Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS150325.roa
File: AS150325.roa (raw, json)
Hash identifier: L8bNSWZIwwkHEY08aNxX1M9f/9biNwh9NrEXlD1bgxw=
Subject key identifier: F6:3A:D1:B8:AC:DD:33:9D:A0:98:ED:0D:F1:50:90:02:0F:79:3A:CE
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 144C848D0F75AB531F96D294FF37974EC9DE260D
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS150325.roa
Signing time: Tue 05 Nov 2024 03:40:01 +0000
ROA not before: Tue 05 Nov 2024 03:35:01 +0000
ROA not after: Tue 04 Nov 2025 03:40:01 +0000
asID: 150325
IP address blocks: 2a06:a005:3::/48 maxlen: 48
2a06:a005:16c0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:4c:84:8d:0f:75:ab:53:1f:96:d2:94:ff:37:97:4e:c9:de:26:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:01 2024 GMT
Not After : Nov 4 03:40:01 2025 GMT
Subject: CN=F63AD1B8ACDD339DA098ED0DF15090020F793ACE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:fc:7a:07:ba:21:d3:58:04:35:f5:9c:a1:2d:
f8:15:5a:e1:bb:2e:79:31:ed:43:d1:fa:e1:f2:28:
a4:e9:b8:28:f5:91:74:49:48:5b:90:26:ad:42:c3:
c1:51:c5:89:73:a4:70:69:74:73:77:64:81:78:34:
fa:fa:66:e1:d3:c1:92:2e:9d:71:d8:ab:8f:01:ec:
77:eb:e0:4e:e2:08:01:b1:22:6b:fb:1f:f6:9f:6f:
5f:c4:46:29:d3:10:30:c2:9b:0e:32:fe:8d:63:4f:
8a:9f:ed:33:9e:2f:1c:c2:93:fd:2a:1d:67:ea:d6:
c5:b0:ad:3b:87:95:37:c9:b7:8f:bf:47:46:45:b0:
5d:27:a8:ca:94:9b:ed:b8:6b:58:9c:c9:37:24:2e:
a1:e0:7b:99:1c:c7:88:f5:cd:60:88:a8:24:26:b2:
b1:2f:5f:28:5a:2a:7d:10:4f:06:f6:c2:2e:c7:2c:
2f:02:35:8b:f4:75:be:4b:23:6a:a5:8d:a6:c9:01:
6a:68:b4:71:c4:fd:d2:34:40:82:39:65:3f:66:1c:
fb:4b:30:6a:3d:1f:97:fc:79:0e:35:5c:ba:e1:be:
08:e2:f2:34:db:e1:61:af:f6:d0:11:93:ed:42:99:
8c:d3:fa:69:c5:3a:bc:96:65:e5:38:28:0a:81:19:
b7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3A:D1:B8:AC:DD:33:9D:A0:98:ED:0D:F1:50:90:02:0F:79:3A:CE
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS150325.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:3::/48
2a06:a005:16c0::/44
Signature Algorithm: sha256WithRSAEncryption
3d:42:9b:15:43:66:4c:3e:ca:ae:1a:fd:cf:f5:8c:84:7f:b2:
09:20:f7:5c:12:1f:12:76:00:75:cc:ef:87:49:13:98:30:75:
38:e2:ae:43:50:fe:be:e9:3d:09:4f:7f:37:09:59:7e:9c:57:
4c:c5:41:e1:22:6c:2d:15:6d:86:f8:61:4f:ed:a2:11:6f:52:
c8:16:75:86:50:34:b8:2f:c4:35:a3:c1:b4:84:8c:7c:02:4b:
ae:21:01:a3:28:4a:91:9f:9e:0e:a8:79:1b:05:bc:7c:a4:89:
17:4a:9c:c8:02:95:de:e1:6b:ee:4f:e4:b1:d9:65:1f:f8:c8:
8a:7e:50:67:71:7e:07:0c:61:d2:fd:fa:52:b4:ec:c2:02:bf:
03:49:4d:d2:7b:e7:98:4e:b6:99:90:d6:9e:69:b3:c9:4b:63:
54:ba:1e:a2:b4:c5:36:65:9d:4d:d7:68:d8:f6:ff:35:e5:aa:
d7:37:96:61:fc:9f:ea:c4:c2:bc:c6:e3:a0:09:2a:bd:07:c4:
8a:9b:4f:cf:48:a2:ee:54:aa:e9:13:10:fe:93:5f:1a:87:1f:
bc:79:2e:90:61:2d:07:20:4f:f3:89:7b:f9:c8:7c:98:d9:b1:
3c:a6:89:32:2c:7c:64:e7:4e:15:3d:c0:67:5e:dd:62:54:7b:
b2:57:3e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:21 2025 by rpki-client