Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/41caef2b-bdae-3df5-a79a-58aaaa35aae7.roa
File: 41caef2b-bdae-3df5-a79a-58aaaa35aae7.roa (raw, json)
Hash identifier: xlZjLdxOYfmGZ/4tDcFXrN4naTFOFvQAlYRNiLhRMzE=
Subject key identifier: 33:3F:D4:90:E6:D4:E0:B2:A7:39:06:FC:93:05:0C:96:A8:F1:6A:63
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F432858476706281533076C23BBEA4800
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/41caef2b-bdae-3df5-a79a-58aaaa35aae7.roa
Signing time: Wed 02 Oct 2024 01:00:31 +0000
ROA not before: Wed 02 Oct 2024 01:00:31 +0000
ROA not after: Tue 31 Dec 2024 02:00:31 +0000
asID: 174
IP address blocks: 172.252.208.0/24 maxlen: 24
172.252.219.0/24 maxlen: 24
172.252.225.0/24 maxlen: 24
172.252.234.0/24 maxlen: 24
172.252.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 16:35:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:47:67:06:28:15:33:07:6c:23:bb:ea:48:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Oct 2 01:00:31 2024 GMT
Not After : Dec 31 02:00:31 2024 GMT
Subject: CN=89fbb54d-b380-4d1f-bfe2-601e9b09c570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5a:3d:f0:03:75:9c:ec:b8:54:9c:c5:7b:ab:
38:01:2d:af:20:b4:b5:ea:53:3e:be:2b:03:d7:c7:
58:9f:b9:b7:b0:b2:b1:db:c0:a1:32:10:45:25:1b:
13:79:a8:8e:37:22:31:07:a7:1c:48:af:e8:0d:42:
20:9b:01:21:d0:53:97:c7:54:1f:ea:57:ba:a9:6a:
71:bc:c1:8c:f3:b6:a4:83:58:41:2b:ba:93:75:9d:
df:0c:f7:ee:bc:43:17:60:33:5c:4d:ba:b0:cc:7b:
f3:b0:ca:c2:5f:02:26:74:40:73:0b:75:ea:ad:00:
24:be:7e:0d:f9:58:30:47:6b:eb:2f:96:45:b9:c1:
f9:55:06:3c:3b:cf:8b:de:ca:9d:46:09:b8:ec:b7:
fc:1a:33:7e:0f:e7:38:97:8c:a9:8f:19:46:7d:0a:
7f:85:19:7e:e7:29:a7:48:59:79:16:61:03:d7:91:
5b:a8:d0:3d:98:57:c9:dc:26:b5:94:fe:f7:93:00:
5a:97:a3:44:66:5b:d1:bc:c4:62:cc:49:4f:00:55:
6d:26:6b:18:57:56:89:7a:cd:fb:58:e7:8a:70:14:
15:ea:52:93:52:30:c2:fb:24:e9:69:98:e8:60:65:
cc:d0:dc:41:68:83:b5:72:93:b4:f3:7c:be:d6:f6:
d4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3F:D4:90:E6:D4:E0:B2:A7:39:06:FC:93:05:0C:96:A8:F1:6A:63
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/41caef2b-bdae-3df5-a79a-58aaaa35aae7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
172.252.208.0/24
172.252.219.0/24
172.252.225.0/24
172.252.234.0/24
172.252.239.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
23:9c:af:2d:df:27:96:91:a0:ac:d5:ed:03:1b:fc:53:5d:b0:
9e:61:37:62:3e:63:a0:3e:3a:c4:a3:33:a6:ce:a6:53:cb:7e:
97:9e:9b:02:8a:68:08:b8:c2:4c:88:01:c4:ab:ca:32:a7:ad:
ad:9f:50:3f:23:88:52:a2:80:ee:f8:7a:7f:ac:b2:a4:b6:3b:
