Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203857.roa
File: AS203857.roa (raw, json)
Hash identifier: 2xcG9i9cQM2xcn30NDxKT5mvR5XGAacBJ4tsvwwq+7o=
Subject key identifier: 32:BF:8E:CA:25:04:D7:53:99:39:7B:79:C2:05:4D:0D:F5:24:2F:41
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 484541961C508F70103EAB15F4814F9A7E59E71B
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203857.roa
Signing time: Thu 20 Jun 2024 10:35:58 +0000
ROA not before: Thu 20 Jun 2024 10:30:58 +0000
ROA not after: Thu 19 Jun 2025 10:35:58 +0000
asID: 203857
IP address blocks: 2a06:a005:456::/48 maxlen: 48
2a06:a005:4d2::/48 maxlen: 48
2a06:a005:4d3::/48 maxlen: 48
2a06:a005:4d4::/48 maxlen: 48
2a06:a005:4d6::/48 maxlen: 48
2a06:a005:4d7::/48 maxlen: 48
2a06:a005:5eb::/48 maxlen: 48
2a06:a005:5ed::/48 maxlen: 48
2a06:a005:5ee::/48 maxlen: 48
2a06:a005:5ef::/48 maxlen: 48
2a06:a005:850::/48 maxlen: 48
2a06:a005:a01::/48 maxlen: 48
2a06:a005:a02::/48 maxlen: 48
2a06:a005:a08::/48 maxlen: 48
2a06:a005:b68::/48 maxlen: 48
2a06:a005:d4d::/48 maxlen: 48
2a06:a005:1270::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jun 2024 10:36:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:45:41:96:1c:50:8f:70:10:3e:ab:15:f4:81:4f:9a:7e:59:e7:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jun 20 10:30:58 2024 GMT
Not After : Jun 19 10:35:58 2025 GMT
Subject: CN=32BF8ECA2504D75399397B79C2054D0DF5242F41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2f:36:4b:5a:75:74:9f:ba:f3:35:b2:24:d5:
ba:66:d9:ca:58:9d:53:6c:89:a1:54:6b:a9:82:ae:
8e:cc:8b:8d:b2:fa:da:8c:13:c9:dc:8e:88:cb:fd:
71:b3:f7:15:f4:74:e5:23:b7:8c:1b:ac:d4:6d:f9:
a8:56:b9:ac:af:b2:27:1a:f8:7e:25:6b:36:7f:17:
39:08:80:2d:85:a8:54:53:49:2f:42:8a:ef:58:fc:
04:4f:58:4d:2d:2e:ef:52:bd:c2:25:3f:41:18:de:
97:5f:2e:11:bf:84:13:5a:6a:f2:3c:5f:00:de:a8:
74:8f:f2:4a:07:7a:3e:9a:56:7f:6b:2c:92:0c:21:
49:72:0f:04:2e:2b:27:a2:65:c9:b5:74:cf:c2:35:
cd:25:31:25:9b:3f:94:44:19:52:20:12:42:65:9e:
1b:4a:2a:c7:f4:8a:eb:6b:b9:6c:74:88:09:b9:34:
c0:00:98:11:8f:db:71:c2:1e:7b:00:83:89:88:ea:
5f:ee:25:6c:ae:47:94:70:30:4c:82:22:d4:c4:9a:
9e:73:c0:e8:98:7c:bd:c0:3f:1e:e5:10:09:48:07:
4c:39:82:86:a1:9e:78:41:b0:2b:2f:e9:e2:ce:51:
3c:7c:47:eb:b5:e5:7a:b2:e5:f2:46:fe:44:53:a8:
e2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BF:8E:CA:25:04:D7:53:99:39:7B:79:C2:05:4D:0D:F5:24:2F:41
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203857.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:456::/48
2a06:a005:4d2::-2a06:a005:4d4:ffff:ffff:ffff:ffff:ffff
2a06:a005:4d6::/47
2a06:a005:5eb::/48
2a06:a005:5ed::-2a06:a005:5ef:ffff:ffff:ffff:ffff:ffff
2a06:a005:850::/48
2a06:a005:a01::-2a06:a005:a02:ffff:ffff:ffff:ffff:ffff
2a06:a005:a08::/48
2a06:a005:b68::/48
2a06:a005:d4d::/48
2a06:a005:1270::/48
Signature Algorithm: sha256WithRSAEncryption
9f:e1:f7:57:8f:41:ef:60:4c:c6:4f:86:7a:6e:ef:c4:ab:38:
b2:8c:60:22:13:4a:1a:13:3a:96:50:26:24:47:aa:d0:62:61:
2b:1b:25:a5:f6:f4:bf:9a:8c:43:1d:74:fc:8d:00:c3:df:1f:
99:40:1f:71:56:c7:e1:0d:ed:71:f4:cd:16:1b:cc:ab:56:13:
bd:b1:bb:cc:08:f5:97:06:50:9c:1a:ce:98:b5:6c:c4:b5:82:
54:5a:b6:29:7f:6a:72:89:7c:dd:40:01:07:29:a8:8a:8f:cb:
75:9b:b4:db:42:5f:78:6b:43:42:ad:c2:d2:31:81:00:1e:a0:
51:6a:4f:d0:a2:f6:f8:02:f9:3e:55:19:b7:59:c8:f6:33:2f:
24:00:dd:01:35:d7:74:97:df:30:c4:24:3a:49:46:e1:46:9a:
16:36:22:97:0b:da:bb:d8:54:17:24:82:1c:3d:61:88:ee:ed:
c2:4f:ef:fe:24:cb:e2:1c:20:2a:82:83:5d:f6:ee:b5:7e:4c:
33:c3:d3:3d:86:7f:88:1d:4d:12:01:38:a0:79:83:4a:de:c7:
3c:14:94:03:49:66:0e:f4:79:e3:15:b9:cf:54:a1:c2:dc:33:
4f:06:2c:0d:40:8e:a9:31:b5:9e:c3:08:8e:63:ef:b9:57:ce:
54:98:de:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 14:44:46 2024 by rpki-client on console-fra.rpki-client.org