Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/3137322e39392e32322e302f32342d3234203d3e20383334.roa
File: 3137322e39392e32322e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: EcLjP/Gxl1R0Se9ZdYL/cvW021+K2zXS1zYfoE9YE0g=
Subject key identifier: 07:8D:BF:CD:AF:66:E0:9A:36:CC:18:1E:73:0C:17:69:B1:23:E9:66
Certificate issuer: /CN=8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe
Certificate serial: 25523F92B5F53D73C46495CDCDF09B8F3D5DE920
Authority key identifier: 4A:65:9D:2B:D2:0D:70:6E:89:F0:E9:C8:A1:E8:22:F2:DD:AE:BE:1F
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27/8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/3137322e39392e32322e302f32342d3234203d3e20383334.roa
Signing time: Tue 03 Sep 2024 00:03:20 +0000
ROA not before: Mon 02 Sep 2024 23:58:20 +0000
ROA not after: Tue 02 Sep 2025 00:03:20 +0000
asID: 834
IP address blocks: 172.99.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 16:32:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:52:3f:92:b5:f5:3d:73:c4:64:95:cd:cd:f0:9b:8f:3d:5d:e9:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe
Validity
Not Before: Sep 2 23:58:20 2024 GMT
Not After : Sep 2 00:03:20 2025 GMT
Subject: CN=078DBFCDAF66E09A36CC181E730C1769B123E966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:56:6e:38:9d:44:4f:2f:6e:f1:a5:87:cf:b5:
97:e1:a8:d1:0f:7b:ff:ad:78:ae:df:54:ef:e5:ec:
aa:a9:91:66:77:ed:53:85:a8:a8:25:ac:46:0f:8d:
ae:ed:ab:b3:45:c7:8a:27:a1:9c:30:f0:45:46:96:
1f:4b:95:5f:9a:f2:e7:f1:17:e9:9c:b3:59:c1:98:
0c:0d:f2:1c:01:ac:38:67:2f:f3:64:4f:ab:e0:3e:
ab:11:0f:2b:0f:ef:7f:89:c5:f4:06:d6:76:a6:19:
d5:a5:fa:7f:f5:00:f8:9e:42:b2:4c:4e:77:d7:dd:
e4:70:14:df:4e:f1:57:32:c5:f4:07:80:25:6d:fe:
2d:0b:d4:02:ad:ea:b4:24:46:cb:f8:60:76:70:34:
2f:b7:12:c8:24:7d:72:80:f5:77:82:50:c8:4a:e6:
ee:e1:b1:c5:2f:41:84:87:e6:66:58:be:34:be:6b:
de:64:15:92:d4:1c:c7:10:38:34:c2:c8:01:6c:41:
03:bb:d5:35:3c:59:3e:44:8c:50:73:92:4e:6c:69:
22:7f:72:58:a6:2f:14:e2:52:92:48:4c:3f:f8:e9:
7f:f1:d4:91:5b:f0:a2:4a:40:30:c6:51:bf:e4:25:
9d:cf:5d:2f:a2:78:3c:6e:a2:d2:76:fd:aa:19:83:
92:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8D:BF:CD:AF:66:E0:9A:36:CC:18:1E:73:0C:17:69:B1:23:E9:66
X509v3 Authority Key Identifier:
keyid:4A:65:9D:2B:D2:0D:70:6E:89:F0:E9:C8:A1:E8:22:F2:DD:AE:BE:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/4A659D2BD20D706E89F0E9C8A1E822F2DDAEBE1F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/946afd34-6971-423f-b22a-575e2c73ab27/8aa800a814af0deb066a95f7996f83cd729a48d075b0952fbe.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8baa64a8018bae05840d043b/0/3137322e39392e32322e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
172.99.22.0/24
Signature Algorithm: sha256WithRSAEncryption
81:c1:b6:2b:6f:19:7a:d4:13:bf:2e:bd:11:3d:bd:3d:5c:11:
14:53:17:35:ac:fe:ae:fc:84:08:6b:08:d9:dd:a4:12:a3:38:
