Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201733.roa
File: AS201733.roa (raw, json)
Hash identifier: YzzxWVgH1RLnYwJgdxpZBAra6E7a5P1iX6Sis12aPfc=
Subject key identifier: 8C:70:E2:1A:93:94:EF:B5:C7:8D:39:9E:93:A9:13:9D:BF:2E:DA:7C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 461F2DCE3084485686274640C31DAB5ECD0E2468
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201733.roa
Signing time: Tue 05 Nov 2024 03:40:08 +0000
ROA not before: Tue 05 Nov 2024 03:35:08 +0000
ROA not after: Tue 04 Nov 2025 03:40:08 +0000
asID: 201733
IP address blocks: 2a06:a005:2360::/44 maxlen: 48
2a06:a005:23c0::/44 maxlen: 48
2a06:a005:2460::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:1f:2d:ce:30:84:48:56:86:27:46:40:c3:1d:ab:5e:cd:0e:24:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:08 2024 GMT
Not After : Nov 4 03:40:08 2025 GMT
Subject: CN=8C70E21A9394EFB5C78D399E93A9139DBF2EDA7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cc:57:21:0d:db:b0:56:ab:fd:9c:fe:93:1e:
e5:cc:ac:d4:ff:ef:03:99:64:9e:21:2a:83:b6:b5:
02:37:53:c5:93:1b:e8:96:8a:4f:55:18:c7:08:80:
b2:dd:2e:ec:10:99:f1:2c:be:88:42:7b:c1:9d:a7:
d4:eb:74:85:da:74:d0:b2:2c:06:33:c4:f0:45:20:
ce:8c:ed:4a:95:3e:55:2a:76:84:36:45:dd:55:a1:
75:89:15:6f:d8:1d:09:14:d8:e8:25:2d:a8:dc:e1:
df:b4:f5:cc:87:97:50:53:1a:b6:cf:c0:d8:2b:37:
55:2f:82:e0:9f:72:1b:9d:2b:d1:64:35:fc:8d:ae:
9c:5c:cb:8c:f7:b5:6a:c0:b0:f8:09:04:1a:7e:4f:
0c:7d:3f:99:9a:c2:0b:61:92:db:0e:e7:62:28:01:
c7:cc:b0:b7:4f:f9:8b:17:dc:09:64:98:cb:ce:f1:
d3:ae:e4:5d:b3:8d:54:44:98:7e:58:ab:52:4c:d7:
73:de:b9:ca:ac:f3:91:22:fe:41:8b:29:4d:98:ac:
93:9b:a8:74:3b:d9:c7:e4:87:83:f9:8f:a3:9d:13:
16:d5:05:0d:c7:73:f7:eb:e7:8c:91:0a:b4:e9:c0:
09:a8:52:19:0a:52:3c:81:9b:8a:49:0a:ea:f4:ff:
78:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:70:E2:1A:93:94:EF:B5:C7:8D:39:9E:93:A9:13:9D:BF:2E:DA:7C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS201733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2360::/44
2a06:a005:23c0::/44
2a06:a005:2460::/44
Signature Algorithm: sha256WithRSAEncryption
46:c4:30:cf:e9:e1:e4:41:b9:f0:10:ab:57:ee:06:0b:bf:c2:
83:82:e4:7d:ad:c8:0f:14:fc:60:89:e5:ba:38:b2:96:15:a1:
72:4a:90:1f:40:7d:f3:a0:7a:c7:80:da:35:95:df:72:a0:fb:
da:bc:42:0c:1f:3f:ef:6d:70:b0:b1:bd:92:3f:86:76:ea:d9:
c7:8c:11:4a:c5:56:a3:62:c8:f4:e9:75:60:22:39:1e:1a:7d:
34:12:29:3e:04:f0:61:4b:8a:75:23:83:ec:99:1a:3e:55:0f:
fd:ac:84:f7:35:ad:f0:21:3b:d5:2a:a3:4f:e2:e2:20:53:e1:
e7:ad:e4:48:4b:f9:a3:a4:7e:e0:b8:72:4c:6d:d7:0c:39:57:
47:b9:39:97:4a:5d:d8:76:f1:2f:db:98:89:67:04:3d:d8:f0:
bf:54:38:77:6c:b4:e8:1b:c6:21:3f:8f:fb:15:2f:3c:c4:cd:
08:c5:93:37:5d:89:ce:15:d7:12:93:fa:67:df:52:83:2a:8b:
7b:76:50:0b:f0:40:d6:d2:eb:4b:ef:b2:6d:bc:61:e8:69:10:
c2:6e:6d:1a:c8:e6:fa:7b:c8:55:16:50:7f:ce:46:36:c0:b1:
ce:86:93:6d:a6:7f:83:12:b7:6f:ca:68:25:25:85:0f:27:1e:
79:42:eb:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:45:55 2025 by rpki-client