Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS40676.roa
File: AS40676.roa (raw, json)
Hash identifier: /NqaFw3uTV7dwZI/XoIonzJY50e4+Ig7rOn8jp005bI=
Subject key identifier: D2:7F:8F:C3:8F:83:3A:6C:CC:0D:56:5D:40:47:90:24:3F:48:8C:C4
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 2A6ECF0ACC8735852EB8A0DB15F45652476C01C7
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS40676.roa
Signing time: Wed 12 Jun 2024 03:09:04 +0000
ROA not before: Wed 12 Jun 2024 03:04:04 +0000
ROA not after: Wed 11 Jun 2025 03:09:04 +0000
asID: 40676
IP address blocks: 2a05:dfc3::/32 maxlen: 48
2a09:54c3::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 24 Jun 2024 23:21:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:6e:cf:0a:cc:87:35:85:2e:b8:a0:db:15:f4:56:52:47:6c:01:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Jun 12 03:04:04 2024 GMT
Not After : Jun 11 03:09:04 2025 GMT
Subject: CN=D27F8FC38F833A6CCC0D565D404790243F488CC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:97:a5:4e:23:8f:dc:86:a8:71:76:90:8c:b4:
a0:7e:90:2d:46:2b:d3:a4:93:f7:6f:bb:61:e2:6e:
13:e6:d6:f9:aa:68:0c:90:49:46:0b:cc:da:00:54:
39:ce:8f:0c:61:26:ad:a1:42:92:fc:89:86:3b:16:
1e:00:9f:5f:c6:c0:54:03:27:91:c3:cd:27:79:5e:
42:ac:2b:c9:4d:c1:87:bc:3a:12:5a:81:93:f7:7c:
06:7f:82:01:97:00:13:36:e2:48:18:6a:ba:de:e8:
59:2b:61:f7:5d:de:bb:26:6b:9d:ad:43:fb:8a:df:
cf:b9:03:2a:40:0f:20:2d:41:7e:40:31:9f:62:da:
9a:4b:7c:47:e0:53:d0:ea:85:5b:bc:d5:44:fb:f8:
49:42:dd:58:da:f2:00:cf:2b:ec:54:16:0d:84:03:
e2:cc:ac:4a:cf:01:e8:d6:57:83:ca:30:fc:21:0e:
a8:63:46:c1:5b:8d:66:bd:8b:3b:15:f8:3d:06:a1:
3f:5f:e0:da:d9:78:b4:0b:ba:b8:74:93:33:90:55:
5d:80:b9:4d:4d:eb:be:29:29:7f:de:e4:1c:57:c8:
51:99:31:56:12:21:a3:d3:77:ba:f2:64:c9:3a:ab:
09:1c:90:c9:74:e1:49:42:5c:d7:e2:8b:da:08:7a:
53:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7F:8F:C3:8F:83:3A:6C:CC:0D:56:5D:40:47:90:24:3F:48:8C:C4
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS40676.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc3::/32
2a09:54c3::/32
Signature Algorithm: sha256WithRSAEncryption
49:fc:b7:b6:7e:34:fb:77:36:2b:32:80:02:4c:bb:b3:ae:bb:
d4:6f:a0:cc:35:32:00:fd:7c:8d:c8:e3:bb:ab:e5:62:ed:60:
f4:fd:54:d8:6e:aa:57:85:69:58:75:0b:5e:86:3f:48:e6:c9:
68:ad:9e:39:31:10:ce:60:51:12:9b:b2:bf:5b:c1:4d:1c:3a:
6c:23:25:ca:65:34:ab:43:9e:ab:2f:77:10:f8:c3:4c:a5:d2:
e7:d7:c2:f8:32:f2:ac:97:ab:0c:c0:ee:ca:ab:d6:cf:af:31:
94:15:75:fd:55:14:c8:c5:7c:de:a0:81:0f:9d:e3:09:71:48:
a7:b3:50:80:69:ce:96:14:11:1c:e8:f3:a0:ab:71:6d:38:ef:
95:7c:ae:3b:06:ae:71:d4:74:5d:aa:20:94:1d:79:ec:c9:51:
0b:15:5b:18:bf:d0:3b:6d:e4:58:43:68:1a:10:9a:c9:d3:b5:
f1:4d:5e:0b:fb:19:34:42:af:17:53:02:40:7f:bf:1b:15:0e:
60:d0:ec:d7:fb:7b:00:a8:73:04:8a:79:08:07:04:f0:8a:ca:
95:3a:31:05:c6:2a:a8:c8:77:8d:2b:cc:06:b9:a1:d4:aa:d1:
e8:10:2f:fd:22:c1:e5:22:c8:b6:76:eb:8c:f5:e1:0e:0a:88:
f7:b7:06:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:47:18 2025 by rpki-client