Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS2303.roa
File: AS2303.roa (raw, json)
Hash identifier: oua1e+Ls8T5COtJ1WSMrpdS8BQohp/rTUbtdZApQsk8=
Subject key identifier: D3:38:3F:D4:17:15:A5:49:9D:BB:FA:C3:D5:0E:F1:42:00:87:22:2E
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2CD3E18FBEE53DB01114C7EF5E0E1005A0FDD7CB
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS2303.roa
Signing time: Mon 30 Sep 2024 05:41:28 +0000
ROA not before: Mon 30 Sep 2024 05:36:28 +0000
ROA not after: Mon 29 Sep 2025 05:41:28 +0000
asID: 2303
IP address blocks: 160.202.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 17:57:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:d3:e1:8f:be:e5:3d:b0:11:14:c7:ef:5e:0e:10:05:a0:fd:d7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Sep 30 05:36:28 2024 GMT
Not After : Sep 29 05:41:28 2025 GMT
Subject: CN=D3383FD41715A5499DBBFAC3D50EF1420087222E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:3a:06:2a:7b:3b:b7:58:79:14:4b:53:e9:ac:
a2:35:ae:cb:6a:8f:14:ae:0e:d3:5a:cc:13:7c:81:
e8:62:cf:34:84:fe:f5:ab:da:2e:0e:fd:73:7b:b5:
62:ea:9a:44:52:3a:fb:e4:22:68:ce:54:18:1f:88:
e9:de:af:28:53:3f:17:4e:9a:8e:c5:4d:ad:e4:08:
dd:4d:3a:dc:3c:a5:32:19:e6:59:b6:7e:fd:fe:3f:
61:96:39:8d:5d:7a:25:5c:7b:68:bf:e7:54:7a:0f:
43:82:52:c8:d5:04:3f:c2:df:cf:49:7b:d8:2a:7a:
83:b7:61:ac:42:45:c2:68:97:f9:ee:17:2d:8d:46:
24:ca:62:89:63:f5:6f:ab:11:88:f3:56:3b:dd:5c:
f6:aa:54:76:50:69:be:56:02:6f:3e:0e:55:16:5c:
40:ed:a1:60:7a:5b:32:9d:d9:49:a9:de:e7:72:c5:
5c:46:f9:8b:d9:7e:3d:3f:fb:5e:ba:34:da:37:e0:
1f:ea:13:4e:3a:47:67:b8:76:fa:7b:ee:46:e6:0c:
42:2d:87:20:78:38:3a:3f:1d:07:eb:8f:dd:18:a4:
28:97:99:bb:3b:eb:fd:1c:98:e5:db:ec:ab:5b:d4:
6d:78:a0:88:cd:17:97:36:95:76:2e:a9:81:4b:87:
8c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:38:3F:D4:17:15:A5:49:9D:BB:FA:C3:D5:0E:F1:42:00:87:22:2E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS2303.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.202.132.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:82:0a:90:e4:91:c1:58:23:fa:a9:4a:7c:09:dc:ef:0b:ba:
f8:56:46:cf:48:9b:8b:71:4f:c2:23:4d:57:94:1c:f0:c0:08:
6f:14:2e:b6:08:1d:e8:ad:c1:29:5b:bb:b7:9d:70:69:c2:64:
b8:1e:fd:6a:bb:06:f1:8a:a9:4f:fb:ab:61:ca:2e:1d:dd:1d:
46:6b:c4:c8:67:01:86:bc:e6:fa:8e:c3:f1:00:a4:ae:de:ee:
3c:39:3f:2f:ee:05:e2:dd:c7:81:78:01:5e:a7:53:ae:11:59:
c0:c0:29:f2:7c:8d:74:6e:cd:68:fe:66:1f:f8:d4:72:43:2b:
4b:01:66:a4:ed:79:88:91:3b:2e:45:2f:f3:68:51:56:7e:bc:
2f:b7:94:63:70:82:7f:e2:07:e7:df:cc:78:50:e2:54:e7:90:
e7:e1:62:52:aa:60:dd:e5:98:4d:2f:48:08:99:75:f3:4b:0d:
48:2a:27:b1:0d:25:ed:d5:fc:1c:2f:79:04:f6:78:8d:2a:c2:
9f:66:f3:bb:f8:03:3f:21:6a:23:cf:f6:43:6c:e8:23:ea:4c:
f1:16:61:d6:24:d9:23:ff:5a:b8:d0:b5:8d:9e:0c:1b:a1:21:
0c:9d:25:d4:15:5d:ca:7d:70:2f:f2:a1:b1:a9:fa:36:17:cf:
aa:76:49:63
-----BEGIN CERTIFICATE-----
MIIE4zCCA8ugAwIBAgIULNPhj77lPbARFMfvXg4QBaD918swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzk5NDM4ZjFiMTc2MmFlZWY4YTM1Y2Y0ZTZjYmFlOTc2
OTliZDAyMDAeFw0yNDA5MzAwNTM2MjhaFw0yNTA5MjkwNTQxMjhaMDMxMTAvBgNV
BAMTKEQzMzgzRkQ0MTcxNUE1NDk5REJCRkFDM0Q1MEVGMTQyMDA4NzIyMkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLOgYqezu3WHkUS1PprKI1rstq
jxSuDtNazBN8gehizzSE/vWr2i4O/XN7tWLqmkRSOvvkImjOVBgfiOneryhTPxdO
mo7FTa3kCN1NOtw8pTIZ5lm2fv3+P2GWOY1deiVce2i/51R6D0OCUsjVBD/C389J
e9gqeoO3YaxCRcJol/nuFy2NRiTKYolj9W+rEYjzVjvdXPaqVHZQab5WAm8+DlUW
XEDtoWB6WzKd2Ump3udyxVxG+YvZfj0/+166NNo34B/qE046R2e4dvp77kbmDEIt
hyB4ODo/HQfrj90YpCiXmbs76/0cmOXb7Ktb1G14oIjNF5c2lXYuqYFLh4znAgMB
AAGjggHtMIIB6TAdBgNVHQ4EFgQU0zg/1BcVpUmdu/rD1Q7xQgCHIi4wHwYDVR0j
BBgwFoAUeZQ48bF2Ku74o1z05suul2mb0CAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv
cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvMi83OTk0MzhGMUIx
NzYyQUVFRjhBMzVDRjRFNkNCQUU5NzY5OUJEMDIwLmNybDBkBggrBgEFBQcBAQRY
MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZVpRNDhiRjJLdTc0bzF6MDVzdXVsMm1iMENBLmNlcjBuBggrBgEF
BQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv
cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC8yL0FT
MjMwMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB
/wQQMA4wDAQCAAEwBgMEAKDKhDANBgkqhkiG9w0BAQsFAAOCAQEAHIIKkOSRwVgj
+qlKfAnc7wu6+FZGz0ibi3FPwiNNV5Qc8MAIbxQutggd6K3BKVu7t51wacJkuB79
arsG8YqpT/urYcouHd0dRmvEyGcBhrzm+o7D8QCkrt7uPDk/L+4F4t3HgXgBXqdT
rhFZwMAp8nyNdG7NaP5mH/jUckMrSwFmpO15iJE7LkUv82hRVn68L7eUY3CCf+IH
59/MeFDiVOeQ5+FiUqpg3eWYTS9ICJl180sNSConsQ0l7dX8HC95BPZ4jSrCn2bz
u/gDPyFqI8/2Q2zoI+pM8RZh1iTZI/9auNC1jZ4MG6EhDJ0l1BVdyn1wL/Khsan6
NhfPqnZJYw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:15:19 2025 by rpki-client