Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203236.roa
File: AS203236.roa (raw, json)
Hash identifier: ChM0oaKIHAgUNmdtpB5PgrnQRdI/QHH48FzXYNf4wlc=
Subject key identifier: 4D:14:A3:B7:6D:95:16:C7:A3:B9:34:41:37:30:90:4A:CF:B0:4D:B5
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3B26F05F459ABECC8C76D53780380278545937C6
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203236.roa
Signing time: Fri 06 Dec 2024 14:40:12 +0000
ROA not before: Fri 06 Dec 2024 14:35:12 +0000
ROA not after: Fri 05 Dec 2025 14:40:12 +0000
asID: 203236
IP address blocks: 2a06:a005:486::/48 maxlen: 48
2a06:a005:1520::/44 maxlen: 48
2a06:a005:1800::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 26 Mar 2025 22:14:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:26:f0:5f:45:9a:be:cc:8c:76:d5:37:80:38:02:78:54:59:37:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 6 14:35:12 2024 GMT
Not After : Dec 5 14:40:12 2025 GMT
Subject: CN=4D14A3B76D9516C7A3B934413730904ACFB04DB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:25:16:d7:1e:a4:89:b8:de:bf:9a:c7:0c:cd:
60:d2:08:9d:d9:38:ca:ef:0c:63:fe:35:dc:97:11:
8b:85:1d:63:57:55:9a:4d:39:e8:ec:0e:2e:28:e7:
50:b7:10:8f:3a:03:25:82:3a:76:03:8e:e0:75:fe:
82:40:e8:73:81:7e:30:00:c8:16:69:d2:66:b1:ae:
23:e2:7a:85:a8:b4:f0:8c:13:41:1c:15:92:f8:9d:
f6:75:27:a0:8d:32:b5:53:eb:cb:14:d3:bc:86:af:
d1:69:bb:a8:72:b7:33:60:c7:eb:bc:59:de:d3:2c:
55:26:2a:c7:b5:c6:92:c1:17:fb:4f:4a:f2:99:3f:
26:1e:6e:ce:01:20:73:71:31:8b:fc:67:d9:de:95:
90:3f:ac:66:0f:de:24:ef:11:5d:b1:40:b5:bf:37:
ec:a8:b2:e2:a3:2f:d3:23:22:91:c0:da:79:01:d9:
c9:25:50:d9:32:6d:b3:a2:02:3e:73:5b:4c:c4:8b:
99:4f:ff:39:1f:e1:ae:1b:31:fa:49:4b:33:01:09:
15:50:6a:ee:12:2c:70:25:b4:97:c5:3f:29:81:9f:
21:1c:78:d3:11:8e:72:3e:ff:7f:f7:d6:5d:54:c0:
ed:1a:3e:31:a7:6a:4b:33:d9:de:14:9d:8f:8d:ad:
c5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:14:A3:B7:6D:95:16:C7:A3:B9:34:41:37:30:90:4A:CF:B0:4D:B5
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:486::/48
2a06:a005:1520::/44
2a06:a005:1800::/48
Signature Algorithm: sha256WithRSAEncryption
82:0a:c0:6d:ed:30:88:14:4d:67:57:74:73:54:3c:ad:90:64:
3f:29:19:af:23:80:91:1f:1e:02:05:4f:46:e8:73:62:36:3e:
1e:cd:c4:ae:d8:08:8d:30:f3:1c:89:42:9c:bf:c5:dc:76:9e:
79:01:f4:3f:a4:ef:ac:87:bd:82:eb:a5:67:9c:fe:79:ab:d8:
01:20:19:6e:c9:fe:d8:4e:fa:9d:78:59:5a:8b:45:d1:26:1c:
0b:e4:66:89:08:60:9c:e6:7e:49:ac:9b:5c:cb:f0:4e:48:90:
9a:cb:29:16:10:ea:c6:9a:12:64:81:74:1f:7d:0b:5a:49:e5:
ac:ec:9e:87:63:c1:83:9c:83:58:db:b5:19:47:25:e2:ee:b0:
0c:77:84:a8:a5:d8:98:38:fc:39:73:35:26:93:3b:7d:1d:c1:
6d:72:79:4e:1a:6a:ee:67:16:e5:a1:a7:10:23:0a:03:70:10:
b3:e9:92:58:ef:c7:bf:66:e0:c7:d4:fb:35:02:ab:60:be:99:
e8:9c:7c:be:90:00:ee:15:0c:2f:c8:48:0e:a1:23:1c:06:22:
b1:20:8f:39:d1:5d:34:de:12:a4:6c:78:d1:d5:ce:c0:3b:35:
45:0f:8d:6b:7f:a1:a9:68:95:72:40:74:aa:27:70:04:38:07:
8a:f6:25:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:16:42 2025 by rpki-client