Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203529.roa
File: AS203529.roa (raw, json)
Hash identifier: +tkD/+BH7oUkr4VbFG+u40XOgIwnY4ry/gRhD5KE0bQ=
Subject key identifier: 14:3F:DF:BF:5B:C4:DA:49:AE:C0:2B:E1:A5:E6:FC:69:0B:FC:CE:1E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 41AA90255909984DEA2D67DBD06EA1ED632BBA0B
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203529.roa
Signing time: Fri 06 Dec 2024 15:40:12 +0000
ROA not before: Fri 06 Dec 2024 15:35:12 +0000
ROA not after: Fri 05 Dec 2025 15:40:12 +0000
asID: 203529
IP address blocks: 2a06:a005:15e0::/44 maxlen: 48
2a06:a005:15f0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:aa:90:25:59:09:98:4d:ea:2d:67:db:d0:6e:a1:ed:63:2b:ba:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 6 15:35:12 2024 GMT
Not After : Dec 5 15:40:12 2025 GMT
Subject: CN=143FDFBF5BC4DA49AEC02BE1A5E6FC690BFCCE1E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:0a:4b:62:2a:a2:2f:0a:5e:79:c9:b5:cc:dc:
2c:66:95:83:bf:49:f1:53:9e:28:e3:2e:3f:c6:01:
14:7d:4f:2c:a1:d3:d8:13:76:9d:0b:45:cb:02:a4:
c0:67:2e:db:f8:39:59:19:37:de:97:43:a6:95:02:
6a:36:81:0d:d4:06:c7:c0:99:07:50:26:51:5e:f7:
68:41:63:e5:a8:9b:04:50:55:2b:e1:bb:54:58:f8:
23:22:7e:04:1b:a8:f5:7c:fd:05:60:e8:ab:30:c6:
cd:51:2e:bd:1f:f1:8e:e8:2c:68:e9:18:ef:18:be:
7b:62:1c:4b:46:3f:e8:86:39:e1:c0:4b:0e:b0:63:
b1:a7:c7:b9:3d:46:59:a6:38:11:5c:30:3e:31:26:
77:2e:2a:7c:f2:89:27:48:8c:ed:75:0f:d1:bc:e4:
c0:c5:e2:70:a2:df:e8:db:3c:a9:9e:04:38:c2:52:
ab:17:4b:65:73:35:46:0d:3a:af:00:40:2f:9f:da:
52:63:18:64:78:6b:38:56:58:e8:18:95:22:c9:ce:
c4:9d:56:2a:8c:b0:5e:fc:65:d9:9f:f4:72:80:6e:
f1:9d:8e:87:d3:48:07:43:74:69:22:b2:98:f6:cd:
d0:e7:56:48:64:64:5d:53:16:52:03:d2:9e:5b:7e:
74:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3F:DF:BF:5B:C4:DA:49:AE:C0:2B:E1:A5:E6:FC:69:0B:FC:CE:1E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203529.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:15e0::/43
Signature Algorithm: sha256WithRSAEncryption
76:23:b0:af:fa:fe:c2:bb:ae:4d:93:c8:5a:9d:76:ee:57:2e:
9b:c5:b4:79:29:03:55:d3:26:4b:a0:77:8a:e2:2c:7b:4c:f9:
45:c5:bc:7f:3f:6d:16:14:68:7f:83:c9:35:bb:41:0d:cb:84:
1e:1a:15:67:47:15:15:6f:fb:88:e5:d6:22:b2:cb:ea:c3:ec:
7b:30:b2:e9:d7:cc:0d:6a:88:3d:c6:5b:35:22:3f:ce:f6:0d:
06:12:ea:81:54:44:e3:89:66:39:58:a4:37:26:94:cc:49:94:
49:c2:66:2b:76:23:0e:82:9f:20:aa:0b:88:cd:8f:b1:cf:d2:
48:76:5a:73:22:8d:fa:d1:ae:5f:b9:40:c5:da:5c:6b:e5:8e:
69:3b:60:9e:07:43:c4:de:08:60:b8:4b:47:9c:40:b8:02:e8:
f5:84:2f:94:0c:73:8d:04:f3:df:52:dd:66:43:8c:56:d8:5f:
f2:fe:7a:1e:64:7e:1a:7a:ce:15:c8:74:f5:43:46:5a:8a:af:
23:4f:cd:2c:48:73:ed:43:dd:09:b5:35:e0:a0:6f:75:09:9d:
bb:37:61:ba:ba:56:24:8d:79:bd:e3:5f:a2:94:8c:25:fb:9a:
42:46:fa:47:6f:80:bf:ce:61:0f:b4:d2:ac:02:b4:77:7c:c1:
a3:b1:d2:16
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUQaqQJVkJmE3qLWfb0G6h7WMrugswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDEyMDYxNTM1MTJaFw0yNTEyMDUxNTQwMTJaMDMxMTAvBgNV
BAMTKDE0M0ZERkJGNUJDNERBNDlBRUMwMkJFMUE1RTZGQzY5MEJGQ0NFMUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuCktiKqIvCl55ybXM3CxmlYO/
SfFTnijjLj/GARR9Tyyh09gTdp0LRcsCpMBnLtv4OVkZN96XQ6aVAmo2gQ3UBsfA
mQdQJlFe92hBY+WomwRQVSvhu1RY+CMifgQbqPV8/QVg6Kswxs1RLr0f8Y7oLGjp
GO8YvntiHEtGP+iGOeHASw6wY7Gnx7k9RlmmOBFcMD4xJncuKnzyiSdIjO11D9G8
5MDF4nCi3+jbPKmeBDjCUqsXS2VzNUYNOq8AQC+f2lJjGGR4azhWWOgYlSLJzsSd
ViqMsF78Zdmf9HKAbvGdjofTSAdDdGkispj2zdDnVkhkZF1TFlID0p5bfnQbAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUFD/fv1vE2kmuwCvhpeb8aQv8zh4wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjAzNTI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcFKgagBRXgMA0GCSqGSIb3DQEBCwUAA4IBAQB2I7Cv
+v7Cu65Nk8hanXbuVy6bxbR5KQNV0yZLoHeK4ix7TPlFxbx/P20WFGh/g8k1u0EN
y4QeGhVnRxUVb/uI5dYissvqw+x7MLLp18wNaog9xls1Ij/O9g0GEuqBVETjiWY5
WKQ3JpTMSZRJwmYrdiMOgp8gqguIzY+xz9JIdlpzIo360a5fuUDF2lxr5Y5pO2Ce
B0PE3ghguEtHnEC4Auj1hC+UDHONBPPfUt1mQ4xW2F/y/noeZH4aes4VyHT1Q0Za
iq8jT80sSHPtQ90JtTXgoG91CZ27N2G6ulYkjXm941+ilIwl+5pCRvpHb4C/zmEP
tNKsArR3fMGjsdIW
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:47 2025 by rpki-client