Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa
File: 5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa (raw, json)
Hash identifier: ECqRcNT0Gwo+HMEqq1lFPk40sGHnKcfVevrxbEhuhdY=
Subject key identifier: 41:8D:3A:7F:FA:69:E1:AD:57:32:67:3F:D5:19:C3:B9:6C:14:33:43
Certificate issuer: /CN=c3fbdc8c-2f4c-4dea-b420-52e582992086
Certificate serial: 010D0C9F43285848A9962A8F7515DF17E2459E00
Authority key identifier: 88:EC:1B:EE:A2:0C:53:B3:99:38:A4:26:8C:5E:B1:EE:56:2C:E4:F0
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa
Signing time: Sat 25 Jan 2025 14:00:52 +0000
ROA not before: Sat 25 Jan 2025 14:00:52 +0000
ROA not after: Fri 25 Apr 2025 13:00:52 +0000
asID: 1239
IP address blocks: 216.98.249.0/24 maxlen: 24
216.98.250.0/24 maxlen: 24
216.98.251.0/24 maxlen: 24
216.98.252.0/24 maxlen: 24
216.98.253.0/24 maxlen: 24
216.98.254.0/24 maxlen: 24
216.98.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Mar 2025 16:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:a9:96:2a:8f:75:15:df:17:e2:45:9e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fbdc8c-2f4c-4dea-b420-52e582992086
Validity
Not Before: Jan 25 14:00:52 2025 GMT
Not After : Apr 25 13:00:52 2025 GMT
Subject: CN=a029d11c-dd47-482d-b497-b715d8ff38bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b1:ce:14:8d:58:f2:99:9c:80:67:b8:67:94:
e4:28:d0:b2:6b:2b:51:00:74:5b:b8:73:77:88:7d:
c0:f6:ab:ad:88:8f:0f:99:be:ef:28:8e:24:5e:0f:
64:fe:24:c6:64:b4:d8:d0:0a:2d:f4:64:7d:e8:70:
d5:0a:3a:53:b7:17:6a:7e:9f:57:7b:d5:43:35:79:
19:ca:17:69:c1:3a:fa:35:79:13:4c:52:3f:1b:43:
cb:f1:fa:c7:b9:39:bd:62:bf:04:63:02:9d:5e:4a:
f8:62:be:d4:a2:89:f1:75:8d:3b:57:63:58:48:0c:
ab:49:ce:0c:1f:7c:31:c9:6f:e2:82:93:d6:4b:75:
3e:b4:69:34:b4:e5:1d:10:84:26:fb:1a:fb:67:4b:
ad:18:ae:86:5d:e2:2c:6a:59:56:af:56:a1:07:7d:
26:cc:a3:67:46:3c:b8:ac:7f:be:54:f7:13:58:58:
7e:f9:00:5b:c9:33:cf:04:c0:04:c0:3a:01:7f:ad:
80:4b:7a:cb:b8:44:a5:80:f3:dc:e4:54:09:04:94:
cd:8c:5c:a3:27:fc:1e:20:a1:6c:7f:5a:2a:7f:f7:
41:6e:56:a6:1c:ba:55:3d:b1:81:b9:ad:70:a7:44:
06:ea:da:3b:34:e0:70:91:33:97:57:2a:6a:af:40:
27:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8D:3A:7F:FA:69:E1:AD:57:32:67:3F:D5:19:C3:B9:6C:14:33:43
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/5015cae2-d54d-3b04-be39-f5fad9cd4fad.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086/c3fbdc8c-2f4c-4dea-b420-52e582992086.crl
X509v3 Authority Key Identifier:
keyid:88:EC:1B:EE:A2:0C:53:B3:99:38:A4:26:8C:5E:B1:EE:56:2C:E4:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/c3fbdc8c-2f4c-4dea-b420-52e582992086.cer
sbgp-ipAddrBlock: critical
IPv4:
216.98.249.0-216.98.255.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
84:5e:e8:91:ae:ec:97:4b:2e:46:46:7a:3b:7d:92:03:cf:27:
80:a1:a6:89:23:97:29:58:e1:e6:17:17:15:c8:08:52:3f:d0:
5b:69:1b:3c:84:23:94:47:99:67:19:0e:a6:78:1b:1f:b0:db:
fb:f3:4d:14:4e:05:3f:15:ea:81:d7:95:5f:90:f5:df:51:b6:
66:78:87:cf:03:6b:6b:c3:28:83:75:05:2d:9a:1b:af:08:cd:
a2:af:23:e5:69:9c:3e:51:f7:01:35:7d:0c:d8:a5:88:2a:68:
59:2d:03:3e:c7:4f:5f:f9:3c:b1:f0:43:85:50:c3:df:0b:7b:
c0:c5:09:bd:15:b3:76:f2:9e:79:6f:cc:f8:3b:4f:50:25:f8:
75:db:d8:82:12:77:2c:c4:e7:19:98:ff:86:73:da:b2:c2:01:
44:6b:98:d9:e7:af:ef:bc:ef:a9:be:da:1c:6e:47:24:2b:3b:
63:81:ae:3b:a5:09:26:77:d4:e5:d1:b2:52:f4:37:d0:b8:dd:
dd:b0:b0:58:80:17:9a:06:75:ff:8b:9d:5f:b6:1e:83:80:65:
5d:8d:9a:94:b9:d4:69:98:e4:61:84:59:33:6c:ef:9a:4b:92:
27:59:3a:b5:b2:f0:db:dd:4d:88:00:a3:b2:6f:c4:6d:58:a8:
86:b1:aa:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 13:32:40 2025 by rpki-client