Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS202400/0/323630323a666161383a3434383a3a2f34382d3438203d3e20323032393936.roa
File: 323630323a666161383a3434383a3a2f34382d3438203d3e20323032393936.roa (raw, json)
Hash identifier: mDK+xjUTqSa6vpxNovHumATLLmsFoo7OsUcpSgUQeIw=
Subject key identifier: D1:59:68:91:22:08:D2:32:4A:CC:FC:76:C7:6D:41:BD:E2:66:31:B4
Certificate issuer: /CN=2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f
Certificate serial: 43ADDC2301285F15F314BCACB9802520D633A80D
Authority key identifier: B0:BE:7A:BD:BE:B3:E0:14:7D:08:12:2B:69:9C:47:8C:99:A1:B0:FF
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70f5d80c-9daa-4f6f-8f58-181c5f0c4b0a/2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f.cer
Subject info access: rsync://rpki.co/repo/AS202400/0/323630323a666161383a3434383a3a2f34382d3438203d3e20323032393936.roa
Signing time: Sun 19 Nov 2023 10:55:03 +0000
ROA not before: Sun 19 Nov 2023 10:50:03 +0000
ROA not after: Sun 17 Nov 2024 10:55:03 +0000
asID: 202996
IP address blocks: 2602:faa8:448::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 23 Mar 2024 11:05:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:ad:dc:23:01:28:5f:15:f3:14:bc:ac:b9:80:25:20:d6:33:a8:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f
Validity
Not Before: Nov 19 10:50:03 2023 GMT
Not After : Nov 17 10:55:03 2024 GMT
Subject: CN=D15968912208D2324ACCFC76C76D41BDE26631B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9a:9d:80:af:74:3f:2b:1c:f3:8f:99:56:2e:
1f:6d:7d:5a:f1:57:75:56:cd:72:3c:d0:72:ce:3c:
53:f9:b7:92:4b:e3:74:9b:d6:f2:36:9b:f6:8a:cb:
b7:0e:58:fd:41:a0:e0:69:f7:c4:bd:e0:36:94:d6:
7a:75:de:30:c4:a3:6e:68:be:be:74:bf:7d:14:8d:
36:53:da:c9:1b:8b:5f:aa:f0:07:b4:28:3a:fe:72:
d8:45:77:93:aa:4e:97:b8:be:fd:eb:30:76:32:2c:
be:e0:85:43:26:ba:4f:06:22:98:af:45:4f:a0:8e:
1c:29:e9:dc:8f:0c:4f:2e:6b:69:e3:53:d8:6c:c6:
41:d1:67:ec:a1:f4:6f:06:46:51:05:dd:64:75:28:
69:be:50:b7:7b:58:e9:67:ff:7a:94:7d:03:51:30:
ef:36:ec:75:9c:45:9c:37:39:8c:93:78:d5:36:f9:
20:48:ae:c7:ea:ab:52:5f:24:cd:ac:d4:fa:d3:3c:
58:f4:91:9b:c6:5a:3e:19:53:5a:fc:67:1a:24:10:
c6:f7:cc:19:a0:43:79:45:ab:e3:b7:66:22:7b:2e:
3b:a1:86:f0:22:23:c4:fd:58:db:b3:70:8d:a6:bb:
50:11:85:1c:e5:51:2a:4d:39:29:b6:d4:61:fc:52:
61:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:59:68:91:22:08:D2:32:4A:CC:FC:76:C7:6D:41:BD:E2:66:31:B4
X509v3 Authority Key Identifier:
keyid:B0:BE:7A:BD:BE:B3:E0:14:7D:08:12:2B:69:9C:47:8C:99:A1:B0:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS202400/0/B0BE7ABDBEB3E0147D08122B699C478C99A1B0FF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/70f5d80c-9daa-4f6f-8f58-181c5f0c4b0a/2a5af74dbb9d4d437cf3ac13206067caa11b1798319623f21f.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS202400/0/323630323a666161383a3434383a3a2f34382d3438203d3e20323032393936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:faa8:448::/48
Signature Algorithm: sha256WithRSAEncryption
2f:d6:07:f1:96:1e:d0:2c:e5:d1:d2:bd:f3:b1:5c:e3:ae:cd:
23:02:1d:3d:d7:46:03:96:b2:9b:08:14:68:a1:52:ef:30:9b:
69:43:9a:b4:6c:be:b3:de:17:80:ed:3e:59:8b:4c:9b:aa:a2:
8a:d5:cd:e3:c1:2b:d3:05:7a:86:5b:e5:c2:8e:67:76:67:f0:
fc:f1:09:34:55:ed:59:bb:60:bd:af:72:95:b7:1d:13:b1:84:
f7:16:02:2a:2d:71:fa:d1:e7:7a:5e:0d:13:a9:14:d1:0b:b0:
95:84:4e:87:b4:06:1a:58:22:6d:d4:a4:7c:30:7e:6c:ad:12:
41:d2:49:3f:e4:b5:7c:39:91:b6:48:f5:15:a5:8e:83:c2:15:
4f:b4:20:d0:80:c0:f7:fd:a9:b6:a5:8c:e1:a8:5d:17:6e:9f:
10:50:7f:6a:c7:2c:b6:6d:46:9d:2c:ef:fa:62:5b:8b:c6:4f:
1d:2a:60:45:f2:82:be:dc:50:70:5e:00:6d:a4:22:aa:d0:2a:
28:01:6a:85:b5:68:9a:8a:3f:c7:e5:8b:e9:83:9a:8f:a1:8e:
f2:95:02:86:01:88:bd:59:9d:66:48:b0:51:32:74:19:1f:18:
b4:4d:1b:b7:c1:f5:9b:77:10:7d:43:9e:f4:8b:af:35:84:80:
57:f0:82:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 23 13:13:07 2024 by rpki-client on console-ams.rpki-client.org