Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212387.roa
File: AS212387.roa (raw, json)
Hash identifier: kJPIJ7H5Q91BurUIyr8LaNdanQmtZK58/EKKCMG1wVU=
Subject key identifier: 2E:98:77:87:85:A9:EB:A9:FA:7D:39:F3:14:45:B2:FC:B2:5A:49:9F
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 6AB2520305E951F674825B6B1A8981B738F8721A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212387.roa
Signing time: Tue 05 Nov 2024 03:40:09 +0000
ROA not before: Tue 05 Nov 2024 03:35:09 +0000
ROA not after: Tue 04 Nov 2025 03:40:09 +0000
asID: 212387
IP address blocks: 2a06:a005:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:b2:52:03:05:e9:51:f6:74:82:5b:6b:1a:89:81:b7:38:f8:72:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:09 2024 GMT
Not After : Nov 4 03:40:09 2025 GMT
Subject: CN=2E98778785A9EBA9FA7D39F31445B2FCB25A499F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e8:a7:68:5e:38:d2:40:73:b7:9c:85:57:0f:
83:16:2b:69:6c:25:21:87:df:a0:c1:33:c0:1e:30:
a4:d0:69:d4:29:ac:4f:af:1d:81:be:84:6e:5a:f6:
e9:ef:76:90:58:33:b0:a2:5f:15:21:47:d2:61:a5:
ff:1f:e1:bb:54:35:13:18:a6:ca:8f:1c:b5:04:af:
7d:a7:29:e9:ad:8c:75:25:ea:41:ab:63:3d:6c:7f:
03:2a:59:f3:9e:f8:51:c5:1e:db:12:5a:fb:35:4c:
aa:0c:03:77:5b:fd:ac:71:5e:d1:09:07:51:00:97:
6d:d3:df:3f:f6:63:94:ab:45:14:f5:73:09:7d:18:
71:bc:19:1a:98:2d:59:2c:65:99:d9:66:32:c3:ba:
d7:0f:8d:cf:b6:34:af:f3:8c:94:06:03:6a:24:71:
ae:7b:cc:92:4d:dc:5e:38:5a:84:14:6e:9c:fa:3e:
16:36:b0:bb:dc:bc:8d:fc:84:f6:bd:47:4f:c3:e9:
ab:de:73:80:af:75:05:c2:c3:37:a6:5e:7b:c1:15:
99:c0:67:1d:ad:1e:bd:96:29:be:09:49:b8:15:0b:
b9:18:87:6d:47:59:06:88:65:e7:a7:5a:54:9e:d7:
58:9f:e6:be:85:f9:cc:72:55:0c:03:c2:eb:e7:6d:
e1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:98:77:87:85:A9:EB:A9:FA:7D:39:F3:14:45:B2:FC:B2:5A:49:9F
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS212387.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:9::/48
Signature Algorithm: sha256WithRSAEncryption
28:27:a2:ff:d2:1e:27:43:bc:5f:6d:23:66:1e:ba:a6:65:64:
8a:48:a3:68:b4:99:9a:58:50:07:cd:b1:aa:75:4d:2f:a5:f5:
3d:aa:50:cd:71:ef:0c:47:69:fe:50:11:64:7a:6c:68:1c:d5:
b7:3e:41:3f:9b:5a:6b:f2:ad:81:cf:10:08:c7:bf:30:11:e1:
97:39:63:b2:95:26:0a:bd:6d:63:b5:f8:02:82:33:76:5d:58:
97:f5:29:c7:0e:57:9c:38:52:a8:cb:dd:ea:df:1b:e0:e1:ba:
9b:9c:02:a1:3a:18:8c:92:17:4f:c0:b4:49:a6:f9:f2:90:37:
cb:d5:78:54:d9:bf:5f:55:a0:61:db:fd:af:79:f5:2d:c4:1f:
af:1f:b2:fb:17:fd:c6:f4:1c:ca:6b:90:60:5f:c7:73:2f:b9:
34:3d:c7:54:f9:2f:46:03:d3:ac:6a:2e:f5:6a:a3:4f:72:2b:
95:cc:0f:8b:3b:6e:49:1d:78:ff:92:27:67:e5:12:96:89:6b:
b2:28:90:68:96:16:41:a9:f9:3e:a9:a9:5d:1a:87:85:47:18:
8e:55:54:be:ca:52:aa:18:14:95:85:87:c6:08:bc:2c:ed:c6:
e9:65:4a:7e:d1:02:43:7b:8a:fd:e0:bd:ce:5e:66:d3:0c:4a:
68:ec:67:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:06 2025 by rpki-client