Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/2d0906ae-8a57-3f1d-ad04-15feff500c9c.roa
File: 2d0906ae-8a57-3f1d-ad04-15feff500c9c.roa (raw, json)
Hash identifier: YoYm20k/TSWSqgc4rb9gznq0YrSw9jeWgIa8mU23ySE=
Subject key identifier: 57:77:EE:F2:4C:6E:58:01:B8:C6:6A:C6:22:F8:94:61:AB:E1:18:57
Certificate issuer: /CN=86fea470-b380-45c0-9f6b-033b7d884388
Certificate serial: 010D0C9F4328584768C20279476B44EDF3FAA980
Authority key identifier: 08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/2d0906ae-8a57-3f1d-ad04-15feff500c9c.roa
Signing time: Wed 02 Oct 2024 15:54:55 +0000
ROA not before: Wed 02 Oct 2024 15:54:55 +0000
ROA not after: Tue 31 Dec 2024 16:54:55 +0000
asID: 40065
IP address blocks: 67.220.64.0/24 maxlen: 24
67.220.66.0/23 maxlen: 24
67.220.70.0/23 maxlen: 24
67.220.75.0/24 maxlen: 24
67.220.76.0/22 maxlen: 24
67.220.91.0/24 maxlen: 24
67.220.92.0/24 maxlen: 24
67.220.93.0/24 maxlen: 24
67.220.94.0/24 maxlen: 24
68.168.16.0/24 maxlen: 24
68.168.17.0/24 maxlen: 24
68.168.18.0/23 maxlen: 24
68.168.20.0/22 maxlen: 24
68.168.24.0/22 maxlen: 24
68.168.28.0/23 maxlen: 24
68.168.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Oct 2024 12:24:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:47:68:c2:02:79:47:6b:44:ed:f3:fa:a9:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86fea470-b380-45c0-9f6b-033b7d884388
Validity
Not Before: Oct 2 15:54:55 2024 GMT
Not After : Dec 31 16:54:55 2024 GMT
Subject: CN=13f727f7-c4f5-4915-bab5-07c8cc1a01c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0d:10:6a:87:25:aa:cf:9e:04:f1:7b:96:9e:
a6:77:9b:ae:45:53:58:bc:a4:90:28:1d:e7:1d:e6:
5e:52:af:41:2b:f7:c8:67:b0:a7:91:27:a0:86:c3:
0a:0c:48:e3:51:7b:98:41:e8:45:fa:3f:c0:ac:eb:
2c:39:7d:df:c6:c4:0a:3e:71:9c:6f:ec:72:70:9b:
a0:85:bc:e8:2c:9b:a7:4f:15:90:80:89:00:a6:d4:
59:62:b2:c2:75:b7:37:7b:d2:a9:94:3a:b4:17:55:
20:d7:63:db:89:98:a8:2b:f0:bb:27:02:9a:34:d9:
49:01:40:90:eb:8a:bb:da:75:78:5c:6a:b9:f2:86:
c3:e0:25:49:57:8c:c0:49:5d:92:f1:79:70:85:8d:
3d:2f:b6:63:21:19:8b:d8:2d:ba:9c:22:cd:a2:61:
89:40:5a:b2:f4:3f:ac:cb:f1:1c:6f:80:ce:7e:2a:
94:b3:23:fb:c9:dc:36:4c:a3:55:fa:a0:8e:83:7a:
55:b0:24:71:54:9d:0f:86:3d:6e:88:15:48:ab:a2:
0f:8d:84:45:14:b1:d5:fd:8d:2b:c9:bd:64:76:93:
b8:8a:ab:89:8f:81:c0:0d:12:82:fc:e7:ee:5e:aa:
e9:cb:fc:1d:f8:4f:b5:ee:fc:30:98:21:6e:9a:03:
58:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:77:EE:F2:4C:6E:58:01:B8:C6:6A:C6:22:F8:94:61:AB:E1:18:57
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/2d0906ae-8a57-3f1d-ad04-15feff500c9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388/86fea470-b380-45c0-9f6b-033b7d884388.crl
X509v3 Authority Key Identifier:
keyid:08:74:8A:31:09:3C:2C:49:44:A1:2E:8A:D6:5C:9E:92:04:01:CF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/86fea470-b380-45c0-9f6b-033b7d884388.cer
sbgp-ipAddrBlock: critical
IPv4:
67.220.64.0/24
67.220.66.0/23
67.220.70.0/23
67.220.75.0-67.220.79.255
67.220.91.0-67.220.94.255
68.168.16.0-68.168.30.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
7e:24:07:d3:93:ff:c2:39:fb:12:f4:5d:73:c2:d6:49:96:a0:
b1:60:fd:64:e8:3f:58:18:9a:3a:49:7f:b7:d1:92:bf:0f:b7:
01:6e:70:c0:3c:a3:59:97:9e:5e:33:8d:cf:8d:d1:6a:c8:30:
1f:ca:d4:54:65:7e:85:24:5a:9a:43:10:4d:66:dd:58:89:b3:
fd:b7:96:72:72:30:e9:c4:cf:8d:b0:63:f1:3a:92:74:6a:50:
c5:6c:d0:8e:1f:92:1f:53:90:77:e5:87:d6:88:a8:dc:f3:18:
bd:f8:aa:17:1a:7c:a9:b2:d2:83:c8:dc:bd:44:ab:4b:91:41:
69:3b:c1:25:07:8f:09:38:5f:de:15:37:fb:f8:20:66:72:37:
2c:25:87:d1:88:f6:41:96:76:96:0e:d0:54:bd:8a:b2:db:b6:
c8:af:46:8d:25:e7:95:73:27:dd:1e:80:86:9c:c2:f9:b4:e7:
1f:91:cc:04:bc:7d:99:e6:7d:4a:ae:52:28:a3:9a:30:3f:a2:
b7:e4:45:07:42:de:7b:34:6f:61:cc:e0:01:cf:43:a8:a4:0b:
8a:b4:7a:3c:50:64:41:6f:89:b2:e7:0a:f4:b6:0d:f7:90:f9:
bc:14:07:57:5e:6e:a5:be:04:78:1f:c3:9d:27:94:53:f0:c9:
21:7f:74:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 18:03:46 2024 by rpki-client on console-ams.rpki-client.org