Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/be8023d1-347c-3c37-b0fd-044eaf5e935e.roa
File: be8023d1-347c-3c37-b0fd-044eaf5e935e.roa (raw, json)
Hash identifier: Vc9VYPajvNycs5I2Dpk+FR6SDXEyDwkj/NjcjHv432c=
Subject key identifier: 75:3B:45:ED:C6:2C:5B:55:A1:D4:FE:55:25:B1:8F:FE:02:9B:F3:40
Certificate issuer: /CN=8b7074c2-7c8f-41ac-8307-74ece44a460c
Certificate serial: 010D0C9F432858490328A86C1A76C71EC3EDFD00
Authority key identifier: C1:CC:88:BC:4A:C0:09:D7:61:48:C3:D1:C3:B2:52:40:69:D5:9F:01
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/be8023d1-347c-3c37-b0fd-044eaf5e935e.roa
Signing time: Wed 26 Feb 2025 16:03:10 +0000
ROA not before: Wed 26 Feb 2025 16:03:10 +0000
ROA not after: Tue 27 May 2025 15:03:10 +0000
asID: 1299
IP address blocks: 64.77.213.0/24 maxlen: 24
64.77.216.0/24 maxlen: 24
64.77.218.0/24 maxlen: 24
72.14.97.0/24 maxlen: 24
72.14.119.0/24 maxlen: 24
72.14.126.0/24 maxlen: 24
97.75.255.0/24 maxlen: 24
208.101.227.0/24 maxlen: 24
208.101.234.0/23 maxlen: 24
208.101.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 21:15:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:03:28:a8:6c:1a:76:c7:1e:c3:ed:fd:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7074c2-7c8f-41ac-8307-74ece44a460c
Validity
Not Before: Feb 26 16:03:10 2025 GMT
Not After : May 27 15:03:10 2025 GMT
Subject: CN=2e2ba378-56f0-4043-9f76-3b06fe3cc1e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6f:81:f1:fd:2d:dc:2f:77:50:10:26:db:29:
a3:ad:d5:96:b8:a7:88:1b:ed:e0:7e:68:8f:72:e9:
ef:67:b5:ff:62:08:5b:3d:61:44:3a:ac:f8:ba:79:
ac:1c:59:b4:1d:98:8d:d8:53:40:ec:74:63:75:72:
4e:9e:ea:90:37:fd:24:3c:7e:6d:4b:f7:58:19:28:
02:29:9c:c6:00:1e:e6:96:75:6e:94:df:0a:9a:d8:
d8:13:88:fa:b4:55:12:01:06:0b:47:cd:68:20:a2:
14:69:57:a8:57:d5:ae:4f:37:b0:34:97:6b:36:33:
07:da:08:11:af:5d:89:a6:61:67:70:03:5b:d5:d0:
29:ac:62:17:b7:53:f9:8e:f4:fc:91:6a:dd:81:a0:
42:c4:a8:d2:41:83:90:6b:ff:81:c9:42:f7:08:50:
19:eb:0d:f7:bb:85:21:62:6e:cc:73:1f:64:a3:43:
50:cd:66:4e:5e:e0:c3:fd:92:e4:b1:6d:a2:c5:c8:
7b:26:fc:0b:24:7e:19:20:a0:39:61:5c:2c:48:34:
d1:4c:52:6c:9b:85:52:03:b8:94:fa:c6:b6:c3:e0:
36:d8:24:b6:26:20:f3:ed:88:77:6b:d1:fe:9b:bf:
71:a7:89:89:5b:4c:59:5c:00:d8:74:d2:32:90:44:
9f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:3B:45:ED:C6:2C:5B:55:A1:D4:FE:55:25:B1:8F:FE:02:9B:F3:40
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/be8023d1-347c-3c37-b0fd-044eaf5e935e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/8b7074c2-7c8f-41ac-8307-74ece44a460c.crl
X509v3 Authority Key Identifier:
keyid:C1:CC:88:BC:4A:C0:09:D7:61:48:C3:D1:C3:B2:52:40:69:D5:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c.cer
sbgp-ipAddrBlock: critical
IPv4:
64.77.213.0/24
64.77.216.0/24
64.77.218.0/24
72.14.97.0/24
72.14.119.0/24
72.14.126.0/24
97.75.255.0/24
208.101.227.0/24
208.101.234.0-208.101.236.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
5d:90:1a:1f:ff:39:5b:28:75:b3:37:46:5f:2a:55:1b:38:dc:
03:ca:ec:2a:33:29:50:36:d0:dd:79:f5:f3:11:9b:36:9c:d4:
33:8f:1c:6f:49:73:14:4a:23:58:3d:e3:9e:29:7b:5e:fb:49:
d3:dd:41:95:6b:27:3c:da:6b:bb:c9:77:ad:98:61:9d:23:54:
c2:d6:ce:c9:f1:20:f0:6c:ad:4f:ea:54:71:ac:d2:e4:d3:df:
a3:8e:09:1f:a1:8a:0a:9b:90:4e:54:d1:4f:51:02:13:47:5b:
f5:f5:5f:1e:1d:cb:53:93:ff:b0:cd:c9:03:4f:b0:a7:77:f0:
f4:ec:33:c3:cc:75:f1:4a:d2:66:28:2a:24:6b:c0:fc:ea:d6:
47:a3:03:69:82:d4:e5:32:b2:95:98:cf:3f:94:f4:14:45:a1:
b0:84:2d:11:99:fe:07:d9:ef:16:97:c6:6b:95:ea:48:3f:e9:
69:71:36:10:b3:6e:ed:fd:e0:5d:eb:59:e3:a6:0a:89:68:a1:
3e:c1:03:d4:f3:c4:93:61:e6:3f:85:31:f8:85:57:61:8f:e6:
4c:d3:40:34:9f:84:1f:47:d5:fa:35:4e:76:79:0f:72:42:e4:
d7:d1:a3:2e:47:f8:f8:5f:d3:f2:e8:d5:c2:a7:8b:83:43:be:
9d:d2:1b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:09:06 2025 by rpki-client