Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
File: AS23470.roa (raw, json)
Hash identifier: pOh61h7w3UexA/Y55GlM9HKF5fVtyASnAh5aQJgyWQ4=
Subject key identifier: A6:C2:09:21:1A:73:71:0D:AC:3E:EA:7B:7E:E9:7C:56:EC:6D:CF:11
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 69F82D1BAE69EBC1A932A650D8F7C364E122F0CA
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
Signing time: Thu 28 Sep 2023 18:39:39 +0000
ROA not before: Thu 28 Sep 2023 18:34:39 +0000
ROA not after: Thu 26 Sep 2024 18:39:39 +0000
asID: 23470
IP address blocks: 103.230.140.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:f8:2d:1b:ae:69:eb:c1:a9:32:a6:50:d8:f7:c3:64:e1:22:f0:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Sep 28 18:34:39 2023 GMT
Not After : Sep 26 18:39:39 2024 GMT
Subject: CN=A6C209211A73710DAC3EEA7B7EE97C56EC6DCF11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2e:c8:6f:8a:02:39:98:43:6c:b5:56:70:3d:
4b:60:02:cc:b2:79:eb:73:96:07:44:fc:05:94:65:
b5:d7:97:f3:cc:3b:fd:9e:fa:39:63:99:d9:22:ad:
af:c6:bb:e7:d9:35:06:f4:3a:d8:93:c7:df:af:c4:
7a:b5:f3:2b:d1:0f:51:1a:ea:aa:45:9b:13:75:4d:
9b:0d:c0:cb:94:3b:4b:0e:17:80:55:0e:aa:66:27:
22:e5:71:41:05:de:9d:f9:dc:13:68:d2:3d:0c:e5:
89:b3:f8:f0:4d:2c:cf:0f:81:81:db:58:0f:84:26:
e1:8a:8c:d2:50:fa:91:c1:56:4f:95:69:d8:56:c9:
30:14:5b:21:f1:eb:51:d6:4b:81:f9:ee:19:85:65:
22:aa:9d:07:17:b1:c3:4d:8d:95:71:1e:fe:fa:c0:
4b:cd:b7:43:57:5e:a3:a3:2f:2e:c5:6a:9a:6d:a7:
23:0b:2e:6f:d0:d4:0f:af:25:81:2d:2c:12:13:88:
58:74:b2:d0:a3:da:c3:2a:12:df:5d:ba:37:d5:4e:
ed:fa:56:49:0a:26:a9:8f:ff:1c:b6:89:27:aa:9b:
25:ec:6c:56:c4:df:9f:62:02:44:cd:7a:a7:e5:ae:
2a:7f:31:89:88:a1:bf:6d:0c:73:b8:90:72:29:e2:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C2:09:21:1A:73:71:0D:AC:3E:EA:7B:7E:E9:7C:56:EC:6D:CF:11
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.230.140.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:fd:15:94:6a:04:3f:a8:37:2f:34:98:ed:6d:81:59:fc:cb:
18:b1:2b:ed:13:ef:ac:ec:a5:90:06:b6:43:95:0a:e8:c1:93:
1c:2e:cc:31:17:8a:93:b3:cb:9d:aa:73:09:33:9e:70:cc:d2:
54:4e:28:ab:00:84:15:d8:40:05:01:cc:b0:af:29:73:4b:fb:
f6:1a:4b:a3:f7:2a:a6:b8:6d:3b:da:bc:9c:0b:eb:95:4f:a0:
88:1b:9c:53:fb:96:a0:af:0c:6d:a5:33:ba:6c:b5:98:23:71:
72:e2:09:ee:f5:2a:6f:f3:13:bf:44:67:ff:e4:e3:ae:4e:1f:
e4:99:f0:13:34:dc:6c:19:7e:3e:57:ef:18:99:86:f5:80:ce:
76:ce:cb:1d:88:57:fd:d7:1f:28:d7:a8:cc:ad:19:f7:90:be:
33:4c:4f:aa:c5:62:f1:53:72:27:2c:56:28:3d:a7:11:9a:ff:
9b:6f:3c:35:ed:6b:a7:bc:ea:d3:96:06:0f:c3:3b:a0:96:a4:
03:ae:72:41:d0:6a:93:df:fe:ff:8a:c8:49:0e:af:41:2c:ff:
a1:aa:d8:a6:eb:16:42:d6:4f:52:f9:0f:f6:2f:5e:80:86:be:
77:69:42:e8:89:f0:5e:3f:e4:48:85:cc:08:ba:94:85:e3:b1:
dc:18:67:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 1 22:11:05 2023 by rpki-client on console-fra.rpki-client.org