a7:76:bf:07:e1:6e:dd:93:7c:68:ac:7a:a9:f8:
6b:c6:04:a4:c6:3e:e2:6f:fb:ac:12:54:a7:de:9e:62:e8:91:
10:a2:3b:f8:d0:1f:8a:94:04:35:04:5c:db:86:4e:70:38:5d:
0f:42:0e:42:dd:e9:ea:7d:a7:7b:4f:d8:2b:4f:f9:80:94:e9:
4d:27:69:ce:c8:5b:61:6d:3d:05:36:82:a6:2a:79:f5:6d:c1:
bb:ea:f8:2c:98:89:a4:6e:73:d2:b2:9a:36:5d:1e:d9:6c:56:
0d:dc:ed:75:4d:6f:9f:bd:b9:a8:ff:aa:21:d8:6f:3d:5e:a0:
c1:1b:1e:9c:38:62:7e:4f:22:48:2b:e5:e7:94:05:16:2e:79:
93:09:6a:47:6b:d1:33:e0:f4:b6:a4:52:c6:d6:b7:2e:61:95:
e0:08:7e:8d:98:d5:35:62:8a:8d:d5:05:19:ae:d0:5a:9f:3b:
9c:03:5e:ec:de:3a:5f:14:0a:8a:7f:5f:e0:94:bd:23:55:a2:
c0:df:3a:46:c8:3e:4d:c6:b9:99:ad:e8:fd:3e:15:8c:78:2d:
45:28:8f:23
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgIUPUobYySo9cRg86hT2j5plWf67H8wDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyMzc2NjYxNjAwNTlhZjJjMTEyOWVjYjllNWY2YWJmNWNh
OTJiYzg3NDRkNjFkNDU5ZWYwHhcNMjQwMzA1MDU1ODU5WhcNMjUwMzA0MDYwMzU5
WjAzMTEwLwYDVQQDEyg0RjQ5QkU0RTcwRjA5MjUxQjE0MjMzQUExMTE3RjExNDIx
RDA4RTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscSllIGI35Ev
+EoFJ4xvQGFMlHtQ0F+bbxgZd4sj0kyzjBWVAcJfpumQ6hxY84MgJYGj+3L3THJs
wnO/Pqu3clJlFgnnOX+pnoTULGboiKHdGiXk3g+K7dIwByho/F+3fBHoJQzjBrMM
RDAEk+Po9zBH6P2Cy9dFKurT9LUJx5qW+2NN+RqzUyig+PkfVpBxIsIsMJqpw16n
5XPlAUkXW/6EveMVtJ18eYSbW2Yxuetkvw/d+PxuB2BouEHgRnzXrvcANRozbLzs
PCC9jtx4wi/+8+0DFNNE6soHSeuAgcfWSNp33cCBAgB5QxyQRJiL/KDZg0LbOlk9
cyXL5m1QRQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFE9Jvk5w8JJRsUIzqhEX8RQh
0I5XMB8GA1UdIwQYMBaAFPeLPlLSe9LnS+pP5uhiQGDdOF03MA4GA1UdDwEB/wQE
AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l
dC9yZXBvc2l0b3J5LzhhODQ4YWRlODcyODk1NzgwMTg3MzJhOTBhMmYwOTdmLzMv
Rjc4QjNFNTJEMjdCRDJFNzRCRUE0RkU2RTg2MjQwNjBERDM4NUQzNy5jcmwwgfMG
CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu
Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut
YjA4Yy0yMTcxZGEyMTU3ZDMvYTczNDIwY2ItYjNjYy00YjAzLWJkYTctMWJlMjA0
OTMzYWU1L2YxNjcwNWEyLTA3YWMtNDAzMS05MjM3LTEwNDg5YzMxYjk2YS8zNzY2
NjE2MDA1OWFmMmMxMTI5ZWNiOWU1ZjZhYmY1Y2E5MmJjODc0NGQ2MWQ0NTllZi5j
ZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBr
aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTg3Mjg5NTc4MDE4NzMy
YTkwYTJmMDk3Zi8zLzMxMzczMjJlMzkzNTJlMzIzMzMyMmUzMDJmMzIzMTJkMzIz
MTIwM2QzZTIwMzUzNjM1MzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAOsX+gwDQYJKoZIhvcNAQELBQAD
ggEBAH8rocc+35hk5D6FKAytymwTVBas5GAPes4taDltykhv85ZfAaj8Puandr8H
4W7dk3xorHqp+GvGBKTGPuJv+6wSVKfenmLokRCiO/jQH4qUBDUEXNuGTnA4XQ9C
DkLd6ep9p3tP2CtP+YCU6U0nac7IW2FtPQU2gqYqefVtwbvq+CyYiaRuc9KymjZd
HtlsVg3c7XVNb5+9uaj/qiHYbz1eoMEbHpw4Yn5PIkgr5eeUBRYueZMJakdr0TPg
9LakUsbWty5hleAIfo2Y1TViio3VBRmu0FqfO5wDXuzeOl8UCop/X+CUvSNVosDf
OkbIPk3GuZmt6P0+FYx4LUUojyM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:05 2024 by rpki-client on console-fra.rpki-client.org