74:c3:b2:b8:d8:11:0b:67:be:4f:11:eb:8a:bc:bb:aa:4d:77:
cf:c1:83:cb:21:ac:ee:fe:b4:59:d8:35:a3:da:ca:af:e2:09:
a3:7b:9a:c4:ee:d3:eb:aa:8d:e4:aa:15:1c:e2:12:25:32:c1:
b4:cf:73:1f:71:aa:5f:f8:35:b9:74:ac:89:53:56:53:3b:b0:
db:d7:d6:34:fa:f2:5e:a1:43:b5:79:70:2c:01:58:5d:e4:ea:
06:1f:19:27:c7:72:ea:da:c6:04:45:1a:9b:27:16:c3:13:79:
23:93:1c:12:a6:cb:85:28:89:16:d8:46:b2:3a:23:f0:aa:4b:
b8:1f:68:ae:50:57:a4:b8:05:cb:f0:57:61:57:cc:b7:9b:95:
ac:0c:e1:97:7b:49:c6:c9:ab:a3:20:32:e0:dd:bf:08:c0:fb:
35:f9:72:4c:db:48:90:8f:e6:a9:05:47:88:ab:d6:50:dc:6a:
33:c5:ae:5a
-----BEGIN CERTIFICATE-----
MIIGWzCCBUOgAwIBAgIUAQ0Mn0MoWEdnBigVMwdsI7vqSAAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMTg4MDAzMjQtNTE1MC00OTgxLWExNDQtYmRiODBlNmJj
YjdjMB4XDTI0MTAwMjAxMDAzMVoXDTI0MTIzMTAyMDAzMVowLzEtMCsGA1UEAxMk
ODlmYmI1NGQtYjM4MC00ZDFmLWJmZTItNjAxZTliMDljNTcwMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Fo98AN1nOy4VJzFe6s4AS2vILS16lM+visD
18dYn7m3sLKx28ChMhBFJRsTeaiONyIxB6ccSK/oDUIgmwEh0FOXx1Qf6le6qWpx
vMGM87akg1hBK7qTdZ3fDPfuvEMXYDNcTbqwzHvzsMrCXwImdEBzC3XqrQAkvn4N
+VgwR2vrL5ZFucH5VQY8O8+L3sqdRgm47Lf8GjN+D+c4l4ypjxlGfQp/hRl+5ymn
SFl5FmED15FbqNA9mFfJ3Ca1lP73kwBal6NEZlvRvMRizElPAFVtJmsYV1aJes37
WOeKcBQV6lKTUjDC+yTpaZjoYGXM0NxBaIO1cpO083y+1vbU8QIDAQABo4IDbTCC
A2kwHQYDVR0OBBYEFDM/1JDm1OCypzkG/JMFDJao8WpjMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8xODgw
MDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4MGU2YmNiN2MvNDFjYWVmMmItYmRhZS0z
ZGY1LWE3OWEtNThhYWFhMzVhYWU3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMTg4MDAzMjQtNTE1MC00OTgxLWEx
NDQtYmRiODBlNmJjYjdjLzE4ODAwMzI0LTUxNTAtNDk4MS1hMTQ0LWJkYjgwZTZi
Y2I3Yy5jcmwwHwYDVR0jBBgwFoAUEWtHMzbZ6J21lhte76NAIq7eabYwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8xODgwMDMyNC01MTUwLTQ5ODEtYTE0NC1iZGI4
MGU2YmNiN2MuY2VyMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQArPzQAwQA
rPzbAwQArPzhAwQArPzqAwQArPzvMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIw
OjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jw
a2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBACOcry3fJ5aRoKzV7QMb/FNd
sJ5hN2I+Y6A+OsSjM6bOplPLfpeemwKKaAi4wkyIAcSryjKnra2fUD8jiFKigO74
en+ssqS2O3TDsrjYEQtnvk8R64q8u6pNd8/Bg8shrO7+tFnYNaPayq/iCaN7msTu
0+uqjeSqFRziEiUywbTPcx9xql/4Nbl0rIlTVlM7sNvX1jT68l6hQ7V5cCwBWF3k
6gYfGSfHcuraxgRFGpsnFsMTeSOTHBKmy4UoiRbYRrI6I/CqS7gfaK5QV6S4Bcvw
V2FXzLeblawM4Zd7ScbJq6MgMuDdvwjA+zX5ckzbSJCP5qkFR4ir1lDcajPFrlo=
-----END CERTIFICATE-----
Generated at Wed Nov 13 18:49:43 2024 by rpki-client on console-fra.rpki-client.org