Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200545.roa
File: AS200545.roa (raw, json)
Hash identifier: T1Mlgf8lieeMJWktf+WwsxK7oJjJwwKNgKfRxW1SeHs=
Subject key identifier: 4C:A3:43:83:6C:34:EA:51:1D:F6:2A:FB:8C:91:E9:03:86:70:76:D7
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 02BB8995EC6AF51B8ECE8E0357CD4B48206CE0BC
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200545.roa
Signing time: Mon 02 Dec 2024 09:40:12 +0000
ROA not before: Mon 02 Dec 2024 09:35:12 +0000
ROA not after: Mon 01 Dec 2025 09:40:12 +0000
asID: 200545
IP address blocks: 2a06:a005:dc0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:bb:89:95:ec:6a:f5:1b:8e:ce:8e:03:57:cd:4b:48:20:6c:e0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 2 09:35:12 2024 GMT
Not After : Dec 1 09:40:12 2025 GMT
Subject: CN=4CA343836C34EA511DF62AFB8C91E903867076D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:46:65:99:ef:20:d0:2b:fd:7e:6d:ae:22:ce:
82:4d:98:16:57:b2:fb:1f:e3:b5:8e:3c:c5:7e:5b:
a1:58:5d:76:b5:c0:00:20:28:71:83:31:83:a7:61:
27:57:c2:25:6a:43:f6:68:e9:b4:c7:b2:59:9c:e8:
1a:be:50:9e:b3:49:02:7d:19:b6:da:96:b7:d4:9c:
a5:8e:0f:3e:ed:da:47:57:2c:a4:9f:94:98:16:6c:
a7:60:db:cc:fc:28:f7:e1:a1:ef:14:05:a0:a0:48:
a7:d5:75:f1:c1:78:a4:54:e1:01:3e:51:44:4e:56:
77:4b:13:9b:f0:6c:f7:01:63:1a:3c:23:92:8d:ae:
b1:92:52:8a:2a:b8:9e:b4:98:45:55:7e:dd:86:ce:
ef:48:63:32:21:26:d6:00:9c:21:9b:90:f0:a7:80:
ad:60:6b:43:70:d4:15:01:77:2f:0d:5d:03:88:54:
da:66:80:6f:fd:c7:6f:45:af:f4:02:b3:50:33:03:
81:7a:4b:c9:2c:31:ce:d6:48:b1:fa:4a:24:8e:af:
02:74:e6:59:ce:0b:9e:78:aa:bf:da:64:4a:da:25:
39:08:12:d4:fa:85:0a:2a:10:af:96:64:93:16:b7:
64:51:79:31:e1:17:e8:7c:43:37:9e:49:7c:6c:cd:
a7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A3:43:83:6C:34:EA:51:1D:F6:2A:FB:8C:91:E9:03:86:70:76:D7
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS200545.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:dc0::/44
Signature Algorithm: sha256WithRSAEncryption
43:5a:4d:e0:52:91:a2:15:39:ab:11:c8:7a:3c:b2:39:46:99:
dd:a7:74:3f:97:f1:43:41:90:38:17:36:9a:96:0c:fb:4d:c6:
86:a7:ce:36:10:1d:c9:0c:9d:63:8a:3d:92:dd:3f:01:cb:de:
f9:ba:4d:c3:25:8a:b4:33:74:2e:f8:17:c6:85:45:f4:78:96:
ab:bf:66:26:67:af:46:95:63:5d:d0:38:ec:90:72:b9:a2:4c:
11:58:07:16:7e:15:95:1c:6b:a6:45:a1:4b:bf:3b:5e:00:34:
11:46:29:a0:de:3e:24:43:85:cc:dd:c0:50:6b:0f:b7:fc:f8:
f3:4c:66:48:5b:a5:d5:21:b8:36:ca:74:b3:4c:ea:0d:0b:46:
2c:93:c2:82:f5:3b:f8:e0:04:a6:84:2e:4c:0b:8d:e1:65:34:
63:bb:1c:77:b2:4d:37:77:bc:f3:72:09:bc:37:ec:ea:69:6a:
e9:a0:f1:d7:82:cb:2e:5a:c9:c8:20:7e:6d:29:5d:9b:18:b8:
b8:b5:f1:2a:4a:51:a3:f0:aa:f3:74:9b:f4:7d:45:3d:5f:e5:
83:c0:8c:98:ca:5a:89:8f:8a:60:81:29:f1:c6:0b:21:93:17:
bb:e7:fd:90:c0:90:39:e6:2b:af:d8:8e:58:81:e7:53:af:02:
8c:61:e7:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:14:19 2025 by rpki-client