Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204710.roa
File: AS204710.roa (raw, json)
Hash identifier: e3gpZtVXCX2m/upBsTWDvX5m5h7SL7/uoRbVTJN6ciE=
Subject key identifier: 7F:AA:F6:5A:2F:E9:FC:7F:2B:08:7D:54:44:AB:93:6B:2F:FF:E0:52
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2210752A6C9FF2A177ED7D4E3C8F711FE2262AC1
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204710.roa
Signing time: Tue 05 Nov 2024 03:40:03 +0000
ROA not before: Tue 05 Nov 2024 03:35:03 +0000
ROA not after: Tue 04 Nov 2025 03:40:03 +0000
asID: 204710
IP address blocks: 2a06:a005:a0a::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:10:75:2a:6c:9f:f2:a1:77:ed:7d:4e:3c:8f:71:1f:e2:26:2a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:03 2024 GMT
Not After : Nov 4 03:40:03 2025 GMT
Subject: CN=7FAAF65A2FE9FC7F2B087D5444AB936B2FFFE052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a3:63:1d:61:ec:8a:e6:a9:38:fd:26:4c:ab:
a2:09:19:60:05:2b:71:38:c4:ab:89:ac:38:af:7d:
df:df:22:d3:6c:b9:df:16:d9:4a:af:a3:9f:c9:8b:
90:60:d0:b1:f7:58:1c:d2:f3:1c:95:3e:a2:d7:98:
0d:fc:dd:5c:25:3e:1e:c9:7a:2a:63:04:1d:1e:da:
f7:a1:79:79:10:2c:35:d2:44:93:fe:3e:23:19:e0:
9f:19:ed:bb:de:c7:c9:18:93:d6:4c:06:9e:3e:53:
46:92:78:b9:5f:9f:84:81:6b:3d:6b:90:86:74:ce:
a2:19:29:22:28:f8:a6:d5:4f:b1:0b:a0:9b:ae:b8:
a7:a3:66:85:de:93:52:a0:e5:2d:38:8a:47:ab:b0:
56:05:c5:df:0a:ac:ec:0f:bf:75:4c:9c:43:a9:59:
c0:ba:20:34:ce:c7:3c:2c:88:ac:3f:e3:20:e1:be:
09:57:66:e5:08:16:3e:4f:08:da:aa:5a:48:99:c0:
b6:16:8f:42:a8:74:2b:25:71:16:65:a2:79:f5:5c:
84:56:75:1d:46:48:a7:82:ca:4c:ba:ff:53:fc:6d:
dc:40:ed:10:7d:0c:ec:4e:9e:97:f1:fa:80:ca:b2:
27:80:5a:b3:dd:8b:c4:c5:b7:96:df:ce:88:bb:f0:
42:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:AA:F6:5A:2F:E9:FC:7F:2B:08:7D:54:44:AB:93:6B:2F:FF:E0:52
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS204710.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:a0a::/48
Signature Algorithm: sha256WithRSAEncryption
34:c0:58:3e:e9:ce:ab:94:28:de:b4:40:56:49:7b:00:31:85:
93:9b:d3:28:8d:9f:ba:13:8b:ac:73:fa:e2:65:d1:7e:d3:84:
11:50:8e:f3:7f:6c:2a:e1:f7:ca:2c:20:a2:29:4c:28:09:39:
03:22:e2:33:fe:c0:8f:bf:78:e4:35:e4:25:93:ea:33:f0:5a:
41:a5:c2:ff:f1:46:20:83:d3:7f:df:5e:fc:23:77:b4:2c:df:
28:bc:ba:5e:cb:83:e8:f3:c0:6a:3a:82:31:d4:e3:00:72:6a:
8f:c2:92:b0:97:59:71:25:25:23:dd:7f:d9:84:48:ae:03:65:
18:bc:b4:ed:13:b7:79:20:00:c7:49:e4:5f:b1:e7:cb:8d:06:
05:e5:96:0e:ca:78:9e:6c:90:aa:be:1c:28:27:15:b8:98:25:
c8:e1:6e:f0:c3:7b:32:60:e5:b8:43:f0:53:e9:35:8f:b3:3a:
e3:af:25:87:05:cc:2f:9f:6a:d6:3e:7a:a3:58:8b:4a:0c:ed:
32:99:58:a0:9d:10:44:bb:fc:2d:ca:47:7a:8b:58:c7:56:13:
b8:52:8c:5a:6e:9d:48:bb:25:98:db:18:6a:ed:bb:ce:7e:91:
af:cd:1c:03:41:ff:62:d1:e7:1a:5a:60:7a:0a:8f:65:d4:d5:
06:d2:ef:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:44 2025 by rpki-client