Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203804.roa
File: AS203804.roa (raw, json)
Hash identifier: qDV+VKJ+MZhVOPhbN7BtzUFiysfYLJVMbbTwkhS6Pmo=
Subject key identifier: 32:78:1E:8A:AF:22:C2:29:F2:EC:8B:02:D7:FE:67:18:FD:B4:92:62
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 221D1299BB8D184EB81641CB2A16576B9A501702
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203804.roa
Signing time: Tue 05 Nov 2024 03:40:03 +0000
ROA not before: Tue 05 Nov 2024 03:35:03 +0000
ROA not after: Tue 04 Nov 2025 03:40:03 +0000
asID: 203804
IP address blocks: 2a06:a005:1340::/44 maxlen: 48
2a06:a005:1350::/44 maxlen: 48
2a06:a005:13b0::/44 maxlen: 48
2a06:a005:13c0::/44 maxlen: 48
2a06:a005:13d0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:1d:12:99:bb:8d:18:4e:b8:16:41:cb:2a:16:57:6b:9a:50:17:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:03 2024 GMT
Not After : Nov 4 03:40:03 2025 GMT
Subject: CN=32781E8AAF22C229F2EC8B02D7FE6718FDB49262
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e8:84:a1:26:46:4e:96:2d:cb:ee:b9:92:e0:
4f:e1:b9:3f:12:ed:83:9e:16:8e:94:e0:b8:24:91:
d1:2d:33:2c:ae:03:1b:78:ae:e0:3e:3f:6b:fc:13:
71:f2:78:aa:a0:fa:cf:65:90:ca:22:9a:8b:15:a4:
34:fd:e4:8a:da:6b:f0:b8:26:77:4f:2b:c1:45:26:
bc:2a:a3:ec:b0:29:38:41:c6:88:43:79:5a:97:69:
79:96:81:c9:1d:75:20:96:49:af:f0:82:d0:99:be:
d0:ca:76:2d:85:85:0d:9e:f3:17:65:89:d9:d4:fc:
49:b6:60:e5:24:19:b9:42:9f:90:89:39:7d:60:52:
f3:35:e2:51:f2:5e:6c:62:6b:8e:1e:b3:1c:1a:11:
37:a6:01:f4:42:63:d6:1e:1b:d1:37:d4:51:84:6c:
53:5f:1a:69:c6:8c:f3:d1:c9:83:93:40:fa:e8:a5:
ff:e9:ec:34:fa:e1:75:cc:d5:06:4c:1b:5d:fb:23:
98:9a:61:89:57:71:ad:6e:30:12:cc:25:86:95:fa:
f7:09:da:8e:fc:c3:7e:2b:67:f3:47:c7:73:a4:25:
50:c2:54:13:ce:82:61:ac:0c:9c:1e:44:b2:66:ae:
c9:1f:be:ba:f4:43:48:fc:38:92:cf:de:c2:52:29:
f7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:78:1E:8A:AF:22:C2:29:F2:EC:8B:02:D7:FE:67:18:FD:B4:92:62
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203804.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:1340::/43
2a06:a005:13b0::-2a06:a005:13df:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d6:c0:35:b2:b7:3b:f3:e8:d6:1a:98:e8:d3:5d:12:06:43:23:
55:3e:83:f7:97:bb:e2:4f:84:65:73:25:b8:0e:cb:09:fb:e0:
a6:dd:3d:83:82:e6:a2:65:f5:b7:2f:6f:cc:c3:67:bb:c9:a2:
d3:63:6e:e9:27:40:04:a9:a2:9d:20:f2:08:9c:33:ca:c8:4f:
4c:70:79:c1:6c:68:19:20:cb:78:c5:3c:2a:7a:e6:74:a0:fb:
c4:2c:dc:87:bf:ce:cb:38:f9:99:1a:03:da:d2:49:e7:43:3a:
08:ec:1a:30:47:92:3a:bf:f1:10:2e:00:5f:45:1d:42:8b:03:
56:61:66:2b:46:80:dd:58:30:fb:ee:a7:df:23:88:66:b2:39:
62:ab:73:2f:ab:f5:ca:af:7f:26:5b:67:45:ef:6c:a6:60:6f:
41:68:7b:03:98:64:37:33:09:6c:9d:e9:f0:c5:4d:e2:1f:bd:
81:91:bd:44:67:97:06:fe:b5:46:3f:86:66:ca:a0:26:f2:8e:
6c:5b:10:cd:b1:3b:df:06:ea:ef:8f:2d:be:bd:28:d6:c4:93:
3b:71:80:8a:0f:ef:cc:d2:e2:be:36:6d:5e:96:4c:00:f3:89:
4f:f7:f7:b3:60:fb:ea:a3:4e:5c:5f:20:fc:7b:9f:77:93:23:
ec:38:98:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:17 2025 by rpki-client