Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24322.roa
File: AS24322.roa (raw, json)
Hash identifier: 48zO5cbEQlNLeZhtzsGxeMap98lNkeLVfq1wzu7V1B0=
Subject key identifier: 89:BB:5A:EA:70:CD:D6:16:03:25:DA:BB:08:79:65:86:13:61:1B:14
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 751FD60270AD5CDB3D357259767B2C9AFE27CFD5
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24322.roa
Signing time: Tue 05 Nov 2024 03:40:05 +0000
ROA not before: Tue 05 Nov 2024 03:35:05 +0000
ROA not after: Tue 04 Nov 2025 03:40:05 +0000
asID: 24322
IP address blocks: 2a06:a005:430::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:1f:d6:02:70:ad:5c:db:3d:35:72:59:76:7b:2c:9a:fe:27:cf:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:05 2024 GMT
Not After : Nov 4 03:40:05 2025 GMT
Subject: CN=89BB5AEA70CDD6160325DABB0879658613611B14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9a:51:35:98:f6:71:7b:43:5c:43:bd:2c:fb:
23:a7:84:79:10:d9:bc:fa:a9:36:53:31:ef:ad:31:
4a:e9:56:e8:04:2d:ce:82:a1:a7:40:35:22:e9:9c:
70:14:aa:1c:ba:01:60:6b:b2:e2:23:bb:92:96:14:
8f:a6:46:34:0b:77:44:b0:e1:35:a7:14:32:93:69:
1e:32:41:d7:33:61:9e:bd:0a:d4:e4:98:ad:30:ce:
35:13:b0:0d:74:8f:04:d3:10:bd:93:92:96:35:74:
bd:83:90:05:57:6c:cb:f7:c7:e4:7a:4e:18:93:1b:
83:95:90:db:c7:fa:3b:c5:cf:f0:8b:48:35:9a:cf:
2c:0c:ec:e8:96:5c:3e:b5:64:54:87:18:3d:0a:65:
23:2a:9d:bf:b3:81:0b:f5:a6:43:88:92:26:1c:b2:
d6:e9:83:2f:e6:8d:4e:88:49:51:02:20:8e:8d:66:
e1:fc:09:8e:4a:2a:ac:d1:0b:08:31:c0:0e:89:c3:
27:04:92:b1:a2:e7:ce:c2:61:01:a8:35:ec:00:e9:
1e:c0:75:56:2b:5a:5d:41:e1:d0:5f:4a:d8:b3:e5:
8d:48:da:e1:6c:8f:0e:b4:90:d8:e3:94:be:07:f4:
3f:0d:4b:73:bc:24:99:89:d1:2f:f6:62:7e:b0:bd:
27:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BB:5A:EA:70:CD:D6:16:03:25:DA:BB:08:79:65:86:13:61:1B:14
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24322.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:430::/48
Signature Algorithm: sha256WithRSAEncryption
bf:95:ed:46:99:dd:d7:58:d2:0a:5a:ab:7c:bf:aa:91:6b:b6:
fc:73:5e:5a:79:e1:9c:6c:2f:7d:a2:2b:6b:66:ca:e9:fa:ef:
10:99:82:7c:e4:9e:72:82:b2:1e:ce:48:74:b3:1e:d9:71:6c:
29:ab:e0:22:28:2f:90:8d:a4:93:fe:27:a9:c6:9a:0c:96:72:
f8:dd:53:83:30:30:4b:0e:fc:5d:80:df:40:df:7f:26:6a:e3:
02:a1:7e:2b:e9:82:64:6e:4e:df:1e:fd:0f:58:2d:74:f0:6e:
94:c7:2e:70:ba:b2:ff:41:c4:0c:46:c6:8b:ef:ba:c4:f2:9f:
e3:de:c4:0a:7f:3d:30:67:3c:08:1e:80:34:d2:88:2f:b9:36:
2a:a1:f9:1a:9d:36:5e:26:8e:e3:25:68:62:23:a6:17:8c:fc:
fc:05:e0:69:9f:99:f7:56:f9:90:4c:72:41:4e:89:e2:97:55:
47:f9:55:ff:d3:91:5d:64:44:9e:f7:ab:b7:69:5d:03:14:a6:
82:cc:f2:96:3d:cc:5a:90:47:87:ab:fc:cd:11:ae:17:17:70:
4d:53:29:3f:41:b9:d9:e7:1d:c6:db:bf:5d:7a:9b:60:c5:dc:
61:b6:2a:d7:c2:e7:8e:8e:03:13:fb:21:1b:a7:42:4c:2f:16:
8d:d6:18:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:43:38 2025 by rpki-client