Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7ba79988-80bc-4fcb-8faf-624400d5f1ce/dc66d5a7-cf4c-387e-a21f-665becc1d191.roa
File: dc66d5a7-cf4c-387e-a21f-665becc1d191.roa (raw, json)
Hash identifier: ekUKa0YQmreI5yj6g7gKNG/Q+ViRo8+c6zqSON8c6V8=
Subject key identifier: DA:40:ED:C5:19:50:C9:82:CC:DD:39:D5:A8:B8:97:09:52:A5:30:93
Certificate issuer: /CN=7ba79988-80bc-4fcb-8faf-624400d5f1ce
Certificate serial: 010D0C9F432858445B45B5C93400D3FD9942DE80
Authority key identifier: 34:17:BC:BF:6B:4A:63:0A:CA:A3:C5:88:BC:45:0F:E5:94:79:C4:5A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7ba79988-80bc-4fcb-8faf-624400d5f1ce.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7ba79988-80bc-4fcb-8faf-624400d5f1ce/dc66d5a7-cf4c-387e-a21f-665becc1d191.roa
Signing time: Wed 27 Dec 2023 17:38:09 +0000
ROA not before: Wed 27 Dec 2023 17:38:09 +0000
ROA not after: Tue 26 Mar 2024 16:38:09 +0000
asID: 8560
IP address blocks: 66.179.136.0/22 maxlen: 24
65.38.96.0/22 maxlen: 24
66.179.80.0/22 maxlen: 24
66.179.92.0/22 maxlen: 24
66.179.188.0/22 maxlen: 24
66.179.208.0/22 maxlen: 24
66.179.240.0/22 maxlen: 24
66.179.248.0/21 maxlen: 24
67.217.240.0/21 maxlen: 24
69.48.200.0/21 maxlen: 24
209.46.120.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 14:12:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:5b:45:b5:c9:34:00:d3:fd:99:42:de:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ba79988-80bc-4fcb-8faf-624400d5f1ce
Validity
Not Before: Dec 27 17:38:09 2023 GMT
Not After : Mar 26 16:38:09 2024 GMT
Subject: CN=a9355694-8371-4c1b-bc3a-20d134efc945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:b3:28:8d:0b:5f:a4:11:0c:b4:77:98:0a:
ed:23:c5:c2:ab:46:3a:38:8b:ee:04:fa:48:36:7c:
eb:7b:e5:d4:bf:23:1d:9b:23:9f:c2:57:22:76:1f:
21:fe:ed:53:74:b8:40:88:b7:76:b7:96:93:8f:54:
a1:9f:b1:91:61:6f:34:25:06:7d:78:f3:f3:af:57:
c8:54:4d:11:49:6f:17:be:41:6e:3c:79:0c:05:82:
dc:d9:4f:80:fd:8a:70:99:a1:90:ca:c3:57:f7:01:
7b:be:5f:5b:76:71:26:20:f4:06:86:2b:4b:fe:c3:
83:70:84:9b:fb:ff:a6:69:d6:20:33:a1:93:4a:85:
fa:27:cb:ab:b0:c0:99:39:0a:40:a2:51:14:40:8d:
80:c6:53:09:ce:c4:28:e9:dc:4d:87:ce:92:d1:27:
e0:10:ad:39:4d:ff:31:5b:6e:bd:37:88:70:09:56:
72:af:9a:63:f7:ba:2d:18:3b:e3:74:aa:a0:ac:6d:
9f:bc:fb:41:a3:de:08:b9:18:88:5e:a4:a7:db:e2:
38:28:bf:be:e3:c5:d6:c3:37:d5:94:59:9c:28:23:
7c:3f:7a:c9:80:6a:d0:72:8c:06:9a:c9:0b:95:27:
c7:4b:d1:f3:82:85:ea:9f:0d:04:9b:d6:85:01:1b:
85:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:40:ED:C5:19:50:C9:82:CC:DD:39:D5:A8:B8:97:09:52:A5:30:93
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7ba79988-80bc-4fcb-8faf-624400d5f1ce/dc66d5a7-cf4c-387e-a21f-665becc1d191.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7ba79988-80bc-4fcb-8faf-624400d5f1ce/7ba79988-80bc-4fcb-8faf-624400d5f1ce.crl
X509v3 Authority Key Identifier:
keyid:34:17:BC:BF:6B:4A:63:0A:CA:A3:C5:88:BC:45:0F:E5:94:79:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7ba79988-80bc-4fcb-8faf-624400d5f1ce.cer
sbgp-ipAddrBlock: critical
