Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200221.roa
File: AS200221.roa (raw, json)
Hash identifier: rQPegnohgMdw3k4keZYqt5wHklugWbvtzfa+w73k3lc=
Subject key identifier: 1E:FC:9A:1F:18:AF:7A:3F:80:7C:9F:3A:39:43:97:9B:D3:A0:3E:C2
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 679DB232B5275FC4DA35C9E9D6D6BFDA89CBB522
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200221.roa
Signing time: Wed 27 Nov 2024 18:40:12 +0000
ROA not before: Wed 27 Nov 2024 18:35:12 +0000
ROA not after: Wed 26 Nov 2025 18:40:12 +0000
asID: 200221
IP address blocks: 2a06:a005:1b80::/44 maxlen: 48
2a06:a005:2b20::/44 maxlen: 48
2a06:a005:2b30::/44 maxlen: 48
2a06:a005:2b40::/44 maxlen: 48
2a06:a005:2b50::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:9d:b2:32:b5:27:5f:c4:da:35:c9:e9:d6:d6:bf:da:89:cb:b5:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 27 18:35:12 2024 GMT
Not After : Nov 26 18:40:12 2025 GMT
Subject: CN=1EFC9A1F18AF7A3F807C9F3A3943979BD3A03EC2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7f:36:f0:d3:1f:91:4d:a1:eb:59:ec:3b:8f:
ae:cb:9c:a8:c6:71:4d:a7:7c:54:86:b2:98:53:04:
16:7f:ea:56:45:d9:a0:4f:f5:f2:69:5b:a7:ce:33:
72:e1:8e:a0:43:20:b3:c8:04:75:c3:2d:01:b0:2a:
57:58:c5:f1:34:4f:86:42:df:bb:58:77:00:5a:d4:
22:89:3c:4e:07:49:cd:1d:b4:a7:9b:35:83:fc:8e:
72:2d:1e:93:8a:f9:54:15:e3:b6:e3:e9:06:ed:1c:
89:2c:b4:e6:c8:3a:d3:f3:c2:f2:b4:04:62:ab:ac:
5d:64:e4:d9:bc:47:4b:26:3a:4a:6d:ac:6f:1d:aa:
08:9b:18:53:dd:5a:55:f5:5b:1c:63:2e:24:45:01:
a1:0b:07:12:39:f1:c1:4b:8b:26:34:d5:43:f8:b7:
27:31:6b:e6:8b:87:b0:26:6d:a7:ed:3a:44:66:03:
e8:42:47:04:46:28:bd:c8:90:3a:73:53:f1:65:cb:
cd:69:31:be:84:4f:34:b9:43:c2:a4:fe:6a:83:00:
27:97:ac:b0:3e:9d:4e:e6:f3:27:d0:2d:7b:c7:c4:
e6:4d:67:d1:d4:3e:85:f2:98:33:d5:75:a7:32:6d:
d6:e4:c5:74:72:17:77:10:db:75:11:33:aa:a5:ee:
89:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FC:9A:1F:18:AF:7A:3F:80:7C:9F:3A:39:43:97:9B:D3:A0:3E:C2
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200221.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1b80::/44
2a06:a005:2b20::-2a06:a005:2b5f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
32:21:77:56:c6:f2:db:1c:12:97:3f:80:fe:54:43:af:88:80:
a5:60:33:42:4e:9d:42:52:ff:5b:8d:99:d8:10:fc:6c:9d:c6:
9b:54:0c:b0:a7:15:6a:ec:1a:5f:a7:9b:09:2a:03:2c:ac:2a:
ad:85:b5:3c:69:5e:1f:11:25:d1:96:8b:54:cc:56:01:2e:db:
a4:24:05:0a:88:96:4b:d7:99:cf:54:eb:58:b2:7e:b6:35:58:
52:25:da:fa:e7:99:f2:0d:b4:6a:21:df:e7:e8:38:26:98:ae:
b7:a3:30:93:eb:c9:15:03:62:3c:36:fa:bc:9a:3f:41:d2:d1:
28:9a:d3:16:7e:5a:c7:3c:31:42:e9:e9:5a:00:1d:4e:77:4b:
32:18:83:0e:85:c7:7b:2d:b1:a6:6f:54:28:f8:04:22:02:d4:
d3:dc:8e:61:16:09:07:6d:ff:66:7f:02:65:66:ee:9e:e9:08:
84:43:4e:a6:bc:af:a3:ec:7e:0c:3e:4f:f0:2c:22:83:7f:21:
cf:60:e8:2e:cf:3d:68:87:24:48:85:38:3b:d5:fd:6f:ba:c7:
70:d1:73:a4:47:72:a5:d2:97:7d:e4:41:0b:c1:98:50:61:1c:
f8:6a:e5:ae:fb:10:46:24:ce:48:ae:e1:06:b4:23:27:ed:50:
dc:36:2b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:15:03 2025 by rpki-client