Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209310.roa
File: AS209310.roa (raw, json)
Hash identifier: ng4jiOruNSs52a7m1k6Nh879/rDPogiGy9HUBobsamo=
Subject key identifier: F9:31:4C:04:C6:E5:5E:81:18:84:5E:C2:B3:52:3C:09:78:29:33:53
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2B46EE81FA81957B97317E7A3037CC9DB51F4098
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209310.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 209310
IP address blocks: 2a06:a005:438::/48 maxlen: 48
2a06:a005:439::/48 maxlen: 48
2a06:a005:43a::/48 maxlen: 48
2a06:a005:43b::/48 maxlen: 48
2a06:a005:451::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:46:ee:81:fa:81:95:7b:97:31:7e:7a:30:37:cc:9d:b5:1f:40:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=F9314C04C6E55E8118845EC2B3523C0978293353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:3a:ba:83:7d:0d:58:1f:ec:f7:93:27:63:f8:
1f:c8:a7:dc:f4:09:d7:73:89:28:a8:df:ea:cb:66:
38:7d:9e:e9:49:e1:69:89:aa:86:91:91:bb:81:37:
cf:c4:7e:73:c2:77:53:2a:84:ea:92:c1:95:6f:d1:
86:56:b7:d7:7d:05:85:9e:dd:ac:8c:6c:c1:32:3b:
dd:cb:8c:67:19:54:09:32:93:9f:0c:6d:88:0a:f8:
1a:2c:6b:f5:45:a0:09:65:65:b8:2d:09:7d:11:1c:
21:bc:1c:35:4a:07:8a:2c:2c:49:8e:74:47:bd:ee:
16:b1:cc:35:72:f9:c4:f5:e4:e4:76:81:60:94:d4:
62:44:91:3a:63:29:55:c3:91:a0:f5:e3:ff:0b:f2:
6f:69:6b:28:84:2e:92:65:80:e1:ae:f7:15:69:ff:
40:ce:bb:a7:7c:ae:3c:46:33:15:24:ed:db:12:30:
17:57:eb:01:7a:3f:63:5e:6f:85:fd:85:c9:72:cc:
49:ad:52:a2:bc:ca:2f:37:22:ad:f4:95:57:f6:59:
ff:e4:e0:bc:fe:80:8d:69:96:38:a6:16:5a:cc:0d:
90:30:b8:78:30:eb:0c:c4:1c:dd:9e:3f:4b:de:d4:
36:d9:ae:56:cc:58:cd:ea:6d:4a:a8:a9:27:05:d1:
71:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:31:4C:04:C6:E5:5E:81:18:84:5E:C2:B3:52:3C:09:78:29:33:53
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS209310.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:438::/46
2a06:a005:451::/48
Signature Algorithm: sha256WithRSAEncryption
63:ff:2a:59:f1:4d:8a:07:95:6f:f3:0a:d5:cf:a8:73:8c:c6:
0b:e4:c6:f6:fa:a1:c3:ba:6b:fd:5d:25:75:c8:e2:64:4d:7d:
e2:eb:21:d4:9f:69:6c:23:4e:8a:dc:15:7d:dd:a7:01:c6:b2:
2a:4a:2b:bb:6a:06:f8:74:8d:85:40:cc:d6:b9:c6:fb:34:eb:
38:e0:1d:6b:8d:03:a5:bc:1b:72:01:2d:a3:be:87:9c:0a:1c:
e3:73:df:b2:3e:3c:5a:31:1d:a7:d7:7a:e6:5b:1d:19:b8:46:
f5:30:8a:e9:09:32:57:3b:cd:59:6c:6e:99:a5:f1:da:c4:0f:
f2:a0:33:3d:bc:26:09:86:0e:91:54:b1:12:ca:b0:71:1a:2f:
58:0d:5f:e3:ec:02:d6:23:86:84:27:b2:91:61:29:43:8e:ef:
10:cf:0d:ab:7c:d6:e7:a1:d4:87:d1:14:38:84:97:1c:b4:99:
c0:f1:7d:ee:83:fd:7d:ac:0c:95:c1:09:1d:79:2f:cc:92:61:
16:97:39:fe:a2:e0:9c:73:a0:f8:a9:ce:36:5b:58:43:67:b4:
f2:45:6b:b3:e0:d8:67:54:d6:88:d8:f1:24:86:86:21:16:48:
9e:27:09:a2:9e:fe:38:24:1f:3c:3d:52:20:0c:15:5a:e8:08:
78:1a:c7:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:46:04 2025 by rpki-client