Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208385.roa
File: AS208385.roa (raw, json)
Hash identifier: fbpaR43jwSjEltbybzaYIdGeGy2znO7YV3Fk3e6GmEg=
Subject key identifier: 0F:99:66:DE:8D:C6:46:A8:90:85:7D:CD:F2:96:AE:E5:21:AC:B8:1C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 73961A9E7BF2E34030F6D9805CA58416E2AC1437
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208385.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 208385
IP address blocks: 2a06:a005:854::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:96:1a:9e:7b:f2:e3:40:30:f6:d9:80:5c:a5:84:16:e2:ac:14:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=0F9966DE8DC646A890857DCDF296AEE521ACB81C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:33:96:03:09:f5:1c:75:81:8f:dd:dc:f5:84:
51:d0:e9:c5:b3:53:0a:f0:89:45:eb:6d:d6:91:b8:
c5:d4:c8:a2:7f:d4:bc:20:d1:ea:3c:a5:23:0c:8d:
5c:10:10:3a:da:18:b6:93:6e:52:de:7a:86:0e:13:
07:9d:5a:92:9d:29:79:8c:4e:9d:24:fe:8e:9a:37:
3b:e3:0c:2d:ef:74:8d:87:8c:da:93:84:64:fe:d2:
eb:9f:42:57:8e:6b:a7:e3:3b:62:a4:32:f7:0a:9b:
d8:5d:f4:cb:23:08:44:7f:5a:d8:8a:fb:c8:9d:ed:
ea:a0:14:f1:1a:e3:66:d4:88:50:1b:16:9c:22:e2:
af:86:70:76:d5:64:fa:2c:99:c6:68:0e:9b:7c:6f:
e5:a2:5a:39:3c:5f:43:a0:02:43:90:5b:c5:86:1d:
86:73:37:7a:ca:ba:2c:13:a7:1d:2d:a0:ce:b2:81:
60:75:92:46:8a:8c:c4:57:b9:a5:87:13:87:3e:52:
66:b0:cb:5a:a4:4e:9f:e7:8e:e9:38:cc:7b:73:03:
11:ad:06:f4:cc:8b:49:2f:49:34:5d:5c:7e:e4:a5:
60:bd:64:21:2a:f7:44:1b:82:43:0f:a9:3f:d9:6f:
de:2b:46:b8:5b:97:45:25:58:5c:c2:f4:7a:62:73:
7e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:99:66:DE:8D:C6:46:A8:90:85:7D:CD:F2:96:AE:E5:21:AC:B8:1C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208385.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:854::/48
Signature Algorithm: sha256WithRSAEncryption
15:88:ab:3d:24:9a:d8:44:10:38:30:8b:2b:75:f4:7e:25:78:
10:7f:32:fc:4a:80:e8:b3:05:ed:cf:cd:ee:58:b8:74:61:55:
b6:03:80:f0:b5:dc:c3:05:cc:9b:80:19:fc:fd:36:da:d6:23:
30:b0:99:57:8e:b3:2a:6d:96:60:97:5c:7a:08:d6:0a:10:37:
42:fa:ab:4e:67:51:1e:2d:6d:09:62:eb:e9:f4:6b:55:28:27:
28:36:cd:db:13:3c:33:15:4f:00:b1:3f:6d:a4:6b:b6:63:04:
23:f6:1c:96:d1:cb:8c:d0:6a:1f:9e:5b:48:e2:2c:65:00:84:
c2:40:eb:72:7d:63:90:bb:8d:a2:0b:8c:12:8d:dd:f4:84:e8:
17:64:74:2a:d5:43:d8:12:ed:b0:58:78:50:a7:c6:7d:a6:3a:
ee:b4:d2:a0:37:cb:9c:58:4e:88:29:13:58:a3:ef:fc:20:f3:
c7:34:0b:26:fb:6a:d0:cc:58:f4:cc:7f:47:6d:93:97:af:41:
6e:ac:36:71:12:34:6e:6b:d4:75:f8:da:8b:33:59:d5:cf:39:
79:db:b2:32:6d:76:83:80:0b:93:a9:f1:02:84:97:30:f1:4e:
f3:2f:06:f6:36:e5:ef:69:0b:db:8f:82:de:3b:53:f3:28:a5:
bb:8c:d1:74
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUc5Yannvy40Aw9tmAXKWEFuKsFDcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MDZaFw0yNTExMDQwMzQwMDZaMDMxMTAvBgNV
BAMTKDBGOTk2NkRFOERDNjQ2QTg5MDg1N0RDREYyOTZBRUU1MjFBQ0I4MUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYM5YDCfUcdYGP3dz1hFHQ6cWz
UwrwiUXrbdaRuMXUyKJ/1Lwg0eo8pSMMjVwQEDraGLaTblLeeoYOEwedWpKdKXmM
Tp0k/o6aNzvjDC3vdI2HjNqThGT+0uufQleOa6fjO2KkMvcKm9hd9MsjCER/WtiK
+8id7eqgFPEa42bUiFAbFpwi4q+GcHbVZPosmcZoDpt8b+WiWjk8X0OgAkOQW8WG
HYZzN3rKuiwTpx0toM6ygWB1kkaKjMRXuaWHE4c+Umawy1qkTp/njuk4zHtzAxGt
BvTMi0kvSTRdXH7kpWC9ZCEq90QbgkMPqT/Zb94rRrhbl0UlWFzC9Hpic34/AgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUD5lm3o3GRqiQhX3N8pau5SGsuBwwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjA4Mzg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgagBQhUMA0GCSqGSIb3DQEBCwUAA4IBAQAViKs9
JJrYRBA4MIsrdfR+JXgQfzL8SoDoswXtz83uWLh0YVW2A4DwtdzDBcybgBn8/Tba
1iMwsJlXjrMqbZZgl1x6CNYKEDdC+qtOZ1EeLW0JYuvp9GtVKCcoNs3bEzwzFU8A
sT9tpGu2YwQj9hyW0cuM0GofnltI4ixlAITCQOtyfWOQu42iC4wSjd30hOgXZHQq
1UPYEu2wWHhQp8Z9pjrutNKgN8ucWE6IKRNYo+/8IPPHNAsm+2rQzFj0zH9HbZOX
r0FurDZxEjRua9R1+NqLM1nVzzl527IybXaDgAuTqfEChJcw8U7zLwb2NuXvaQvb
j4LeO1PzKKW7jNF0
-----END CERTIFICATE-----
Generated at Thu Mar 13 01:42:28 2025 by rpki-client