Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202218.roa
File: AS202218.roa (raw, json)
Hash identifier: zY44le/D+uQSxvOduHCm31Vo6fv3GE6uXUpUTqsFmXQ=
Subject key identifier: 18:75:75:C7:43:E3:14:42:84:F2:E4:03:1D:F9:EB:2B:FB:75:C2:E2
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3AF08F8B69FFC02B5A253D937F3C9159337AF383
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202218.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 202218
IP address blocks: 2a06:a005:1c7b::/48 maxlen: 48
2a06:a005:23b0::/44 maxlen: 48
2a06:a005:23d0::/44 maxlen: 48
2a06:a005:23e0::/44 maxlen: 48
2a06:a005:23f0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:f0:8f:8b:69:ff:c0:2b:5a:25:3d:93:7f:3c:91:59:33:7a:f3:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=187575C743E3144284F2E4031DF9EB2BFB75C2E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:41:b9:cd:81:cb:8a:a1:13:84:25:64:f7:ec:
65:83:fa:45:fa:fe:fa:b6:6a:64:f3:fc:dc:09:7c:
3a:28:59:72:2e:84:14:1e:0c:9f:ad:fb:56:03:70:
18:b6:66:74:d9:6b:08:91:fd:6d:8b:39:f5:44:0a:
aa:ee:59:1f:fa:24:b2:44:48:56:7d:50:5f:7b:85:
81:f0:c0:d4:1a:43:9b:5e:37:7e:fb:10:41:9d:f4:
4d:65:28:cf:b8:6e:74:d0:d7:aa:b7:7d:00:c8:59:
1b:f3:c8:0e:38:08:26:8d:9e:32:7f:35:dd:02:48:
0f:dc:c2:00:97:e9:34:6e:bc:14:49:bf:c9:f1:9f:
7c:29:63:6f:05:22:b0:b2:ec:65:b8:ee:bc:02:ef:
45:9c:1c:25:d6:f5:c0:d6:b8:b4:ea:be:bc:f5:30:
d5:2d:f7:cb:89:91:92:8e:4c:68:cc:24:20:f7:e6:
4a:6c:8c:f2:26:0f:12:52:9a:9f:3d:70:63:08:fc:
aa:66:7b:e5:93:ae:a2:ac:ea:23:73:41:8e:7e:ac:
40:24:e8:3d:bb:5d:12:4b:c7:1d:e1:1d:8a:0f:83:
90:a5:2e:12:e6:8a:e2:95:3f:e8:c9:29:55:e4:d2:
a9:06:fc:3d:cd:f7:aa:68:7d:b1:ac:96:2d:95:9c:
13:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:75:75:C7:43:E3:14:42:84:F2:E4:03:1D:F9:EB:2B:FB:75:C2:E2
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202218.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1c7b::/48
2a06:a005:23b0::/44
2a06:a005:23d0::-2a06:a005:23ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
87:3a:f5:56:e0:dc:4c:da:a3:56:03:13:ae:44:7b:39:2b:ba:
98:22:a7:e1:9f:e5:cf:ca:f9:30:99:40:80:8f:6d:47:c5:ae:
c6:8b:d0:19:a3:75:9b:c5:c0:1b:40:fa:ef:a7:61:0e:cc:00:
e9:85:80:a9:7f:30:3d:a9:15:22:1b:83:17:a0:3f:6d:3d:20:
97:28:da:f2:ab:df:3b:2d:71:61:4d:b6:2f:1a:5e:8a:21:d0:
97:42:2e:87:a0:5d:8a:2a:b1:59:e2:a2:a9:4a:54:c0:65:69:
c6:6a:ad:46:e0:2b:48:47:12:0e:f5:62:35:f6:40:59:3b:8e:
82:f2:ba:ee:c6:a2:c9:f2:b8:5d:0f:00:ac:05:15:74:6f:03:
87:9d:7c:df:23:37:8c:be:4e:0c:7f:00:bc:85:2d:49:b7:13:
f4:44:36:c3:90:13:e4:0a:b3:a2:63:e5:cd:3a:1c:63:98:0b:
a4:ef:43:6b:55:b7:74:08:c1:8e:b8:ab:3f:96:4a:06:b3:6b:
76:be:99:c9:c0:27:fd:b6:db:e0:32:dc:4d:b5:11:b5:4c:94:
17:4f:9e:ed:2c:a7:03:ce:e6:04:8d:ee:51:3a:b5:58:2b:c7:
33:e5:db:7f:89:6f:6c:e6:bd:51:8a:7d:e9:5b:93:4e:5b:6d:
75:fb:55:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:20 2025 by rpki-client