Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200021.roa
File: AS200021.roa (raw, json)
Hash identifier: aPiKAFF7Z9GQOj0fiKH7SpwbFOaJyuVZG1Tj9UMXhhM=
Subject key identifier: 1B:E3:49:BF:BA:84:B0:A4:1A:5B:B6:0B:26:47:3C:36:9E:D1:64:1F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 02BBBAE72C2B060964D27821ABA9BBF613706FF8
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200021.roa
Signing time: Sun 08 Dec 2024 10:40:12 +0000
ROA not before: Sun 08 Dec 2024 10:35:12 +0000
ROA not after: Sun 07 Dec 2025 10:40:12 +0000
asID: 200021
IP address blocks: 2a06:a005:1c30::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:bb:ba:e7:2c:2b:06:09:64:d2:78:21:ab:a9:bb:f6:13:70:6f:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 8 10:35:12 2024 GMT
Not After : Dec 7 10:40:12 2025 GMT
Subject: CN=1BE349BFBA84B0A41A5BB60B26473C369ED1641F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ac:4b:c2:5a:9f:47:00:0f:e5:bb:12:29:a3:
3e:61:f8:ba:00:64:a3:57:0c:02:21:bf:4f:de:7b:
85:d6:99:df:3d:5d:b4:95:78:a8:39:c8:04:94:48:
1d:2f:5b:3e:68:62:4f:4d:0d:d7:6e:13:27:0b:bc:
43:a9:36:30:1e:2f:23:fe:93:7c:a0:f6:d9:6d:5f:
43:c1:f5:2b:34:c4:f3:f9:1c:8d:79:b5:1b:fb:d4:
ff:ac:97:7f:d7:12:ad:11:e6:8a:3e:69:b5:d9:f7:
c2:a7:e4:7f:65:05:8e:f2:31:8b:1a:bc:bf:93:8e:
00:73:a8:f4:f6:5e:55:00:a0:c9:a3:84:f3:3d:61:
1d:39:72:9c:21:97:38:b9:57:68:09:2d:8d:f7:05:
1a:8d:0d:ac:fd:19:79:bc:fe:fc:9a:7f:c4:0d:0f:
d5:cc:d4:ce:0a:b3:77:38:e0:99:11:25:b7:77:46:
70:19:cd:55:8f:81:86:35:8f:72:29:4b:80:ca:2b:
d2:86:1a:9b:a3:67:57:73:3c:78:47:90:a8:af:82:
3a:fc:98:26:f4:22:ed:52:00:fc:83:f1:0e:f7:11:
09:18:56:cb:f2:32:86:74:d7:13:36:d9:4a:fd:b5:
d1:2b:fb:29:8e:b4:20:0e:a9:f7:34:56:7e:bf:c9:
a7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E3:49:BF:BA:84:B0:A4:1A:5B:B6:0B:26:47:3C:36:9E:D1:64:1F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200021.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c30::/44
Signature Algorithm: sha256WithRSAEncryption
9d:83:e1:03:a8:c8:f2:0f:01:85:19:80:82:10:67:19:40:3b:
7a:0f:7a:87:7f:86:e9:c7:5a:8d:77:9d:cf:04:ea:19:35:6f:
47:49:11:f4:35:60:29:29:a7:85:ec:d9:1b:61:14:ec:83:db:
5c:d0:79:71:8b:04:6b:b2:2b:73:73:ff:b6:60:8a:88:22:0f:
fe:e3:11:43:78:bd:31:b5:81:a7:dd:e2:70:09:65:28:28:78:
ff:64:1f:8d:7a:c2:a7:fc:c2:8a:33:65:70:60:48:1e:46:fd:
d8:e4:89:5a:2e:53:15:0e:4d:b8:1e:d4:51:63:53:c9:d4:d1:
b2:85:a2:79:3c:6f:ff:05:6d:79:0a:43:45:8c:10:e2:88:53:
7b:c7:ff:94:c4:5a:6c:68:d9:a7:07:c1:1d:b5:89:f7:92:f1:
25:f9:db:79:1d:79:ff:bc:b0:34:fd:0e:ee:93:40:58:ec:87:
27:1b:e7:be:39:1d:38:8d:3a:5a:3f:b0:49:40:34:d8:64:15:
09:e2:75:1e:30:32:a9:3d:fe:49:49:97:3d:3d:b1:0c:63:9a:
6d:c9:0c:5d:eb:38:27:6d:37:bc:7b:a8:aa:2e:ec:09:6f:eb:
af:99:ca:aa:94:4e:fd:13:b8:8c:af:b9:48:01:49:43:97:6e:
61:2e:dd:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:13:28 2025 by rpki-client