Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207320.roa
File: AS207320.roa (raw, json)
Hash identifier: wHB3z9KF1wpKNB2lqK99CzfVSVHe49P+JfPuy4jHIW0=
Subject key identifier: CA:27:0A:F4:09:A3:F7:94:10:41:0B:DA:1E:1B:EA:E6:0F:B1:65:50
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4E640600D973C542683231946E086F36FBA8DD8C
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207320.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 207320
IP address blocks: 2a06:a005:43d::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:64:06:00:d9:73:c5:42:68:32:31:94:6e:08:6f:36:fb:a8:dd:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=CA270AF409A3F79410410BDA1E1BEAE60FB16550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3e:4a:a6:8b:b4:1c:35:5f:ed:b5:0f:bd:8f:
ec:d9:d8:95:b6:98:82:32:7c:51:52:a7:3e:65:bd:
68:62:d0:02:a9:7a:cf:f1:70:14:17:56:21:57:eb:
cd:35:e3:60:bd:7b:9b:8a:ed:d0:63:a8:5f:6e:e5:
c1:ce:6c:97:1e:57:95:ea:26:66:c5:f5:82:77:b6:
93:98:6e:cd:ee:03:54:78:6e:51:c8:5a:d5:e5:50:
19:ea:a2:c5:fb:63:e8:8e:6a:77:ca:f1:82:21:4a:
ca:3f:0e:8c:8e:41:c2:a9:0a:9b:94:a6:3e:0c:c1:
8d:dd:8f:47:ee:e6:5a:5c:c7:64:bc:95:44:be:a7:
cb:0c:0e:cc:99:48:55:e8:ce:64:40:5d:88:f4:39:
ba:b9:2a:0e:83:dd:35:4c:05:3a:7c:23:29:16:e7:
98:09:d2:4b:3d:43:6e:66:d5:8e:5c:c5:c7:e8:4b:
de:48:07:5d:29:85:d7:91:28:a7:a9:1e:13:0d:94:
4e:a3:14:c7:d6:e5:28:63:e6:68:1f:f0:8e:ab:8d:
af:aa:d2:44:d5:b3:70:e1:f2:f2:37:b8:b3:b4:64:
ac:3f:30:5b:02:6f:f3:d0:cd:ff:8e:d3:7b:ce:7b:
ef:b0:08:ea:31:5a:66:ec:ab:a4:3d:92:5c:20:9b:
8e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:27:0A:F4:09:A3:F7:94:10:41:0B:DA:1E:1B:EA:E6:0F:B1:65:50
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS207320.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:43d::/48
Signature Algorithm: sha256WithRSAEncryption
89:b2:79:f7:71:9b:63:e8:64:fb:eb:dd:d7:40:7f:5e:14:e2:
89:07:cf:ff:bb:52:a2:fb:5f:c0:c2:ce:8c:5b:fc:09:bb:bd:
33:43:51:2a:60:1b:86:fb:71:ac:ff:c7:34:28:f5:6f:c0:ef:
b1:25:98:5f:34:1c:ad:df:c7:c1:e7:6f:c1:7d:fa:f0:98:e7:
66:04:54:f8:89:ee:ed:2b:1f:f6:75:5d:17:2a:db:e3:40:27:
44:73:81:ff:7b:73:52:eb:7d:4b:3b:57:52:c4:a6:00:8b:23:
d7:4d:86:26:cb:f4:da:14:28:a9:88:72:10:71:ca:3d:e1:24:
c8:f7:6f:66:25:bf:ac:df:c8:b1:46:07:c4:59:c3:34:1e:94:
c8:34:3a:40:27:ee:fc:3f:1d:4b:0b:ab:ab:bf:f7:bc:0a:78:
71:0a:f2:5f:88:05:42:ea:c4:a0:af:87:86:fc:00:c4:90:75:
50:c8:fc:83:13:9f:1c:cd:2e:b5:ca:10:63:dc:5a:50:4d:2f:
d6:a3:33:a2:1f:ed:5d:aa:d4:06:d3:36:38:3e:21:74:97:c5:
7e:42:66:d8:10:c1:8e:16:5b:0f:a1:9e:bf:dd:d1:af:0e:8c:
83:86:75:0d:b0:1f:b3:cc:d5:cd:37:ed:e5:06:87:e8:72:06:
8b:91:81:e8
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUTmQGANlzxUJoMjGUbghvNvuo3YwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MTBaFw0yNTExMDQwMzQwMTBaMDMxMTAvBgNV
BAMTKENBMjcwQUY0MDlBM0Y3OTQxMDQxMEJEQTFFMUJFQUU2MEZCMTY1NTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQPkqmi7QcNV/ttQ+9j+zZ2JW2
mIIyfFFSpz5lvWhi0AKpes/xcBQXViFX680142C9e5uK7dBjqF9u5cHObJceV5Xq
JmbF9YJ3tpOYbs3uA1R4blHIWtXlUBnqosX7Y+iOanfK8YIhSso/DoyOQcKpCpuU
pj4MwY3dj0fu5lpcx2S8lUS+p8sMDsyZSFXozmRAXYj0Obq5Kg6D3TVMBTp8IykW
55gJ0ks9Q25m1Y5cxcfoS95IB10phdeRKKepHhMNlE6jFMfW5Shj5mgf8I6rja+q
0kTVs3Dh8vI3uLO0ZKw/MFsCb/PQzf+O03vOe++wCOoxWmbsq6Q9klwgm44XAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUyicK9Amj95QQQQvaHhvq5g+xZVAwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA3MzIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQQ9MA0GCSqGSIb3DQEBCwUAA4IBAQCJsnn3
cZtj6GT7693XQH9eFOKJB8//u1Ki+1/Aws6MW/wJu70zQ1EqYBuG+3Gs/8c0KPVv
wO+xJZhfNByt38fB52/BffrwmOdmBFT4ie7tKx/2dV0XKtvjQCdEc4H/e3NS631L
O1dSxKYAiyPXTYYmy/TaFCipiHIQcco94STI929mJb+s38ixRgfEWcM0HpTINDpA
J+78Px1LC6urv/e8CnhxCvJfiAVC6sSgr4eG/ADEkHVQyPyDE58czS61yhBj3FpQ
TS/WozOiH+1dqtQG0zY4PiF0l8V+QmbYEMGOFlsPoZ6/3dGvDoyDhnUNsB+zzNXN
N+3lBofocgaLkYHo
-----END CERTIFICATE-----
Generated at Thu Mar 13 01:42:28 2025 by rpki-client