Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211144.roa
File: AS211144.roa (raw, json)
Hash identifier: V++4nkbP7b/1QdmQyT7ErswxOq8Ji4pW+r+csc8P8/k=
Subject key identifier: 12:AA:D7:6D:A9:0C:ED:FF:A0:39:34:65:76:62:D1:81:B4:E1:15:FF
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 5C45ACDDABA741F14CF3176F602237D4411EADFA
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211144.roa
Signing time: Tue 05 Nov 2024 03:40:03 +0000
ROA not before: Tue 05 Nov 2024 03:35:03 +0000
ROA not after: Tue 04 Nov 2025 03:40:03 +0000
asID: 211144
IP address blocks: 2a06:a005:18::/48 maxlen: 48
2a06:a005:2d0::/48 maxlen: 48
2a06:a005:431::/48 maxlen: 48
2a06:a005:440::/44 maxlen: 48
2a06:a005:5b4::/48 maxlen: 48
2a06:a005:9f0::/44 maxlen: 48
2a06:a005:a07::/48 maxlen: 48
2a06:a005:127a::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:45:ac:dd:ab:a7:41:f1:4c:f3:17:6f:60:22:37:d4:41:1e:ad:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:03 2024 GMT
Not After : Nov 4 03:40:03 2025 GMT
Subject: CN=12AAD76DA90CEDFFA03934657662D181B4E115FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:98:d9:2d:34:74:4e:4e:c0:b2:e5:c5:7a:bc:
26:30:af:db:60:3b:c7:5c:0f:2d:39:5f:62:51:5b:
40:42:73:a0:0d:61:b7:38:5c:b4:10:d2:c6:c9:40:
c3:78:73:05:74:b3:30:c7:3a:42:f9:fc:44:67:86:
b9:2a:8d:a3:6c:cf:68:d0:47:bc:a0:85:1f:f3:66:
e7:c3:77:97:5e:0b:01:f4:6e:58:fe:73:e9:c2:be:
67:43:de:ed:5d:20:da:f1:59:68:c9:d1:96:69:37:
dc:c6:f7:10:2c:6e:1d:8b:65:bc:86:ba:c6:3b:da:
31:4b:2f:41:9e:c9:67:45:8a:aa:3f:77:44:f8:f8:
81:7a:01:c4:6d:95:06:dc:35:64:56:fa:cf:16:78:
52:b9:00:08:b0:49:fb:d4:aa:52:00:15:3a:38:5d:
ff:2c:05:1d:c9:fe:bb:ee:e7:5d:5b:4f:37:b3:b0:
b7:da:be:3a:33:f8:fd:2f:17:82:71:76:41:7c:2b:
32:ef:b9:21:48:e5:5e:db:83:15:f9:09:8a:bc:9e:
39:c4:2f:50:70:96:0b:58:47:0a:4b:13:80:f7:02:
ae:98:4b:35:8c:d1:65:e9:8f:7d:c7:6d:55:05:f3:
16:ad:37:30:7f:9d:3e:fc:62:c9:95:c7:cf:82:d4:
73:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:AA:D7:6D:A9:0C:ED:FF:A0:39:34:65:76:62:D1:81:B4:E1:15:FF
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211144.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:18::/48
2a06:a005:2d0::/48
2a06:a005:431::/48
2a06:a005:440::/44
2a06:a005:5b4::/48
2a06:a005:9f0::/44
2a06:a005:a07::/48
2a06:a005:127a::/48
Signature Algorithm: sha256WithRSAEncryption
79:4a:27:64:02:56:0c:b0:a4:c7:71:16:4a:61:68:2a:a0:19:
bc:fc:6b:96:cf:94:84:26:aa:d4:46:50:94:b4:18:a0:51:ef:
d3:39:77:5d:63:9e:7e:72:f5:4b:07:8a:8d:f6:71:6e:17:fb:
06:65:94:9c:cc:4b:8e:34:81:25:b7:f0:33:7e:22:5e:2b:10:
09:d8:b3:e2:ef:3d:4b:2b:db:83:60:4f:2a:26:31:fd:97:69:
52:37:89:b4:0c:c9:f7:be:06:f6:55:14:46:81:ee:af:a5:d8:
bf:95:85:de:34:76:f6:99:c4:29:14:f9:1e:15:99:50:f9:00:
73:fa:7d:52:9f:a2:67:41:f3:54:b4:fd:1d:40:1f:d2:c3:11:
3f:2b:2a:59:5f:6f:97:19:40:05:82:27:4c:e9:e5:d6:c2:47:
7e:70:47:96:45:24:74:44:e9:a4:21:9f:28:b0:9d:3b:b3:c4:
8a:ed:e0:c7:3a:32:e1:7b:f5:7c:ea:6d:d0:22:c3:6d:3b:29:
89:0e:cc:41:6a:1d:f0:4b:fb:0a:a8:1e:a6:dd:f1:b9:81:e3:
9d:9c:8f:09:44:b4:70:d1:ea:e2:4d:0d:4c:68:85:2a:b5:4f:
a0:68:62:11:f5:9b:ec:3f:5a:95:82:32:07:d9:7d:91:c1:e6:
b5:2f:e2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:10 2025 by rpki-client