Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202828.roa
File: AS202828.roa (raw, json)
Hash identifier: ZLRMO2i6djsUuee7WCUGB7GqpP+zcirbqvzwju1gjBQ=
Subject key identifier: 6C:8F:65:FC:83:7B:61:8A:2E:48:73:0A:22:59:88:7F:FE:99:0C:8A
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7D6FBB250E9611A076B77118851CAC2896E58DB4
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202828.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 202828
IP address blocks: 2a06:a005:2dd::/48 maxlen: 48
2a06:a005:43c::/48 maxlen: 48
2a06:a005:bae::/48 maxlen: 48
2a06:a005:baf::/48 maxlen: 48
2a06:a005:17a0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:6f:bb:25:0e:96:11:a0:76:b7:71:18:85:1c:ac:28:96:e5:8d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=6C8F65FC837B618A2E48730A2259887FFE990C8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3f:27:ea:89:24:e6:c5:29:18:8e:98:70:76:
68:40:9c:0b:26:63:c3:eb:07:e0:5e:0d:ae:2c:c2:
b7:57:3f:5c:56:0f:3a:94:65:d7:5e:b1:06:50:77:
59:9d:55:a6:c3:08:82:87:51:a0:cd:fb:7e:f3:dd:
4a:09:c7:b8:14:e1:a0:06:f7:b1:96:71:93:7f:bd:
6f:b8:6c:a8:6e:4f:eb:69:82:30:66:48:04:d1:5f:
16:3c:ec:01:1f:79:be:18:b1:16:2d:af:a9:8f:a1:
f3:5a:8c:bb:b2:c0:5f:d3:1c:bc:a6:19:f9:4b:13:
25:bc:1c:12:16:65:71:be:02:64:f8:6a:0b:af:7b:
24:a1:af:8d:ca:2e:a4:d7:31:0c:9a:dd:5d:e9:e4:
b8:2e:10:dc:94:dd:f2:38:d0:7c:8b:7f:5c:a3:35:
c7:82:e3:24:0b:27:b5:9c:c8:2d:69:93:ff:47:70:
11:b8:3f:11:4e:78:6f:c8:3c:01:f8:c9:f6:4a:00:
29:4c:78:2b:e8:69:e4:d2:8b:d7:ed:7a:46:71:76:
da:7d:3f:cd:09:39:72:cf:38:32:2f:5c:61:f1:57:
0a:b9:d6:1b:8e:ac:bd:bd:73:68:96:45:52:6a:9c:
8f:c0:9a:a4:a1:90:69:43:7e:f7:6d:27:45:31:4b:
39:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8F:65:FC:83:7B:61:8A:2E:48:73:0A:22:59:88:7F:FE:99:0C:8A
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS202828.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:2dd::/48
2a06:a005:43c::/48
2a06:a005:bae::/47
2a06:a005:17a0::/44
Signature Algorithm: sha256WithRSAEncryption
39:2f:5b:ca:5d:6b:c8:79:e7:0d:39:ed:38:c8:72:53:b0:81:
5b:96:4f:df:ee:b6:9a:b7:14:4b:a9:51:c5:c0:7c:f2:0a:ca:
cf:2c:94:3b:73:06:34:3d:29:be:14:54:5f:d2:99:f7:57:cd:
2b:63:46:b5:9c:5e:d2:ed:65:36:02:5a:f3:1b:8e:18:ca:12:
e8:20:da:07:ff:1c:e0:99:e4:1d:de:68:f7:f4:37:37:1f:3e:
89:74:0e:87:b3:1a:f6:b0:24:07:6c:e7:df:42:45:05:df:69:
5d:d4:57:d4:b2:04:7d:44:6a:43:61:4b:c7:05:ca:81:98:e6:
0b:67:78:f9:1f:66:4b:55:54:a2:d6:8a:81:9a:e4:6d:d9:01:
b6:8a:c5:5c:af:d3:00:d4:63:d2:8f:da:85:bb:c4:d0:96:58:
51:1f:dc:2c:28:51:43:83:51:17:af:ea:39:c3:b7:89:2c:f9:
c1:83:5e:4e:17:73:be:86:f6:8a:d5:f3:33:b0:a8:ee:84:4a:
e9:0b:09:08:f9:90:ae:95:f9:16:93:47:00:e4:89:2c:d8:1f:
20:99:20:2f:69:fc:f1:2d:5a:73:4b:75:2b:a7:15:3e:f1:ac:
9a:80:77:b3:e0:43:e2:36:d4:2f:41:4e:3f:c3:36:bb:05:9a:
70:06:44:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:15:02 2025 by rpki-client