Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
File: AS23470.roa (raw, json)
Hash identifier: 4c5X+mml9ioJv57qIhvhjjQooerxselAS4YdfhG85Vc=
Subject key identifier: 68:B9:C2:2A:64:56:20:B0:BE:A6:39:C0:CD:D3:70:D6:A0:39:91:01
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 31F53AA436C7043884F4AEC0D9B8D866FCF1462A
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
Signing time: Wed 12 Jun 2024 03:08:47 +0000
ROA not before: Wed 12 Jun 2024 03:03:47 +0000
ROA not after: Wed 11 Jun 2025 03:08:47 +0000
asID: 23470
IP address blocks: 2a06:9f40::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Jul 2024 10:44:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:f5:3a:a4:36:c7:04:38:84:f4:ae:c0:d9:b8:d8:66:fc:f1:46:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jun 12 03:03:47 2024 GMT
Not After : Jun 11 03:08:47 2025 GMT
Subject: CN=68B9C22A645620B0BEA639C0CDD370D6A0399101
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f3:df:63:0e:b5:fd:99:4d:96:59:90:88:52:
10:ea:52:31:25:22:a6:8f:06:08:fa:ec:e8:98:74:
01:51:7c:e5:1e:d6:e4:48:b1:b4:3d:e4:46:58:a0:
0e:c3:fa:0f:80:29:91:d4:0b:87:b6:67:4d:e9:5a:
ce:e6:c6:dd:b3:26:c5:f1:58:e6:60:50:fe:b0:40:
45:c0:78:1b:3f:6f:5f:55:22:a7:23:fe:06:cd:7d:
56:41:a8:a5:78:5d:ba:45:fb:b9:9e:f5:63:b4:74:
7f:64:30:4d:14:a7:9f:e0:7f:84:03:e3:55:a9:e4:
f1:07:16:6b:9f:5d:7a:0e:d3:50:26:29:68:5d:a7:
13:60:1a:8f:40:b0:82:9b:e5:ab:76:8e:30:9e:bb:
0a:61:a6:35:d4:66:4a:8d:54:5c:88:7d:62:e0:b5:
4f:48:e8:e3:d5:d9:c1:0e:76:b4:15:13:91:b8:42:
39:f9:25:2d:04:17:3b:fe:82:1f:dd:52:78:62:0a:
13:f1:bd:19:cd:06:13:98:4b:d9:5d:17:fc:f2:2d:
60:ea:28:51:af:a0:32:c8:52:95:1e:0a:d3:2a:38:
ea:12:e3:2a:e3:73:dc:49:4e:6f:1e:2c:1c:c7:da:
c6:45:fb:29:47:36:48:19:32:9e:51:db:c9:55:94:
d0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B9:C2:2A:64:56:20:B0:BE:A6:39:C0:CD:D3:70:D6:A0:39:91:01
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS23470.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:9f40::/32
Signature Algorithm: sha256WithRSAEncryption
8b:76:69:88:c0:88:f9:cd:9b:6c:9a:fb:8e:de:e5:db:11:cb:
5e:70:52:b0:a0:e4:69:45:35:35:f6:a0:64:81:9e:4d:ee:90:
aa:b4:d9:67:61:58:05:62:b7:a4:39:69:3a:c0:58:45:6c:7a:
b6:29:46:14:12:d1:ad:db:82:d4:e6:99:84:26:78:aa:a9:b4:
50:b9:94:37:29:20:20:5e:24:68:2b:0b:52:69:01:10:6b:ae:
ed:f5:55:46:61:b3:b2:bd:67:56:ad:9f:94:cc:33:35:ef:22:
f8:0a:95:36:26:1a:9e:fc:d8:d0:a8:cf:21:7d:8d:68:c6:0d:
94:42:ac:7e:46:23:06:63:e2:40:cc:e0:81:c9:8b:8a:76:42:
d6:e0:63:65:7e:ab:bf:47:89:45:f3:92:94:80:c9:e0:fe:93:
a6:2d:c8:fa:ea:f8:60:9f:b1:a8:7f:3f:3d:8b:31:4c:c3:21:
e6:1f:38:b1:07:e1:a2:c0:c3:11:ed:1b:35:d2:30:02:c9:bf:
72:5b:a2:a3:aa:6a:0c:87:a3:aa:09:4a:30:48:92:5f:be:50:
79:60:bb:e5:68:ec:32:f2:23:79:b1:d7:cb:70:11:68:49:3c:
fd:37:f8:da:1d:8d:94:07:db:3c:b6:fd:7c:2a:04:64:20:c8:
80:ad:71:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 12:20:55 2024 by rpki-client on console-fra.rpki-client.org