Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS59474.roa
File: AS59474.roa (raw, json)
Hash identifier: 5IowqL8znbdW1fOFFKE86rbs1GqegtZ9xvpq/ab1l+Q=
Subject key identifier: 89:48:49:D2:C4:D1:8A:70:1E:38:9A:11:DF:92:9F:38:97:F0:0A:E3
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 08210C2E442129B54721DEEC4406DAA331E34A03
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS59474.roa
Signing time: Tue 05 Nov 2024 03:40:00 +0000
ROA not before: Tue 05 Nov 2024 03:35:00 +0000
ROA not after: Tue 04 Nov 2025 03:40:00 +0000
asID: 59474
IP address blocks: 2a06:a005:f30::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Dec 2024 02:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:21:0c:2e:44:21:29:b5:47:21:de:ec:44:06:da:a3:31:e3:4a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 5 03:35:00 2024 GMT
Not After : Nov 4 03:40:00 2025 GMT
Subject: CN=894849D2C4D18A701E389A11DF929F3897F00AE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:69:d3:a6:ee:13:1c:25:fa:9c:e9:21:ec:52:
d5:1d:bd:1b:4e:bf:45:7e:18:4c:f1:6b:99:e4:da:
88:16:ff:4a:71:b8:d9:f4:c1:87:fc:9e:5a:92:54:
eb:44:d0:31:db:9d:14:92:09:c6:6e:96:aa:8c:73:
03:a2:57:db:0c:70:92:17:45:d1:f7:a5:1d:01:0f:
6b:f1:fb:04:ed:98:9f:f6:f6:a8:82:d2:f8:1f:03:
a8:5d:c6:56:83:89:b9:4a:67:a4:ed:d1:d2:75:c9:
a1:ab:2d:53:6f:d1:aa:0f:7c:76:d7:ed:fb:d0:00:
fd:80:45:bf:e8:19:32:12:0f:9f:b8:47:0a:6e:e4:
09:eb:43:0c:35:52:08:98:8d:aa:86:01:05:b0:7a:
71:6b:3d:2b:fc:a2:9e:f4:a1:66:af:b2:2c:83:67:
e5:34:35:4a:b4:08:a5:a6:71:6a:37:e5:84:d1:99:
21:93:e2:0f:1d:bd:6f:83:c7:4f:43:b2:92:ca:4c:
5e:70:10:2d:7a:cb:ed:a7:20:83:60:b4:68:3b:05:
69:65:56:c1:a1:20:ce:f7:92:7e:f1:07:b3:66:1d:
c7:81:7b:c3:c0:34:d2:a3:e6:93:ac:81:aa:12:f2:
43:9f:2a:c6:f3:d7:f3:fa:74:bb:c8:86:2f:e2:b0:
a7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:48:49:D2:C4:D1:8A:70:1E:38:9A:11:DF:92:9F:38:97:F0:0A:E3
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS59474.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:f30::/44
Signature Algorithm: sha256WithRSAEncryption
81:f9:19:70:7f:b4:79:11:0c:ba:94:c8:9b:3d:ce:70:a2:0b:
33:32:d2:54:16:01:e2:76:e1:db:1d:de:4b:87:38:c4:dd:23:
d1:7d:d1:70:f4:13:da:ac:88:43:e3:7e:49:64:7a:80:dd:9e:
60:f5:57:2a:ae:59:e0:66:29:b0:07:e9:ac:f8:df:3d:1b:c1:
64:8d:75:40:d1:ed:58:0d:a3:1d:b4:00:2d:41:43:ae:1b:f6:
50:3c:60:98:56:87:c3:0c:23:c4:20:a1:75:26:14:a1:62:53:
fa:5d:b6:45:33:9e:d1:03:3b:35:b0:9b:9d:9d:d0:29:a4:94:
8f:09:29:dd:dc:8a:45:d1:e1:51:7a:7c:6c:8c:df:87:b3:a3:
b7:2e:7f:ac:88:14:3b:9f:ea:5f:a2:d3:ae:3d:89:01:32:b6:
13:e6:43:b1:5d:35:cf:d5:25:8e:99:aa:06:ba:3b:44:f0:6f:
32:ab:8c:13:fc:98:b8:2f:2c:bf:0f:02:64:e7:e6:95:01:6a:
22:42:90:92:64:e9:c9:c5:47:ec:78:1d:e9:8b:8f:cd:5c:f9:
0d:c1:b0:52:f2:c4:40:11:5c:9d:5c:46:bb:04:70:5c:9a:cf:
31:08:fe:df:22:fc:e8:6d:f8:e5:59:34:4e:3b:5c:12:22:c3:
bc:7f:92:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 01:47:25 2025 by rpki-client