Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201412.roa
File: AS201412.roa (raw, json)
Hash identifier: ma13EyN3UKuBLXH61ftKJM0ShUh5g95iK+KJumyfZuk=
Subject key identifier: 2B:EA:42:03:45:CD:47:9E:45:17:8B:EF:8E:AC:07:23:6D:50:E8:7A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 54E7BC91409BD0BE2F9D054D24EA4E937C3B8607
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201412.roa
Signing time: Thu 28 Nov 2024 19:40:12 +0000
ROA not before: Thu 28 Nov 2024 19:35:12 +0000
ROA not after: Thu 27 Nov 2025 19:40:12 +0000
asID: 201412
IP address blocks: 2a06:a005:2c70::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:e7:bc:91:40:9b:d0:be:2f:9d:05:4d:24:ea:4e:93:7c:3b:86:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 28 19:35:12 2024 GMT
Not After : Nov 27 19:40:12 2025 GMT
Subject: CN=2BEA420345CD479E45178BEF8EAC07236D50E87A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:79:f5:38:fa:f6:b7:bc:4a:da:d6:30:89:1a:
5a:87:87:f8:40:1a:1e:fc:09:22:0a:2d:83:fa:80:
be:01:67:40:57:2c:17:0e:95:8f:12:cb:08:24:85:
2e:de:3d:b5:4b:ca:5c:b1:e5:11:25:a3:07:a4:67:
68:c2:24:f6:76:cd:ee:f2:30:b8:a2:1f:bc:a2:00:
b7:3c:60:85:63:e0:3f:91:96:7a:2f:4e:07:1b:36:
9b:80:94:fa:f0:09:c4:87:8c:75:79:38:32:89:69:
16:69:0d:6c:dc:9f:4e:01:b0:37:da:0f:0a:93:26:
0d:ad:a5:2b:d4:a1:5d:41:f4:57:80:56:36:19:c7:
cf:3e:47:7f:f5:e7:bd:d9:c0:77:76:16:48:62:1f:
06:6b:c4:ed:8b:f3:b2:1d:aa:a8:f3:6e:fe:b0:1c:
ac:cd:3e:5e:cd:18:cd:0d:bf:0b:a0:a1:ca:fb:07:
ce:cc:db:3c:01:33:02:68:b7:57:4f:25:04:3a:d8:
f0:32:45:1f:1c:e0:1c:bc:cd:d6:ca:fd:94:ec:8c:
2f:3c:9c:38:c8:92:a5:6f:87:3d:42:0e:41:e2:04:
40:f8:4c:ae:2d:ca:83:e8:73:90:fc:7f:99:25:70:
1c:89:e1:df:76:96:b9:99:75:58:86:08:a0:10:52:
6f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:EA:42:03:45:CD:47:9E:45:17:8B:EF:8E:AC:07:23:6D:50:E8:7A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201412.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2c70::/44
Signature Algorithm: sha256WithRSAEncryption
aa:95:61:c7:c6:4e:96:2b:cf:c8:50:a9:45:2a:cd:7b:c0:d1:
45:7b:ab:7d:25:fc:41:22:59:f7:29:cc:9e:db:92:c4:2d:d6:
2b:ef:0c:44:13:50:d8:49:6e:59:ff:ab:3d:1c:02:c7:1c:5a:
2e:8d:83:2d:e8:e2:61:1f:9c:5a:41:95:d1:f4:ae:67:ae:26:
79:01:82:d2:01:56:ae:5e:c1:31:dc:fd:2b:59:8e:15:28:b6:
3b:71:d0:fa:1d:9a:ab:32:f3:6e:85:cb:fd:14:14:dc:a3:57:
71:56:ac:14:c0:62:b9:26:70:eb:90:39:84:01:a3:95:60:6d:
48:00:72:81:c1:e7:b2:5a:e2:0b:24:5b:1f:2e:2e:0c:e5:39:
df:54:3f:cb:32:3a:92:b5:ea:bd:91:71:2b:d6:70:24:5b:8f:
79:fd:3e:45:5c:69:cb:53:0d:6d:05:91:79:1f:de:21:a0:bb:
9c:2e:7a:60:4e:9b:9a:50:dc:e2:0d:d4:33:3e:66:70:ba:95:
82:5c:18:1f:f8:12:78:ce:a5:dd:cd:73:14:88:7f:6e:ef:ec:
95:68:61:e8:e8:07:4e:09:45:e5:9d:c8:79:5d:ed:1f:12:02:
12:cb:bf:ce:fb:0d:f5:2a:6b:28:0b:e4:25:5e:17:b1:83:be:
fd:11:4c:e4
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUVOe8kUCb0L4vnQVNJOpOk3w7hgcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMjgxOTM1MTJaFw0yNTExMjcxOTQwMTJaMDMxMTAvBgNV
BAMTKDJCRUE0MjAzNDVDRDQ3OUU0NTE3OEJFRjhFQUMwNzIzNkQ1MEU4N0EwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrefU4+va3vEra1jCJGlqHh/hA
Gh78CSIKLYP6gL4BZ0BXLBcOlY8SywgkhS7ePbVLylyx5RElowekZ2jCJPZ2ze7y
MLiiH7yiALc8YIVj4D+RlnovTgcbNpuAlPrwCcSHjHV5ODKJaRZpDWzcn04BsDfa
DwqTJg2tpSvUoV1B9FeAVjYZx88+R3/1573ZwHd2FkhiHwZrxO2L87Idqqjzbv6w
HKzNPl7NGM0Nvwugocr7B87M2zwBMwJot1dPJQQ62PAyRR8c4By8zdbK/ZTsjC88
nDjIkqVvhz1CDkHiBED4TK4tyoPoc5D8f5klcByJ4d92lrmZdViGCKAQUm+TAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUK+pCA0XNR55FF4vvjqwHI21Q6HowHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAxNDEyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBSxwMA0GCSqGSIb3DQEBCwUAA4IBAQCqlWHH
xk6WK8/IUKlFKs17wNFFe6t9JfxBIln3Kcye25LELdYr7wxEE1DYSW5Z/6s9HALH
HFoujYMt6OJhH5xaQZXR9K5nriZ5AYLSAVauXsEx3P0rWY4VKLY7cdD6HZqrMvNu
hcv9FBTco1dxVqwUwGK5JnDrkDmEAaOVYG1IAHKBweeyWuILJFsfLi4M5TnfVD/L
MjqSteq9kXEr1nAkW495/T5FXGnLUw1tBZF5H94hoLucLnpgTpuaUNziDdQzPmZw
upWCXBgf+BJ4zqXdzXMUiH9u7+yVaGHo6AdOCUXlnch5Xe0fEgISy7/O+w31Kmso
C+QlXhexg779EUzk
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:13:28 2025 by rpki-client