Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208985.roa
File: AS208985.roa (raw, json)
Hash identifier: oLUb7+gTQrStvbc6+RM1o108+1wTlfL+FXRcDpdPZqs=
Subject key identifier: E3:B3:84:41:7B:80:D8:84:80:04:1D:6F:E3:89:FB:DE:4F:E6:C6:A3
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 67253949917FC010D65FE9BE4B7EB3A53A32F1AE
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208985.roa
Signing time: Tue 05 Nov 2024 03:39:59 +0000
ROA not before: Tue 05 Nov 2024 03:34:59 +0000
ROA not after: Tue 04 Nov 2025 03:39:59 +0000
asID: 208985
IP address blocks: 2a06:a005:710::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:25:39:49:91:7f:c0:10:d6:5f:e9:be:4b:7e:b3:a5:3a:32:f1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:34:59 2024 GMT
Not After : Nov 4 03:39:59 2025 GMT
Subject: CN=E3B384417B80D88480041D6FE389FBDE4FE6C6A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1c:7e:94:a9:a0:73:4d:2c:e7:7e:c7:b0:d2:
0e:c2:c8:30:ff:91:e1:fa:fd:74:41:8e:5a:98:12:
9e:2c:0f:0c:e2:24:65:0f:ac:77:27:31:74:50:1a:
7a:b8:c1:e2:1f:77:a0:db:c3:60:17:23:90:6c:b5:
33:d4:7f:5a:4e:9b:b7:a9:ce:70:92:ee:c9:c2:fb:
cd:85:84:4c:c1:76:78:47:3d:4b:e3:f9:52:d6:ec:
3b:fb:6e:64:24:bc:a8:56:f0:a8:0d:41:7c:e2:4b:
fa:af:47:e9:2f:87:17:77:9f:78:79:7d:ec:b9:4a:
d8:4c:e5:55:36:a5:b6:e6:44:fa:39:4c:5d:33:cd:
cd:60:28:13:11:a8:11:06:25:8b:2c:93:62:c4:ea:
3e:9d:e9:75:5d:6c:57:58:c8:5d:9b:cd:80:c0:8d:
31:fe:e4:a3:8c:ef:00:aa:4c:6f:f9:26:48:44:e3:
7c:1d:18:4c:82:41:50:c6:28:4b:d4:46:40:bf:6d:
60:05:7e:14:6c:4c:fc:81:e5:57:ca:26:0d:7b:85:
91:03:a9:ee:48:f1:2d:94:88:08:04:85:e3:ce:0f:
f4:bb:dc:e8:a1:37:17:2f:51:bd:ac:a4:79:d6:2a:
46:fd:b4:d5:e4:66:09:7d:69:78:6d:6c:0d:1a:2b:
97:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:B3:84:41:7B:80:D8:84:80:04:1D:6F:E3:89:FB:DE:4F:E6:C6:A3
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS208985.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:710::/44
Signature Algorithm: sha256WithRSAEncryption
40:4a:e5:92:0f:d5:0d:34:87:2c:07:63:0e:f8:36:29:18:f0:
45:24:18:c6:c8:90:a9:2d:25:02:d6:cf:7a:a2:75:5f:91:23:
57:2e:20:e5:4e:b4:9b:19:2d:15:9b:4f:27:28:36:92:2b:5e:
3f:eb:9f:50:6a:f6:97:90:54:21:82:51:c3:e8:44:22:c7:2c:
65:63:46:69:ca:fe:74:f4:ca:b0:c1:e4:77:d7:55:63:65:93:
41:2b:0e:1e:95:ce:67:c4:7b:c1:f5:b1:23:2d:9f:d6:62:0f:
d7:b1:74:c1:cb:2f:4d:4d:15:2e:b1:b0:00:cc:ee:19:0e:df:
2f:e0:0b:76:fc:29:f3:e0:65:ea:fd:93:fd:df:ea:23:06:23:
47:64:2b:97:c7:9f:32:b4:9d:60:21:85:17:a6:d1:7b:b4:5c:
b8:37:3f:d0:2e:ff:08:ca:61:59:17:6b:b6:38:52:90:89:38:
82:05:c9:c4:b6:81:ba:96:1a:8a:20:ab:6f:f7:c4:c4:12:2a:
4c:30:01:e0:f2:ec:71:f3:ea:9d:00:61:fc:68:57:c7:39:8e:
bd:e8:2b:1b:7c:7e:bb:34:11:97:14:51:60:c6:1a:3c:b2:1c:
36:17:1a:79:0b:bd:e1:0f:c7:28:15:61:9e:11:e6:78:44:8f:
79:5b:c9:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:42:19 2025 by rpki-client