39:48:2a:ad:be:87:c7:a8:88:b9:93:e9:6d:44:07:0f:c9:74:
71:c9:ca:c0:2b:c4:29:6f:40:78:7f:4d:63:38:bb:b6:d7:ca:
fe:5f:36:a7:01:61:7f:e8:8e:6a:b4:cb:62:58:30:7a:e6:9c:
4d:de:9a:ba:ff:d9:fa:2b:d4:65:d9:94:a9:52:2a:20:79:57:
83:47:f5:76:0a:3b:26:ba:b1:68:c9:ef:18:f8:30:07:d1:03:
32:5c:94:0e:df:43:5b:ec:89:0b:e7:85:f8:59:50:98:df:5a:
c4:4a:88:7a:a0:7d:9d:97:6b:6c:67:9e:8b:27:7f:de:f2:62:
6f:53:49:03:dc:8d:ae:a5:07:be:0d:7f:81:9c:df:ac:4d:51:
1d:22:cb:10:95:fb:52:97:84:2a:b9:b3:90:20:e3:25:f2:5a:
4d:bb:04:91:55:d4:01:4c:68:b2:6c:4d:e4:f6:ef:f3:70:99:
1f:53:db:cd:51:54:f5:03:f8:20:11:c1:d8:6a:ef:3d:42:1f:
d2:1f:62:65:4b:d0:5d:b4:18:30:99:5b:3d:b2:f9:5c:c5:1e:
d6:cd:34:f0
-----BEGIN CERTIFICATE-----
MIIFqzCCBJOgAwIBAgIUJVI/krX1PXPEZJXNzfCbjz1d6SAwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyOGFhODAwYTgxNGFmMGRlYjA2NmE5NWY3OTk2ZjgzY2Q3
MjlhNDhkMDc1YjA5NTJmYmUwHhcNMjQwOTAyMjM1ODIwWhcNMjUwOTAyMDAwMzIw
WjAzMTEwLwYDVQQDEygwNzhEQkZDREFGNjZFMDlBMzZDQzE4MUU3MzBDMTc2OUIx
MjNFOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFZuOJ1ETy9u
8aWHz7WX4ajRD3v/rXiu31Tv5eyqqZFmd+1ThaioJaxGD42u7auzRceKJ6GcMPBF
RpYfS5VfmvLn8RfpnLNZwZgMDfIcAaw4Zy/zZE+r4D6rEQ8rD+9/icX0BtZ2phnV
pfp/9QD4nkKyTE53193kcBTfTvFXMsX0B4Albf4tC9QCreq0JEbL+GB2cDQvtxLI
JH1ygPV3glDISubu4bHFL0GEh+ZmWL40vmveZBWS1BzHEDg0wsgBbEEDu9U1PFk+
RIxQc5JObGkif3JYpi8U4lKSSEw/+Ol/8dSRW/CiSkAwxlG/5CWdz10vong8bqLS
dv2qGYOSuQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFAeNv82vZuCaNswYHnMMF2mx
I+lmMB8GA1UdIwQYMBaAFEplnSvSDXBuifDpyKHoIvLdrr4fMA4GA1UdDwEB/wQE
AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l
dC9yZXBvc2l0b3J5LzhhODQ4YWRmOGJhYTY0YTgwMThiYWUwNTg0MGQwNDNiLzAv
NEE2NTlEMkJEMjBENzA2RTg5RjBFOUM4QTFFODIyRjJEREFFQkUxRi5jcmwwgfMG
CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu
Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut
YjA4Yy0yMTcxZGEyMTU3ZDMvODcxZGE0MGYtNzkzYS00YTQ1LWEwYTktOTc4MTQ4
MzIxYTA3Lzk0NmFmZDM0LTY5NzEtNDIzZi1iMjJhLTU3NWUyYzczYWIyNy84YWE4
MDBhODE0YWYwZGViMDY2YTk1Zjc5OTZmODNjZDcyOWE0OGQwNzViMDk1MmZiZS5j
ZXIwgZsGCCsGAQUFBwELBIGOMIGLMIGIBggrBgEFBQcwC4Z8cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmOGJhYTY0YTgwMThiYWUw
NTg0MGQwNDNiLzAvMzEzNzMyMmUzOTM5MmUzMjMyMmUzMDJmMzIzNDJkMzIzNDIw
M2QzZTIwMzgzMzM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsG
AQUFBwEHAQH/BBAwDjAMBAIAATAGAwQArGMWMA0GCSqGSIb3DQEBCwUAA4IBAQCB
wbYrbxl61BO/Lr0RPb09XBEUUxc1rP6u/IQIawjZ3aQSozg5SCqtvofHqIi5k+lt
RAcPyXRxycrAK8Qpb0B4f01jOLu218r+XzanAWF/6I5qtMtiWDB65pxN3pq6/9n6
K9Rl2ZSpUiogeVeDR/V2CjsmurFoye8Y+DAH0QMyXJQO30Nb7IkL54X4WVCY31rE
Soh6oH2dl2tsZ56LJ3/e8mJvU0kD3I2upQe+DX+BnN+sTVEdIssQlftSl4QqubOQ
IOMl8lpNuwSRVdQBTGiybE3k9u/zcJkfU9vNUVT1A/ggEcHYau89Qh/SH2JlS9Bd
tBgwmVs9svlcxR7WzTTw
-----END CERTIFICATE-----
Generated at Fri Sep 6 19:15:48 2024 by rpki-client on console-ams.rpki-client.org