Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138517.roa
File: AS138517.roa (raw, json)
Hash identifier: +b8xOZev+ALs0sf8JUBLI7BdJCuKiXk+7962woGHB80=
Subject key identifier: 17:89:F6:A0:E7:6A:C5:88:CD:2E:AA:A9:4E:09:DD:2B:A4:47:52:92
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4E6DAE39C135A9F7A2C87471580AA21F3A00A2DB
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138517.roa
Signing time: Tue 05 Nov 2024 03:39:59 +0000
ROA not before: Tue 05 Nov 2024 03:34:59 +0000
ROA not after: Tue 04 Nov 2025 03:39:59 +0000
asID: 138517
IP address blocks: 2a06:a005:2b0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:6d:ae:39:c1:35:a9:f7:a2:c8:74:71:58:0a:a2:1f:3a:00:a2:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:34:59 2024 GMT
Not After : Nov 4 03:39:59 2025 GMT
Subject: CN=1789F6A0E76AC588CD2EAAA94E09DD2BA4475292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ae:10:e5:79:e5:7f:32:19:4c:c1:91:0f:61:
0b:15:60:38:82:91:59:64:6e:6f:82:f3:bd:fc:4f:
c5:8a:26:b3:6b:28:4b:49:a2:e4:67:e9:03:cd:a3:
b3:da:b3:d4:d6:8f:62:69:b7:04:7f:24:2d:da:4c:
58:c1:e6:4e:b3:0a:47:c6:ff:df:42:18:44:4a:6f:
ec:f0:78:c0:89:e3:11:e7:4d:7d:b3:e1:21:ab:f4:
d2:54:bd:4f:bf:ad:af:9c:f1:a9:29:03:a9:53:b8:
a9:b4:36:68:cf:16:f8:95:40:d6:4b:72:7c:63:77:
b2:85:7f:ff:8b:5f:f3:e9:1d:f1:ae:6b:66:23:94:
4d:72:47:3b:64:20:78:5c:7b:cc:de:5e:46:95:0d:
ce:76:84:14:6d:02:89:d2:02:eb:e9:df:e3:1f:4a:
1b:ad:43:6a:da:11:85:67:9c:68:6f:28:5e:ba:61:
6f:d2:c9:15:fd:9e:b9:ee:4a:a8:2f:7e:e0:83:f1:
1b:0b:99:08:8c:3e:23:27:2a:4c:95:1d:d5:06:0a:
23:ea:0d:c9:94:be:27:f1:5f:75:9c:c1:ba:4c:02:
7e:4d:49:18:94:5f:5f:e1:40:d1:56:f9:12:31:15:
8c:66:ec:bf:4b:13:2a:c1:fe:03:3f:53:89:ca:86:
6e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:89:F6:A0:E7:6A:C5:88:CD:2E:AA:A9:4E:09:DD:2B:A4:47:52:92
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS138517.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2b0::/44
Signature Algorithm: sha256WithRSAEncryption
d1:89:16:e7:2a:7f:c1:a4:51:f6:34:bb:bd:31:f4:06:95:36:
0c:f0:ae:0d:b4:71:b9:8b:fb:be:36:41:d9:f0:48:ef:cc:5c:
31:e1:53:32:f2:60:4e:2f:f2:8e:49:86:c0:9d:77:c1:e9:6f:
aa:5a:20:26:58:56:33:9b:c8:5c:d2:f4:9d:99:96:e5:a9:2a:
14:61:28:bc:61:79:ec:1f:4d:c8:32:47:d0:c8:f9:4c:46:bd:
7c:69:f2:d1:2a:dc:ec:ff:02:61:b4:38:8c:9f:0b:46:7d:6b:
49:f8:62:49:d2:fd:a8:85:ea:06:6d:d0:58:a7:49:60:ae:da:
f0:98:ca:e7:f5:25:8b:9c:b6:f0:d1:41:59:cc:b6:e8:5e:2c:
ac:dc:0b:c2:d8:a4:16:0f:35:0c:d2:be:bb:fb:e3:62:a8:88:
5e:40:97:b8:3a:c4:51:4f:d3:da:75:69:ab:1a:12:2f:ad:75:
d5:95:32:87:37:a2:34:9b:12:99:e9:07:ba:e2:2e:a7:33:fa:
df:eb:cc:18:d5:22:ba:aa:dc:19:a6:05:fa:bd:02:07:82:a9:
4e:a2:44:57:40:02:0a:77:25:b4:1d:08:bc:0a:78:9c:72:f6:
bb:50:36:8b:b5:8a:b5:bc:0f:47:37:c1:35:3f:f9:f4:30:1b:
0c:13:0c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:39:11 2025 by rpki-client