Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211367.roa
File: AS211367.roa (raw, json)
Hash identifier: j8OeyrRzCuFmrCGjBwy3TFMJuRFu7pMzxkCXEDxgwas=
Subject key identifier: 8E:6E:1C:13:14:0D:42:8A:31:B4:68:1C:FF:1E:CD:96:F1:26:F3:B1
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 74713780A0CBB7C1E3B3D8D25E201C5F4BCC5143
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211367.roa
Signing time: Tue 05 Nov 2024 03:40:10 +0000
ROA not before: Tue 05 Nov 2024 03:35:10 +0000
ROA not after: Tue 04 Nov 2025 03:40:10 +0000
asID: 211367
IP address blocks: 2a06:a005:420::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:71:37:80:a0:cb:b7:c1:e3:b3:d8:d2:5e:20:1c:5f:4b:cc:51:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:10 2024 GMT
Not After : Nov 4 03:40:10 2025 GMT
Subject: CN=8E6E1C13140D428A31B4681CFF1ECD96F126F3B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f6:50:99:18:76:01:a4:5a:ce:95:1a:eb:68:
7a:43:5d:34:81:cf:71:7a:f7:f8:74:40:04:bc:e7:
48:19:fc:33:95:d6:78:e3:b8:37:ad:8b:cd:84:34:
69:fb:8c:15:c8:44:84:1a:75:8b:9a:29:c7:a8:96:
20:c5:78:a3:8a:c5:2f:1d:10:e5:e1:df:07:ae:61:
11:4a:a1:d0:b8:ac:b5:50:a7:ed:96:6a:12:6e:d0:
85:67:89:bb:4b:3d:41:fe:68:47:1e:a4:72:f2:7f:
ed:8b:26:46:c7:0a:5b:be:72:1f:2c:d5:4f:fc:50:
ad:9f:f3:21:3e:4c:6f:de:4c:8f:24:f1:c4:07:bb:
1c:85:bf:1d:e7:da:61:a4:ca:58:b8:88:86:cd:51:
78:94:01:32:16:16:18:1b:03:73:91:3a:c4:f5:a4:
e5:40:44:0b:eb:64:d8:c2:12:aa:76:7f:76:cb:27:
28:88:40:65:12:8d:e0:34:a4:c7:c4:10:b8:7c:5a:
d9:95:ac:0b:4c:b5:15:16:aa:48:0b:b4:81:be:a0:
6c:0b:05:ca:b4:2c:2a:bb:68:05:a4:7e:ed:76:c4:
0b:48:dd:d2:eb:b5:2b:e7:1e:3e:3c:7f:4e:46:57:
b8:ce:c8:d1:4f:a5:65:33:a5:5a:07:9b:73:49:d3:
9a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6E:1C:13:14:0D:42:8A:31:B4:68:1C:FF:1E:CD:96:F1:26:F3:B1
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS211367.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:420::/44
Signature Algorithm: sha256WithRSAEncryption
9a:f5:5f:35:53:4f:f4:d2:80:61:29:11:71:77:f8:c7:25:28:
05:65:21:c6:49:55:1a:1a:3c:cc:2a:bf:2f:de:1d:f2:3d:a4:
2a:b3:a4:7d:1b:46:6c:3a:61:21:bf:b6:c0:dd:eb:dd:ec:17:
b9:89:be:5d:62:cf:81:dc:08:77:6b:38:ff:cd:da:07:ad:fb:
b2:7c:3c:e6:ab:dc:9d:03:a8:8d:f2:8f:40:5b:a5:92:e4:d1:
b3:ab:8b:54:80:2f:47:38:b1:b5:db:37:73:69:b7:07:3c:35:
a6:6d:e7:bd:7e:a8:b1:ce:e8:bf:c2:78:c3:9b:7f:1e:8e:67:
96:92:f0:a3:3c:92:a3:14:37:31:18:0d:20:6c:23:54:01:57:
56:22:b1:2d:50:0c:00:9f:14:e6:fd:d6:2e:0e:07:48:01:86:
15:de:75:77:70:9e:b7:f8:98:99:22:c9:ae:ef:14:81:28:99:
d7:61:fd:19:26:96:53:cd:7f:c9:37:75:6b:f5:97:1f:ea:65:
be:77:15:e3:69:4c:6d:e1:a9:e1:e5:e2:c1:97:89:31:75:b5:
d1:ef:16:c5:28:53:c3:38:a1:1f:ed:af:4f:cc:80:c9:a5:4d:
8f:e5:1d:4b:d5:0f:23:d9:b2:aa:a2:96:ed:ad:9c:1c:58:50:
7f:ff:b0:20
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUdHE3gKDLt8Hjs9jSXiAcX0vMUUMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDExMDUwMzM1MTBaFw0yNTExMDQwMzQwMTBaMDMxMTAvBgNV
BAMTKDhFNkUxQzEzMTQwRDQyOEEzMUI0NjgxQ0ZGMUVDRDk2RjEyNkYzQjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq9lCZGHYBpFrOlRrraHpDXTSB
z3F69/h0QAS850gZ/DOV1njjuDeti82ENGn7jBXIRIQadYuaKceoliDFeKOKxS8d
EOXh3weuYRFKodC4rLVQp+2WahJu0IVnibtLPUH+aEcepHLyf+2LJkbHClu+ch8s
1U/8UK2f8yE+TG/eTI8k8cQHuxyFvx3n2mGkyli4iIbNUXiUATIWFhgbA3OROsT1
pOVARAvrZNjCEqp2f3bLJyiIQGUSjeA0pMfEELh8WtmVrAtMtRUWqkgLtIG+oGwL
Bcq0LCq7aAWkfu12xAtI3dLrtSvnHj48f05GV7jOyNFPpWUzpVoHm3NJ05rrAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUjm4cExQNQooxtGgc/x7NlvEm87EwHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBwBggrBgEF
BQcBCwRkMGIwYAYIKwYBBQUHMAuGVHJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjExMzY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcEKgagBQQgMA0GCSqGSIb3DQEBCwUAA4IBAQCa9V81
U0/00oBhKRFxd/jHJSgFZSHGSVUaGjzMKr8v3h3yPaQqs6R9G0ZsOmEhv7bA3evd
7Be5ib5dYs+B3Ah3azj/zdoHrfuyfDzmq9ydA6iN8o9AW6WS5NGzq4tUgC9HOLG1
2zdzabcHPDWmbee9fqixzui/wnjDm38ejmeWkvCjPJKjFDcxGA0gbCNUAVdWIrEt
UAwAnxTm/dYuDgdIAYYV3nV3cJ63+JiZIsmu7xSBKJnXYf0ZJpZTzX/JN3Vr9Zcf
6mW+dxXjaUxt4anh5eLBl4kxdbXR7xbFKFPDOKEf7a9PzIDJpU2P5R1L1Q8j2bKq
opbtrZwcWFB//7Ag
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:14 2025 by rpki-client