Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213368.roa
File: AS213368.roa (raw, json)
Hash identifier: rMf8GcdaOS7oXTQVqbd/8YZp6ySlWk4ryEG9qKtUPjM=
Subject key identifier: 5E:8D:25:09:15:F8:E5:FA:B3:FB:9C:3E:2F:DD:1A:06:AD:11:1B:7C
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 7C4B3E0DE184A623EB4AE964FFBCF421AE2F0A62
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213368.roa
Signing time: Tue 05 Nov 2024 03:40:06 +0000
ROA not before: Tue 05 Nov 2024 03:35:06 +0000
ROA not after: Tue 04 Nov 2025 03:40:06 +0000
asID: 213368
IP address blocks: 2a06:a005:482::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:4b:3e:0d:e1:84:a6:23:eb:4a:e9:64:ff:bc:f4:21:ae:2f:0a:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:06 2024 GMT
Not After : Nov 4 03:40:06 2025 GMT
Subject: CN=5E8D250915F8E5FAB3FB9C3E2FDD1A06AD111B7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0d:e1:b0:68:9e:81:61:86:bd:6e:07:4d:9c:
16:0c:31:35:bd:65:c4:68:36:87:bd:cd:e2:9c:7b:
8a:6c:ff:f9:dc:da:55:27:a6:41:8b:79:6f:cf:a9:
80:ee:dc:9e:72:c4:02:be:1d:aa:a8:55:50:35:5e:
0f:d0:c3:77:84:94:3a:1d:68:8c:95:b0:c6:7b:e2:
52:9e:81:65:ef:aa:9b:2d:3c:e0:f3:b3:ab:d8:f7:
b7:df:d6:96:06:03:0f:4b:5c:96:a8:5b:1b:36:c9:
41:7a:11:6d:3a:49:9f:94:ba:df:6f:e3:77:c4:1c:
bd:ce:97:da:dc:fc:e4:a8:71:17:6c:ef:ae:0a:2c:
84:5f:e9:af:a6:f6:f0:7f:e1:5d:13:de:6d:c1:56:
4e:7a:e4:2c:c7:72:8a:63:e1:4a:70:2b:32:0f:32:
10:7a:33:5b:44:2e:b7:6e:d6:c1:38:09:22:6f:86:
9d:21:33:38:3d:97:7b:94:df:ef:69:78:dd:2a:eb:
80:9e:f9:61:fe:86:2f:0a:a7:28:6d:27:f9:ea:e2:
31:df:a4:b5:7c:60:dc:6b:78:52:77:3a:ae:1d:1c:
68:3c:70:af:3d:01:b6:9b:64:b8:ad:18:28:96:aa:
0a:9f:35:9e:6f:a6:1c:9e:6e:9e:54:ee:fc:59:ab:
8f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8D:25:09:15:F8:E5:FA:B3:FB:9C:3E:2F:DD:1A:06:AD:11:1B:7C
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS213368.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:482::/48
Signature Algorithm: sha256WithRSAEncryption
60:d3:56:74:aa:8f:5c:eb:f7:28:fc:2f:bd:d8:93:04:44:86:
5f:cc:a7:09:fa:09:ce:43:54:73:9b:a3:a4:c8:9c:07:f0:99:
44:e2:e0:ca:fc:f8:08:73:77:21:27:3a:9e:f6:0a:2e:c2:4f:
b4:0c:5a:fa:22:63:e6:cd:0b:51:b0:99:02:69:38:92:f7:74:
b6:06:7e:60:17:a1:58:76:83:54:f5:ec:0e:ac:df:9b:30:a0:
3f:7c:e4:02:c9:63:6b:7a:35:f6:5c:df:20:58:75:27:41:1e:
40:c4:3b:c6:d8:3f:e7:3a:82:cb:da:6a:66:cd:17:3c:12:60:
9d:cd:10:48:2b:b7:48:5e:63:3e:24:a8:b2:c2:a1:ad:7f:9b:
b5:84:db:65:49:91:94:78:d1:42:89:c5:f9:b1:11:64:26:81:
0a:e6:9d:cf:e8:02:cc:ca:99:d0:ed:a0:0b:9e:8d:29:53:fe:
32:4f:75:9c:b7:95:bd:d7:3d:30:9c:9e:d4:66:7b:74:69:f7:
ba:98:df:7e:04:17:34:9e:c6:e6:1f:b2:10:5b:e6:39:23:e2:
ec:fd:18:7c:de:71:df:09:b0:d3:91:9c:dc:45:c0:ad:12:81:
4a:4a:60:4f:21:c8:bd:b6:3d:27:fc:0b:7e:73:18:b6:4c:64:
c1:59:0a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:14:16 2025 by rpki-client