Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24676.roa
File: AS24676.roa (raw, json)
Hash identifier: qcXv7aYHE00u/lenEy9cooqbUoltczxzRHdsvXZI1AE=
Subject key identifier: C6:5E:47:9E:EC:C0:8C:DF:3D:AD:F2:94:0A:B5:70:43:0D:9F:91:62
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 3269143DAD27DAA9884C653C2E37E8D9471A11A6
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24676.roa
Signing time: Tue 05 Nov 2024 03:40:02 +0000
ROA not before: Tue 05 Nov 2024 03:35:02 +0000
ROA not after: Tue 04 Nov 2025 03:40:02 +0000
asID: 24676
IP address blocks: 2a06:a005:19c0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:69:14:3d:ad:27:da:a9:88:4c:65:3c:2e:37:e8:d9:47:1a:11:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:02 2024 GMT
Not After : Nov 4 03:40:02 2025 GMT
Subject: CN=C65E479EECC08CDF3DADF2940AB570430D9F9162
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ec:78:e0:fe:34:52:80:29:52:b8:0e:62:98:
9a:31:21:82:ce:05:d8:85:4a:27:3e:32:35:cb:37:
39:b8:d6:95:86:00:e9:dc:38:2c:6b:37:a5:a5:c2:
bf:42:22:14:b2:23:1f:29:ac:22:73:a9:75:c9:53:
b8:85:ee:9d:ef:68:3d:2a:8d:bc:39:c6:c0:27:a4:
06:b9:f2:f5:76:b7:d8:2e:04:2a:42:f8:57:76:84:
4a:b6:11:a9:d2:b0:10:64:af:07:21:e1:63:6d:71:
d4:92:bf:6b:2b:a9:ee:d6:ae:93:ce:ab:e0:34:e6:
ee:a2:24:c8:eb:e6:b2:10:d8:0d:76:0c:59:08:58:
96:e4:75:40:8e:49:22:ba:7f:44:a0:fa:f1:b7:6b:
62:9a:d5:58:e4:8e:04:f6:d8:99:61:7e:6e:82:30:
e6:1e:3a:db:e4:97:2d:94:29:fc:48:97:ab:9f:ea:
bb:72:b0:89:a6:5f:b2:3a:09:6a:30:c4:31:55:eb:
a4:da:5e:cd:8a:e9:74:4e:d7:62:1a:29:5a:92:5c:
57:dd:f1:b8:78:dc:d5:9d:1d:6a:40:bb:3b:d9:08:
28:bd:45:21:83:02:eb:c6:36:57:6c:15:ec:b8:26:
21:e5:a0:e7:ea:36:12:54:b0:b8:70:11:e1:20:14:
51:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5E:47:9E:EC:C0:8C:DF:3D:AD:F2:94:0A:B5:70:43:0D:9F:91:62
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS24676.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:19c0::/44
Signature Algorithm: sha256WithRSAEncryption
45:b9:f5:60:f0:b3:69:df:78:de:31:4a:fb:26:a0:38:44:09:
4d:2c:22:26:56:39:20:b5:15:e1:e2:ea:b1:bf:e6:95:01:5a:
87:99:09:5d:29:ca:49:21:5c:7c:26:27:84:8e:bc:22:80:06:
a0:e8:8e:7a:49:55:65:9b:2c:b2:11:7f:2d:01:34:1f:a3:f2:
d3:75:1d:03:5c:37:6d:95:f4:2f:68:1e:56:7c:5f:ad:aa:d3:
ad:1e:10:96:34:e4:e3:96:58:24:1a:02:e8:56:b4:52:13:24:
c5:bc:2b:12:31:07:94:0b:d4:87:30:59:dd:49:7c:8c:68:77:
8e:ac:31:5b:db:6a:20:05:bf:15:b0:c7:ea:ea:2a:d4:43:1b:
5b:46:53:32:6e:44:e3:af:97:07:89:c8:14:df:ca:f7:94:f2:
a3:9c:77:4a:01:0b:b9:f8:89:96:7a:f8:d9:c8:3b:6e:93:7f:
d8:81:9a:a1:a5:8f:eb:e4:f4:aa:08:53:2c:d4:2d:0c:af:fd:
c8:a7:67:8b:fd:b8:72:87:18:f1:02:95:4d:2e:67:48:e8:96:
9c:f0:da:b4:06:c3:a9:b2:59:57:4a:75:81:d8:5c:3e:5a:4d:
05:5d:5c:81:1e:9c:16:8e:1f:06:d6:f7:d2:a2:1a:1c:a5:dd:
95:f1:76:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:34:45 2025 by rpki-client