Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/3137322e39352e3234322e302f32342d3234203d3e2035363530.roa
File: 3137322e39352e3234322e302f32342d3234203d3e2035363530.roa (raw, json)
Hash identifier: eNKmmKI2dQLj0PDlOW8fw1TmBE+28yiMUSggkdHFDjE=
Subject key identifier: 5A:C4:DD:30:06:C9:B5:91:46:FF:6D:5F:8E:62:43:E6:96:A5:0D:99
Certificate issuer: /CN=37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef
Certificate serial: 4B1134E27ED87413F94B251865B52F087701C50D
Authority key identifier: F7:8B:3E:52:D2:7B:D2:E7:4B:EA:4F:E6:E8:62:40:60:DD:38:5D:37
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/f16705a2-07ac-4031-9237-10489c31b96a/37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/3137322e39352e3234322e302f32342d3234203d3e2035363530.roa
Signing time: Thu 02 Nov 2023 11:38:42 +0000
ROA not before: Thu 02 Nov 2023 11:33:42 +0000
ROA not after: Thu 31 Oct 2024 11:38:42 +0000
asID: 5650
IP address blocks: 172.95.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 04:17:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:11:34:e2:7e:d8:74:13:f9:4b:25:18:65:b5:2f:08:77:01:c5:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef
Validity
Not Before: Nov 2 11:33:42 2023 GMT
Not After : Oct 31 11:38:42 2024 GMT
Subject: CN=5AC4DD3006C9B59146FF6D5F8E6243E696A50D99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c1:90:56:a4:4e:c1:24:bd:af:70:13:e2:9c:
36:52:d1:be:79:e9:68:af:f0:90:be:1a:d3:90:aa:
b0:33:1f:58:5d:9d:d8:1c:23:c6:db:26:e4:b5:fa:
34:b8:9b:42:06:a3:00:49:fa:c5:41:b6:ff:0a:5b:
88:7d:75:0e:cf:75:51:00:8a:f5:d2:bf:31:5c:c0:
38:ba:77:98:e9:5b:99:36:f8:89:be:ce:ca:ed:4b:
81:68:6d:af:9f:f0:3a:eb:ed:9b:2e:68:72:cc:67:
02:7c:70:c3:20:99:5a:f1:96:0f:5e:37:d9:76:20:
64:fb:bb:25:22:2c:65:87:cf:8c:32:8f:06:f4:7e:
52:82:50:cb:8e:c3:49:98:1a:04:d3:ae:f5:92:dc:
4f:5c:09:e3:50:69:2f:93:01:ae:8e:7f:23:ab:00:
12:36:36:c6:b3:b2:bf:b5:bd:6d:00:1f:e0:52:11:
39:14:cd:96:c7:f0:6e:46:05:6e:6e:90:76:12:6a:
62:a9:10:74:b7:c4:f1:a3:93:20:20:bb:8c:ea:ef:
78:38:80:b0:20:39:3d:d1:39:6b:a1:3e:8b:61:d4:
1a:5f:81:df:fe:fd:fb:b6:88:13:cc:00:7a:d3:08:
df:de:09:c1:57:41:58:81:62:80:2c:55:89:63:1f:
c9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:C4:DD:30:06:C9:B5:91:46:FF:6D:5F:8E:62:43:E6:96:A5:0D:99
X509v3 Authority Key Identifier:
keyid:F7:8B:3E:52:D2:7B:D2:E7:4B:EA:4F:E6:E8:62:40:60:DD:38:5D:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/F78B3E52D27BD2E74BEA4FE6E8624060DD385D37.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/f16705a2-07ac-4031-9237-10489c31b96a/37666160059af2c1129ecb9e5f6abf5ca92bc8744d61d459ef.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade87289578018732a90a2f097f/3/3137322e39352e3234322e302f32342d3234203d3e2035363530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
172.95.242.0/24
Signature Algorithm: sha256WithRSAEncryption
82:64:fe:a1:a7:14:c6:3c:6e:97:1e:b2:f0:35:c5:0e:6d:6f:
26:cf:09:c6:1b:f5:b6:d9:7a:cc:65:2a:b0:97:76:1f:b7:a7:
2b:72:be:31:78:39:19:69:83:a1:cf:3c:7f:05:29:ea:cc:ab:
ca:9b:32:04:cc:4b:ff:a1:2e:aa:8e:60:00:cf:0d:2d:33:ac:
dd:4f:69:dc:b5:04:9a:09:6e:5f:b0:67:58:ac:6f:cb:0e:12:
bd:f4:2d:ac:07:ff:a0:ca:2a:1f:d4:c5:f6:93:c3:88:40:94:
47:98:ba:44:c8:f8:e2:cd:0b:5d:4c:9b:03:9e:11:71:83:d6:
67:ab:b3:ee:a3:ec:4b:21:eb:e7:49:e1:87:1f:63:d1:2f:1e:
47:ff:83:2e:d2:e1:c3:b6:85:6a:8f:a9:6d:40:01:05:a4:d3:
86:ab:d8:85:41:4a:d1:1e:16:b1:fb:3a:99:09:6d:32:5b:c1:
75:63:39:7f:9c:d6:02:3e:76:02:3e:02:32:71:ec:ea:b6:b6:
d7:e8:08:94:34:57:1c:65:8b:b8:37:41:4c:61:92:f9:28:3f:
24:bc:eb:63:d2:36:6a:b6:d6:d6:e5:60:6c:15:23:64:06:42:
05:14:5c:4c:cd:35:c7:c8:dc:94:39:3b:e3:53:7a:0a:0b:00:
2f:13:01:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:05 2024 by rpki-client on console-fra.rpki-client.org