Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/dc15cfed-8174-3295-be54-cdeae3dbc19d.roa
File: dc15cfed-8174-3295-be54-cdeae3dbc19d.roa (raw, json)
Hash identifier: 8z9pQnIOVd8cqdDpkYwff+b+HBJBJS6VM/pTj5ER3A4=
Subject key identifier: 1D:85:32:8D:B6:55:52:90:58:CA:F4:1F:59:33:A9:B3:69:28:83:CD
Certificate issuer: /CN=bebad29c-c2e4-447d-a29e-20f329219ea9
Certificate serial: 010D0C9F432858447FA0B0E6F496A5A794405A00
Authority key identifier: 07:3C:51:6D:EA:85:18:32:66:CA:85:68:84:47:38:0F:36:B9:52:10
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/dc15cfed-8174-3295-be54-cdeae3dbc19d.roa
Signing time: Tue 09 Jan 2024 18:10:34 +0000
ROA not before: Tue 09 Jan 2024 18:10:34 +0000
ROA not after: Mon 08 Apr 2024 17:10:34 +0000
asID: 15224
IP address blocks: 63.140.39.0/24 maxlen: 24
208.67.42.0/24 maxlen: 24
66.235.151.0/24 maxlen: 24
66.235.152.0/23 maxlen: 24
66.117.22.0/24 maxlen: 24
66.117.23.0/24 maxlen: 24
63.140.35.0/24 maxlen: 24
63.140.36.0/23 maxlen: 24
63.140.38.0/24 maxlen: 24
63.140.43.0/24 maxlen: 24
63.140.48.0/23 maxlen: 24
63.140.50.0/23 maxlen: 24
66.117.16.0/24 maxlen: 24
66.117.20.0/24 maxlen: 24
66.117.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 21:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:7f:a0:b0:e6:f4:96:a5:a7:94:40:5a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bebad29c-c2e4-447d-a29e-20f329219ea9
Validity
Not Before: Jan 9 18:10:34 2024 GMT
Not After : Apr 8 17:10:34 2024 GMT
Subject: CN=94d77365-d16e-49c6-bf35-50aa84ee944e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d8:ca:ca:c9:8d:4c:ef:a1:e1:13:29:99:50:
78:08:ce:9c:40:65:47:03:d3:4c:b9:7e:81:5e:34:
35:b0:51:9b:d0:9d:37:38:33:38:20:80:05:88:9d:
68:9e:36:1a:3d:23:a8:e1:21:9f:7e:4e:94:65:8a:
df:d6:6b:cb:5c:f4:10:70:36:51:ea:7e:90:ae:25:
a8:a3:a2:d1:a8:be:0b:49:71:b9:a4:86:ef:c4:33:
5c:14:06:ac:48:25:e3:3a:0a:e6:b1:56:04:f9:4e:
72:35:0c:77:6d:bc:7d:7a:41:ed:91:f9:42:a4:20:
96:7b:6e:c3:32:71:8f:35:56:c4:d3:15:a1:43:81:
c7:25:5d:bd:cb:45:ed:b1:af:9a:26:e4:db:6f:31:
2f:97:9b:f4:49:45:55:53:88:c5:44:2d:8e:0b:04:
2a:6b:28:48:35:28:de:ff:ab:9e:88:ed:72:85:d0:
3c:01:e6:b6:04:27:c1:d0:1e:15:3c:3e:5c:b8:82:
2a:22:cb:76:57:52:d5:ed:4a:16:6b:a3:f3:ef:83:
14:5c:1a:5b:b9:f2:86:bf:9f:bc:96:29:b4:3f:0a:
67:6a:d2:52:13:c0:3a:dc:cc:79:9b:7d:5d:f4:a2:
5a:61:26:5e:07:b2:6b:f4:d7:20:2a:70:ac:68:53:
8a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:85:32:8D:B6:55:52:90:58:CA:F4:1F:59:33:A9:B3:69:28:83:CD
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/dc15cfed-8174-3295-be54-cdeae3dbc19d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9/bebad29c-c2e4-447d-a29e-20f329219ea9.crl
X509v3 Authority Key Identifier:
keyid:07:3C:51:6D:EA:85:18:32:66:CA:85:68:84:47:38:0F:36:B9:52:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/bebad29c-c2e4-447d-a29e-20f329219ea9.cer
sbgp-ipAddrBlock: critical
IPv4:
63.140.35.0-63.140.39.255
63.140.43.0/24
63.140.48.0/22
66.117.16.0/24
66.117.20.0/22
66.235.151.0-66.235.153.255
208.67.42.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
72:b7:4b:03:a1:ca:2c:e5:54:9f:7e:eb:b5:f3:e9:83:96:d6:
e8:79:e3:e4:c1:2d:2f:ac:71:11:30:70:34:9c:5b:81:10:73:
92:4e:b5:c9:db:cc:4b:7b:77:6b:66:00:8d:99:42:78:ba:cc:
03:71:54:36:09:bc:ad:f1:5b:9b:b9:30:87:77:21:3f:8e:cf:
e0:24:18:b6:b2:72:f3:59:63:68:68:8c:94:88:3c:24:be:ad:
b7:ef:7c:75:7b:26:d1:99:53:22:1e:f2:42:3d:7b:0b:a6:a9:
d6:6e:25:ee:07:64:88:9f:13:a3:14:4c:31:29:e9:84:a8:aa:
a7:47:97:1b:8b:a9:77:b1:92:56:95:fc:c1:3f:da:80:2f:50:
10:97:13:93:7d:35:1f:37:3a:20:bd:2b:00:a6:f3:30:8c:8a:
e9:8a:26:ca:86:ea:28:d8:98:b3:fe:f3:89:57:7b:21:7a:cc:
e2:92:e5:a1:4f:fc:cf:5b:95:10:cd:31:ed:76:9b:06:0b:14:
8a:df:18:d8:b4:59:68:95:e6:95:39:a9:3e:47:7a:d2:5a:e6:
67:ca:37:38:cc:1a:e6:6e:65:0a:8a:0c:e8:7c:bb:bd:91:b4:
45:70:57:a1:57:5c:ac:4b:fe:50:41:1c:fe:28:cc:68:dd:1b:
43:1a:ba:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 12 01:11:59 2024 by rpki-client on console-fra.rpki-client.org