Route Origin Authorization
$ rpki-client -vvf rpki-pp.com/repo/GOOFL/0/323630323a663833643a3a2f34302d3438203d3e203133353237.roa
File: 323630323a663833643a3a2f34302d3438203d3e203133353237.roa (raw, json)
Hash identifier: OipuHWoEdoYAwAvQBp7mHF0KEAQZBLvHuiTuB3Z8GMw=
Subject key identifier: 37:B7:1E:10:95:ED:1A:07:CE:A7:7E:99:2B:43:86:C8:D1:38:3E:18
Certificate issuer: /CN=86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d
Certificate serial: 73172FFF7F724DF71C80520A7B6BB6CE52C40EBE
Authority key identifier: D4:60:6A:E6:F1:88:38:E2:25:7D:55:AB:B5:00:63:6F:50:92:36:E3
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/7c9b1947-b813-43b3-9152-c4ccbff1cde7/86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d.cer
Subject info access: rsync://rpki-pp.com/repo/GOOFL/0/323630323a663833643a3a2f34302d3438203d3e203133353237.roa
Signing time: Thu 20 Mar 2025 18:32:34 +0000
ROA not before: Thu 20 Mar 2025 18:27:34 +0000
ROA not after: Thu 19 Mar 2026 18:32:34 +0000
asID: 13527
IP address blocks: 2602:f83d::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Mar 2025 19:08:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:17:2f:ff:7f:72:4d:f7:1c:80:52:0a:7b:6b:b6:ce:52:c4:0e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d
Validity
Not Before: Mar 20 18:27:34 2025 GMT
Not After : Mar 19 18:32:34 2026 GMT
Subject: CN=37B71E1095ED1A07CEA77E992B4386C8D1383E18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:26:31:5f:ef:ee:02:97:a5:15:6b:b2:05:03:
3b:c9:5f:2a:08:6a:d0:60:ea:36:d0:95:5f:bf:48:
f7:d9:96:82:20:f9:8e:a6:4e:64:71:2c:fc:4a:26:
c6:3b:26:54:2d:e7:36:fc:a7:0a:b2:08:68:32:cb:
6b:ad:4a:00:cb:6f:67:70:70:88:fb:f9:e6:1a:a0:
d0:f9:5f:e3:bc:00:a9:03:8a:a3:30:86:ed:a8:cc:
54:5b:46:fb:9b:1c:6f:23:0d:ec:90:43:62:ec:9a:
af:51:52:bc:01:be:c4:70:07:40:36:e2:5e:b8:91:
db:99:fa:a3:b8:c4:2e:a3:e2:58:d7:59:b7:09:f8:
15:b2:ac:e6:57:ab:e7:18:0d:d6:66:8c:13:cf:cb:
ff:07:54:91:17:8f:99:f7:3f:5f:6e:4b:3e:df:63:
58:64:18:61:bf:c5:25:10:23:05:16:69:5a:f0:99:
10:e7:8f:9f:ad:e5:5e:5c:6c:87:e4:0b:a9:8a:e2:
86:cc:46:7a:da:2e:33:85:26:40:27:28:4b:fa:a8:
a8:ed:9a:4c:00:8a:1d:4a:e5:29:9f:a8:2f:51:52:
7a:89:bc:59:42:9a:fc:24:e2:15:27:12:73:9d:fc:
f3:d6:83:8d:75:b5:c7:89:aa:e9:fa:0e:1c:18:d3:
bb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B7:1E:10:95:ED:1A:07:CE:A7:7E:99:2B:43:86:C8:D1:38:3E:18
X509v3 Authority Key Identifier:
keyid:D4:60:6A:E6:F1:88:38:E2:25:7D:55:AB:B5:00:63:6F:50:92:36:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-pp.com/repo/GOOFL/0/D4606AE6F18838E2257D55ABB500636F509236E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/7c9b1947-b813-43b3-9152-c4ccbff1cde7/86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-pp.com/repo/GOOFL/0/323630323a663833643a3a2f34302d3438203d3e203133353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:f83d::/40
Signature Algorithm: sha256WithRSAEncryption
48:d6:ff:7c:42:82:ff:ce:e9:af:df:a2:c8:14:94:c5:86:2e:
50:b0:6e:8a:ef:18:e9:64:82:fb:ce:9d:56:c4:8f:d2:ef:5a:
06:cd:c1:51:53:cb:c1:80:22:c6:96:0d:cb:59:62:58:92:d4:
51:05:34:fa:46:9b:bb:f4:ae:f6:2f:ab:12:6d:4f:b8:13:db:
80:15:fc:1d:a7:49:23:ef:96:9e:76:e5:3e:e6:71:74:c3:c5:
7d:7d:9a:f8:3c:02:57:ab:7a:3f:b7:b9:0a:f1:f3:ab:45:0d:
bf:aa:a1:bd:3b:d6:07:bf:13:ac:e9:98:50:e3:a8:54:c4:aa:
e1:42:db:21:86:da:cc:f5:3a:d4:90:5a:fd:f6:b9:47:1c:eb:
94:61:d7:3f:ea:cc:2c:a8:cd:61:79:96:54:43:ac:9b:56:ba:
3a:20:c7:dc:bb:e7:14:36:71:0b:97:ab:cb:33:37:f6:ea:0f:
35:e9:c2:ce:9c:1b:e3:d2:ba:52:b1:7e:90:71:a0:9f:aa:89:
a0:bb:eb:cb:6e:9c:c9:f1:c8:c8:71:03:66:34:66:c3:e7:d0:
97:fc:7a:04:0b:8b:29:44:95:5c:c0:ce:68:d1:59:d2:6f:63:
4b:0d:8b:9f:0a:3b:c0:77:df:ea:39:bd:bf:fa:c9:76:b0:e7:
30:0c:e9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 00:11:28 2025 by rpki-client