Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS147297.roa
File: AS147297.roa (raw, json)
Hash identifier: PtRK8LiFn8q9yuUP3ic0e8GflXHBswGV86oYvOtC1A4=
Subject key identifier: 8A:56:4D:AA:00:BD:4D:2F:EF:92:75:FD:3D:05:D6:72:54:A5:AF:17
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 200AE022603E044F41946ACC974D13E711C1C0D5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS147297.roa
Signing time: Tue 05 Nov 2024 03:40:00 +0000
ROA not before: Tue 05 Nov 2024 03:35:00 +0000
ROA not after: Tue 04 Nov 2025 03:40:00 +0000
asID: 147297
IP address blocks: 2a06:a005:48c::/48 maxlen: 48
2a06:a005:48d::/48 maxlen: 48
2a06:a005:48e::/48 maxlen: 48
2a06:a005:48f::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 17 Nov 2024 20:09:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:0a:e0:22:60:3e:04:4f:41:94:6a:cc:97:4d:13:e7:11:c1:c0:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:00 2024 GMT
Not After : Nov 4 03:40:00 2025 GMT
Subject: CN=8A564DAA00BD4D2FEF9275FD3D05D67254A5AF17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:50:9f:97:2e:fb:80:cd:d8:c2:95:92:12:57:
43:ce:96:af:6c:6f:6f:a9:0e:f9:8f:f3:9e:eb:72:
f9:d6:3b:7e:c6:5f:2e:07:33:9c:21:99:00:a2:4e:
98:c9:7d:f1:61:31:1c:4e:0c:03:a3:1f:38:72:d5:
34:f5:88:f2:73:32:a1:c9:89:97:f8:0e:65:18:66:
1f:a3:da:2c:ee:bd:8e:02:e1:a0:c6:0a:9c:1f:79:
01:7e:b5:d6:db:87:e5:ba:4d:d4:d9:dd:a6:ec:3d:
28:2a:47:91:d6:83:9c:63:76:29:c6:73:b5:36:be:
d0:91:bc:39:d0:44:f6:f7:4b:2f:b2:4a:90:8e:17:
24:9c:1b:e7:f3:59:61:f4:a0:57:88:69:ba:97:d0:
b6:e2:66:69:29:5b:c4:39:d4:50:37:a4:d7:fc:d7:
7b:23:f6:13:b5:ea:b9:94:be:c6:d9:5a:9f:74:aa:
80:cb:37:92:b0:55:64:f5:41:09:fd:35:c0:16:5d:
f1:ba:c6:a0:57:75:1e:2e:a8:4e:cc:6e:18:95:74:
37:7f:62:7a:46:df:08:a9:5f:c6:db:23:c6:b6:aa:
96:b5:3f:a5:8c:f8:6e:5e:5e:1a:54:74:82:3a:68:
a8:0b:b3:eb:62:c3:76:25:b0:f9:b2:18:85:b8:2a:
fb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:56:4D:AA:00:BD:4D:2F:EF:92:75:FD:3D:05:D6:72:54:A5:AF:17
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS147297.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:48c::/46
Signature Algorithm: sha256WithRSAEncryption
c7:15:c4:5a:93:2a:38:29:39:07:2d:7f:69:c4:0e:60:2d:b6:
8e:cc:90:a7:f0:2d:ed:a5:c4:39:12:cc:a0:e0:77:76:47:69:
4d:64:60:39:a4:c8:e0:ee:e2:04:31:09:eb:89:09:96:cb:d9:
92:1e:2d:d2:2d:c8:4f:64:ab:84:10:f6:fc:69:c4:da:84:42:
b1:d7:63:4f:a8:6d:a1:c0:45:d1:b9:1a:4f:94:9e:0e:17:fa:
b8:09:18:51:78:ad:0a:ff:19:e8:82:ce:f3:47:54:0a:64:4c:
08:cb:95:a0:ec:fd:87:ea:a3:8d:ee:88:58:1d:e5:4c:f2:72:
f9:6d:49:a3:31:23:fd:9c:61:ab:4f:bb:44:6b:5d:70:02:0e:
d1:80:42:04:d9:49:6a:a5:cb:ec:3f:3d:15:67:e0:7b:fc:cb:
f8:bf:8d:77:d9:90:44:8f:94:ff:da:f6:d4:5c:88:25:0b:a5:
17:15:f9:4e:d4:52:7e:04:2a:ee:24:5b:b4:64:0c:b5:3d:96:
c4:7c:59:df:04:c5:e8:88:04:d6:51:a7:42:82:17:09:55:4b:
1b:d8:25:25:3e:8b:23:48:8c:16:15:65:1f:45:d0:4c:19:8d:
68:66:4f:6a:e0:42:d9:5e:5f:72:b8:5e:87:52:be:54:d4:e4:
13:40:25:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 17 21:52:13 2024 by rpki-client on console-fra.rpki-client.org