IPv4:
65.38.96.0/22
66.179.80.0/22
66.179.92.0/22
66.179.136.0/22
66.179.188.0/22
66.179.208.0/22
66.179.240.0/22
66.179.248.0/21
67.217.240.0/21
69.48.200.0/21
209.46.120.0/21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
b0:45:8b:d4:55:0e:bf:4a:60:f5:a0:dd:8b:33:dd:06:55:04:
a8:11:c7:d5:fc:70:ae:d0:18:53:13:d1:f8:b4:7f:04:6a:56:
3b:45:28:ba:f2:a5:39:66:2e:60:ce:49:94:8f:5e:32:73:c5:
b6:c6:d0:5c:bc:ed:94:94:f4:bf:62:e2:65:72:cf:7e:dd:11:
74:ad:82:92:3b:3c:71:bb:76:2c:2b:b6:29:67:a5:a7:0b:3a:
3f:c7:52:fe:e2:32:07:07:59:2c:08:8f:8b:ce:f0:f2:e0:25:
18:97:c5:4e:6b:d3:88:d6:42:d3:73:c4:35:2d:d2:e6:cc:71:
81:97:a1:02:9e:3e:f1:b0:39:1b:32:ab:a1:e1:65:7b:cd:62:
ac:c8:06:0d:4e:57:bb:2c:df:7c:02:77:e1:36:27:1b:0c:5c:
1a:41:5d:2d:a5:63:9a:8c:47:a5:3a:2c:0e:76:05:bd:a2:a0:
d8:0b:f7:23:a5:23:af:58:43:81:49:9d:7f:49:bc:8c:5d:3e:
e2:72:f9:f8:c2:24:c5:f5:cd:3e:5e:77:87:c8:2a:76:fb:c9:
ee:c6:a9:64:0e:24:b7:1a:53:fa:c5:24:05:d5:dc:4c:1b:9c:
60:87:8a:63:96:d3:63:2b:e7:c8:ed:77:35:14:19:fb:cd:9d:
0a:25:62:6f
-----BEGIN CERTIFICATE-----
MIIGfzCCBWegAwIBAgIUAQ0Mn0MoWERbRbXJNADT/ZlC3oAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkN2JhNzk5ODgtODBiYy00ZmNiLThmYWYtNjI0NDAwZDVm
MWNlMB4XDTIzMTIyNzE3MzgwOVoXDTI0MDMyNjE2MzgwOVowLzEtMCsGA1UEAxMk
YTkzNTU2OTQtODM3MS00YzFiLWJjM2EtMjBkMTM0ZWZjOTQ1MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZGzKI0LX6QRDLR3mArtI8XCq0Y6OIvuBPpI
Nnzre+XUvyMdmyOfwlcidh8h/u1TdLhAiLd2t5aTj1Shn7GRYW80JQZ9ePPzr1fI
VE0RSW8XvkFuPHkMBYLc2U+A/YpwmaGQysNX9wF7vl9bdnEmIPQGhitL/sODcISb
+/+madYgM6GTSoX6J8ursMCZOQpAolEUQI2AxlMJzsQo6dxNh86S0SfgEK05Tf8x
W269N4hwCVZyr5pj97otGDvjdKqgrG2fvPtBo94IuRiIXqSn2+I4KL++48XWwzfV
lFmcKCN8P3rJgGrQcowGmskLlSfHS9HzgoXqnw0Em9aFARuFSwIDAQABo4IDkTCC
A40wHQYDVR0OBBYEFNpA7cUZUMmCzN051ai4lwlSpTCTMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83YmE3
OTk4OC04MGJjLTRmY2ItOGZhZi02MjQ0MDBkNWYxY2UvZGM2NmQ1YTctY2Y0Yy0z
ODdlLWEyMWYtNjY1YmVjYzFkMTkxLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvN2JhNzk5ODgtODBiYy00ZmNiLThm
YWYtNjI0NDAwZDVmMWNlLzdiYTc5OTg4LTgwYmMtNGZjYi04ZmFmLTYyNDQwMGQ1
ZjFjZS5jcmwwHwYDVR0jBBgwFoAUNBe8v2tKYwrKo8WIvEUP5ZR5xFowDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC83YmE3OTk4OC04MGJjLTRmY2ItOGZhZi02MjQ0
MDBkNWYxY2UuY2VyMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQCQSZgAwQC
QrNQAwQCQrNcAwQCQrOIAwQCQrO8AwQCQrPQAwQCQrPwAwQDQrP4AwQDQ9nwAwQD
RTDIAwQD0S54MFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcC
ARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWww
DQYJKoZIhvcNAQELBQADggEBALBFi9RVDr9KYPWg3Ysz3QZVBKgRx9X8cK7QGFMT
0fi0fwRqVjtFKLrypTlmLmDOSZSPXjJzxbbG0Fy87ZSU9L9i4mVyz37dEXStgpI7
PHG7diwrtilnpacLOj/HUv7iMgcHWSwIj4vO8PLgJRiXxU5r04jWQtNzxDUt0ubM
cYGXoQKePvGwORsyq6HhZXvNYqzIBg1OV7ss33wCd+E2JxsMXBpBXS2lY5qMR6U6
LA52Bb2ioNgL9yOlI69YQ4FJnX9JvIxdPuJy+fjCJMX1zT5ed4fIKnb7ye7GqWQO
JLcaU/rFJAXV3EwbnGCHimOW02Mr58jtdzUUGfvNnQolYm8=
-----END CERTIFICATE-----
Generated at Tue Jan 9 18:34:34 2024 by rpki-client on console-fra.rpki-client.org