Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203867.roa
File: AS203867.roa (raw, json)
Hash identifier: YKShJIaRUX0AI7RrPC4HTBrE02d21tLYYy/7EGs9HB4=
Subject key identifier: 43:2C:FE:B0:A8:F0:46:56:05:7F:67:37:FF:57:DF:46:2A:72:25:BB
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 289D217FCAF0F83E521911D6A2F8475655B4F7CA
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203867.roa
Signing time: Tue 03 Dec 2024 02:40:12 +0000
ROA not before: Tue 03 Dec 2024 02:35:12 +0000
ROA not after: Tue 02 Dec 2025 02:40:12 +0000
asID: 203867
IP address blocks: 2a06:a005:e40::/44 maxlen: 48
2a06:a005:1010::/44 maxlen: 48
2a06:a005:12a0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:9d:21:7f:ca:f0:f8:3e:52:19:11:d6:a2:f8:47:56:55:b4:f7:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Dec 3 02:35:12 2024 GMT
Not After : Dec 2 02:40:12 2025 GMT
Subject: CN=432CFEB0A8F04656057F6737FF57DF462A7225BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e4:8d:9d:02:93:06:15:35:4a:cd:7d:96:98:
7c:bf:c3:31:b0:19:1d:1e:6e:20:83:c1:da:27:db:
78:ab:6e:ea:b3:51:90:a6:e8:6d:1c:23:3e:f0:f4:
fd:ac:f0:62:40:80:aa:0e:c5:fd:e7:d0:bb:fe:59:
eb:dd:fd:20:92:d9:e0:98:f1:9b:86:c5:ad:04:cb:
e7:8f:f7:d2:55:2e:77:68:04:d5:4e:d8:f8:00:f9:
82:0c:e6:be:cd:01:3f:ee:c9:64:9d:1c:6e:f9:2d:
ef:30:cc:fc:88:4a:b1:5c:04:7c:8b:c3:a3:32:7b:
35:c6:c7:a6:08:73:e6:a0:30:ee:11:6f:5b:20:e1:
5d:0a:30:6a:07:32:10:73:5b:2f:61:1b:83:eb:f8:
84:5b:ec:41:85:21:8d:ac:c0:59:5c:33:8a:0f:ee:
0e:83:d8:9e:ab:e7:03:c1:37:ac:57:4c:0f:f9:da:
7c:4d:87:2d:e1:41:f5:f1:e9:6f:3d:21:6a:5a:5f:
6e:be:39:1d:a7:a4:88:bc:31:82:80:c4:ed:9f:f3:
9e:63:40:92:07:92:38:f4:2d:19:ef:81:0a:bf:01:
da:5c:a2:ce:cd:13:11:6c:9b:22:db:20:f6:b8:0d:
0a:1a:20:e3:1c:99:09:e1:39:e3:66:ff:ea:e9:7c:
b1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2C:FE:B0:A8:F0:46:56:05:7F:67:37:FF:57:DF:46:2A:72:25:BB
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS203867.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:e40::/44
2a06:a005:1010::/44
2a06:a005:12a0::/44
Signature Algorithm: sha256WithRSAEncryption
7d:73:c2:92:a9:04:ff:24:83:46:4a:a1:17:94:80:6f:cd:13:
c9:af:ba:27:f3:1f:2e:a3:6c:34:10:ee:f9:10:14:64:1d:72:
8d:7a:8a:11:89:91:b6:96:cc:d4:d7:a9:0f:72:25:d1:b2:e7:
f7:e2:14:d4:cd:a5:1d:1c:82:72:d7:e4:cd:0f:29:d6:86:6b:
00:5f:46:29:fb:0d:33:34:b1:26:81:eb:5c:57:d1:dd:32:e7:
73:86:56:36:3a:e5:33:1a:63:6c:45:1d:22:30:26:31:33:10:
43:f5:df:60:ec:b1:b5:83:24:5b:de:10:79:1e:e1:c2:12:10:
7d:d7:28:ca:97:90:b6:e9:f1:bd:f9:12:9c:b5:84:3d:d3:9a:
62:06:10:de:06:f4:34:7f:25:f8:20:d5:d4:36:05:f6:43:38:
81:03:94:26:7f:9d:dd:77:fa:b1:dc:a4:11:d6:85:c8:0b:a2:
d8:6d:3c:cc:6f:a9:d5:2c:fb:23:ca:95:7f:f5:e9:f6:d1:7e:
71:72:79:31:17:7e:77:77:2f:6f:37:27:d2:e5:99:44:8c:40:
25:16:c7:68:e1:4c:50:63:f6:c3:ae:68:fe:f9:2c:35:40:73:
5e:87:0f:8f:a9:a3:f4:91:cc:af:0c:9d:44:76:2f:15:8c:8c:
80:9e:ea:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:16:51 2025 by rpki-client