Route Origin Authorization
$ rpki-client -vvf rpki.roa.net/rrdp/xTom/53/32332e3134312e33322e302f32342d3234203d3e20313334313736.roa
File: 32332e3134312e33322e302f32342d3234203d3e20313334313736.roa (raw, json)
Hash identifier: mUi6q+sccJ6z1w8zUJ5RGHL54eQKuqheAbHojv/9Ur0=
Subject key identifier: 91:B8:EB:67:6D:07:3E:71:D1:17:33:CB:2C:C0:D8:7B:E6:F8:1A:AC
Certificate issuer: /CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b
Certificate serial: 23810A1A90CB050B880F6FAD56AC9885EDAFC31A
Authority key identifier: 74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer
Subject info access: rsync://rpki.roa.net/rrdp/xTom/53/32332e3134312e33322e302f32342d3234203d3e20313334313736.roa
Signing time: Thu 12 Oct 2023 16:10:42 +0000
ROA not before: Thu 12 Oct 2023 16:05:42 +0000
ROA not after: Thu 10 Oct 2024 16:10:42 +0000
asID: 134176
IP address blocks: 23.141.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 15:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:81:0a:1a:90:cb:05:0b:88:0f:6f:ad:56:ac:98:85:ed:af:c3:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81dade47ef565a67c33494e667d03d4da7cff1739b027c640b
Validity
Not Before: Oct 12 16:05:42 2023 GMT
Not After : Oct 10 16:10:42 2024 GMT
Subject: CN=91B8EB676D073E71D11733CB2CC0D87BE6F81AAC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:96:88:92:ec:48:87:00:5b:65:1c:1d:5f:a0:
d5:c1:d2:a4:69:ee:f6:bf:72:f0:10:90:22:39:3f:
2e:df:d2:c6:7c:31:99:42:fe:fc:76:cc:d0:a9:f8:
80:9f:bd:b1:ae:b1:8f:1c:df:56:32:34:46:59:2d:
ef:d8:11:29:bd:43:9e:27:0c:10:84:42:cb:c0:60:
8e:9d:0b:b1:b4:58:cf:fd:ae:62:1d:e5:2a:3d:17:
68:34:24:14:4b:bc:b3:ea:8c:41:ac:de:94:02:32:
09:de:f7:34:0a:53:57:84:4c:3e:ec:c9:f9:c9:ba:
a7:de:3c:fc:ff:b1:d8:23:21:0f:61:26:a2:c3:39:
f2:da:99:a8:73:b5:bb:95:97:af:28:d3:70:6f:e1:
20:8c:89:89:a8:c2:38:c6:c2:8a:7d:72:5b:c2:98:
c2:4d:c7:ae:89:4a:e2:0f:af:14:82:84:87:28:4b:
ce:10:33:f1:0d:0b:db:cc:9d:91:1a:89:55:dd:6d:
fb:f2:ad:6a:5b:49:40:c9:99:d4:29:01:57:84:b3:
93:27:32:9c:da:a2:2f:90:a0:a3:95:cf:fe:1e:56:
1c:df:b1:3a:8a:49:b7:71:97:6c:1e:b9:81:64:f4:
3e:65:b5:f9:c4:6f:a3:7b:46:2e:81:67:8e:4c:fa:
b5:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B8:EB:67:6D:07:3E:71:D1:17:33:CB:2C:C0:D8:7B:E6:F8:1A:AC
X509v3 Authority Key Identifier:
keyid:74:E3:B9:E1:6E:92:C5:1A:89:79:AD:B5:A7:31:DD:E2:D5:EA:E9:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.roa.net/rrdp/xTom/53/74E3B9E16E92C51A8979ADB5A731DDE2D5EAE96C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/b5ae183e-a402-4c1a-b464-670472e82b72/81dade47ef565a67c33494e667d03d4da7cff1739b027c640b.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/53/32332e3134312e33322e302f32342d3234203d3e20313334313736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.141.32.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:f2:84:51:76:9b:fc:27:16:6c:d0:7e:47:5a:2e:c0:92:d8:
40:13:43:29:41:ec:0e:5e:69:3f:f5:ce:4d:9a:16:81:96:1a:
7e:c3:64:94:04:bd:e8:7a:8b:08:cf:6b:41:a3:d4:08:e4:41:
9a:86:96:7c:77:55:ac:77:0b:99:96:85:cb:2e:a2:d4:91:6a:
a8:81:fa:c9:b1:f6:0a:80:e7:58:f4:66:51:a5:9d:1b:8b:90:
fa:e2:68:69:35:f4:fb:f1:81:62:9a:ff:0f:1b:51:77:75:0a:
bd:97:1e:47:c2:37:9a:0f:bb:c5:9f:1b:ef:a3:d2:49:e1:26:
a6:79:17:76:a7:81:99:dd:fb:c1:db:83:47:30:e4:5c:31:40:
d5:21:01:be:05:e6:38:d9:b7:37:62:f7:15:35:dc:94:ee:5a:
f1:62:58:68:92:2e:60:af:ba:48:de:7c:1f:c1:f3:06:ec:73:
aa:5d:78:c2:45:57:28:2d:97:74:ad:6c:bd:2c:92:51:ca:f5:
69:39:4b:12:2f:5f:83:a3:f0:9f:e1:59:02:92:46:d0:04:6c:
b4:10:18:22:7e:88:46:81:e5:86:b7:ae:ce:bf:da:fa:1a:01:
fd:ba:e8:42:a0:3d:71:d4:6c:12:e0:52:e4:55:81:72:12:cd:
21:01:08:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:49 2024 by rpki-client on console-ams.rpki-client.org