Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
File: AS0.roa (raw, json)
Hash identifier: a3nw1J3YtDctMjP6LurLcyckDA4nK1qHWBzfpGcuOhY=
Subject key identifier: 06:36:A1:E3:1D:BF:67:C7:F2:F9:A7:8D:32:D3:C1:4D:B9:29:CB:84
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2566D36C8C06F39C2A7339CB48B5D4D7770EC99B
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
Signing time: Sun 11 May 2025 15:55:23 +0000
ROA not before: Sun 11 May 2025 15:50:23 +0000
ROA not after: Sun 10 May 2026 15:55:23 +0000
asID: 0
IP address blocks: 2a0a:6041::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 16 May 2025 20:49:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:66:d3:6c:8c:06:f3:9c:2a:73:39:cb:48:b5:d4:d7:77:0e:c9:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: May 11 15:50:23 2025 GMT
Not After : May 10 15:55:23 2026 GMT
Subject: CN=0636A1E31DBF67C7F2F9A78D32D3C14DB929CB84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cd:9a:59:5d:e1:57:ae:a7:b3:9e:70:6f:88:
ef:03:ae:f7:ec:e4:66:3c:2b:ea:fb:2f:c2:23:8b:
78:ca:1d:e0:b9:56:61:7c:85:e7:13:a8:aa:21:48:
50:52:37:8a:e4:93:51:c6:b7:34:e7:4f:39:d2:a9:
10:f4:e1:ff:0b:5e:04:45:8d:59:85:83:01:4a:be:
14:9a:03:ce:f3:6f:ea:32:84:c9:63:0c:4b:7e:d7:
12:c3:a7:e7:fa:b2:03:d7:6c:76:b3:e8:f2:ec:17:
eb:63:9c:25:97:96:a9:8b:0b:cb:77:53:3a:38:5e:
25:e1:bf:d5:cc:ed:9a:dd:34:88:0b:45:79:b7:d5:
0e:5a:94:fd:7b:c7:eb:00:e5:35:6a:6f:b2:b1:89:
69:6c:41:67:64:70:0c:a7:c0:e4:81:be:89:6f:87:
96:6a:be:e4:4c:3b:75:a7:f8:67:7f:34:13:dc:7b:
75:b7:e0:84:e7:0f:5b:c6:8c:03:b8:98:a4:61:41:
c7:a6:00:23:6d:d2:74:f0:48:a5:c5:c5:00:f7:68:
6b:46:32:3a:a5:92:87:6c:44:ba:14:f9:f0:d9:62:
99:53:5a:0f:ad:c8:92:df:b6:69:e0:a5:83:39:8e:
98:69:ae:eb:44:3e:76:b9:21:40:23:42:2f:f6:84:
f8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:36:A1:E3:1D:BF:67:C7:F2:F9:A7:8D:32:D3:C1:4D:B9:29:CB:84
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS0.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6041::/32
Signature Algorithm: sha256WithRSAEncryption
0e:23:dc:ec:4c:f2:ae:4b:ea:5f:3a:8a:fc:27:83:b3:7e:22:
18:7c:27:90:69:77:f4:81:3c:61:7c:11:f2:5e:40:13:b5:30:
b0:df:47:32:d5:9a:a3:1a:4a:b4:51:7a:1e:99:ab:d2:58:6b:
b6:94:40:df:d4:13:06:55:08:a6:0d:de:02:54:b3:79:bd:74:
98:9c:b0:71:80:dd:5c:5e:6e:6a:60:b9:c7:f2:ae:58:81:6d:
fb:3a:1e:d0:2d:d0:3e:1e:3c:20:ab:f9:c8:91:b8:3f:0c:49:
26:ed:e5:60:92:11:65:38:75:33:06:98:66:d2:5a:9f:a9:79:
a6:a6:e6:0c:dd:51:db:86:cd:bf:47:a5:8b:62:ef:c6:cd:f9:
7a:97:a4:ac:cc:eb:04:85:25:dd:29:a2:0d:4c:53:ff:57:f6:
b3:25:4b:46:cc:98:39:aa:c0:b0:76:d1:f6:42:64:7a:a1:7c:
1a:f4:0b:58:5e:17:54:b9:38:e5:6e:79:97:b1:f7:87:34:63:
50:a1:4f:ec:3e:82:55:61:64:1b:07:77:cc:17:e3:96:f2:86:
ab:92:8d:88:0a:22:19:b2:22:50:27:17:88:72:f7:19:04:9b:
54:b3:b6:be:c6:54:22:4f:5a:79:44:73:1f:b3:36:0a:7b:e3:
d2:41:1e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 1 03:06:46 2025 by rpki-client