Route Origin Authorization
$ rpki-client -vvf rpki-pp.com/repo/GOOFL/0/323630323a663833643a34643a3a2f34382d3438203d3e203437303635.roa
File: 323630323a663833643a34643a3a2f34382d3438203d3e203437303635.roa (raw, json)
Hash identifier: o7zpHzNjv/cPqhXX+pPnaXfKD9Q6mkuZRu9Nv6eQi6U=
Subject key identifier: CB:D9:A2:F2:38:C3:87:A0:8B:3A:B9:5A:6C:CA:42:87:C3:DF:32:86
Certificate issuer: /CN=86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d
Certificate serial: 40EE9DC6437EDF42A3A500BA7FAF2FE185364CD1
Authority key identifier: D4:60:6A:E6:F1:88:38:E2:25:7D:55:AB:B5:00:63:6F:50:92:36:E3
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/7c9b1947-b813-43b3-9152-c4ccbff1cde7/86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d.cer
Subject info access: rsync://rpki-pp.com/repo/GOOFL/0/323630323a663833643a34643a3a2f34382d3438203d3e203437303635.roa
Signing time: Thu 27 Mar 2025 03:15:31 +0000
ROA not before: Thu 27 Mar 2025 03:10:31 +0000
ROA not after: Thu 26 Mar 2026 03:15:31 +0000
asID: 47065
IP address blocks: 2602:f83d:4d::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Mar 2025 03:15:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:ee:9d:c6:43:7e:df:42:a3:a5:00:ba:7f:af:2f:e1:85:36:4c:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d
Validity
Not Before: Mar 27 03:10:31 2025 GMT
Not After : Mar 26 03:15:31 2026 GMT
Subject: CN=CBD9A2F238C387A08B3AB95A6CCA4287C3DF3286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5a:a6:8b:23:78:c0:48:0d:81:91:1e:aa:ba:
db:0b:55:2e:f6:df:bf:c2:97:a2:27:fe:a8:c3:d4:
2b:dd:ac:0f:9c:de:a8:d4:f0:34:8a:3a:56:01:9b:
60:22:d3:95:60:20:b2:9f:59:09:4f:5a:5c:55:1c:
cc:be:9e:b5:1d:37:74:84:d3:24:97:f7:26:07:fa:
bc:96:d3:2e:63:e2:a9:e8:2d:62:94:6a:21:00:b5:
d7:9c:c5:6a:a0:a8:c4:66:25:19:a6:7d:29:a3:4e:
56:3e:d9:02:d4:db:a1:c7:ea:68:35:d1:94:89:64:
b5:c0:a6:00:48:5b:46:07:03:9f:4b:21:e5:6e:52:
d6:f1:3b:d2:48:2e:43:00:5c:83:ce:78:a0:8a:c2:
ad:56:0b:81:0f:22:35:7a:44:89:9f:aa:ae:02:f4:
08:68:88:c6:1b:ad:eb:46:c9:0e:84:6f:d9:c4:1b:
32:eb:9f:dc:f4:ed:25:c9:6f:23:33:63:db:e9:03:
ba:69:7f:cf:bb:28:2b:8b:ef:9f:40:54:d8:2c:38:
a3:e8:e5:d0:79:7f:8d:94:a9:3f:5e:12:d2:61:11:
ae:42:81:d9:41:02:88:19:84:aa:01:f9:96:2a:55:
e5:db:2d:c5:7a:09:8e:b8:68:e6:c7:d1:80:46:23:
14:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:D9:A2:F2:38:C3:87:A0:8B:3A:B9:5A:6C:CA:42:87:C3:DF:32:86
X509v3 Authority Key Identifier:
keyid:D4:60:6A:E6:F1:88:38:E2:25:7D:55:AB:B5:00:63:6F:50:92:36:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-pp.com/repo/GOOFL/0/D4606AE6F18838E2257D55ABB500636F509236E3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/7c9b1947-b813-43b3-9152-c4ccbff1cde7/86de965d710aeee198142f460f82d31bc5a8aae2b2f48e0c5d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-pp.com/repo/GOOFL/0/323630323a663833643a34643a3a2f34382d3438203d3e203437303635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:f83d:4d::/48
Signature Algorithm: sha256WithRSAEncryption
3f:11:71:87:49:ef:c2:d5:cc:0a:64:26:9b:05:ad:28:6f:69:
ca:0d:e7:1d:61:90:64:41:91:97:1b:6a:9b:7b:b3:86:f3:f7:
7c:03:37:cc:0a:00:fa:5a:ce:a0:a7:f9:de:a0:c0:00:d0:bf:
9d:bf:ab:f8:34:94:e2:de:c3:49:bc:1c:e2:2f:66:10:8f:c3:
f8:f9:ae:c3:c4:f9:21:06:b6:b5:14:39:c2:fb:4a:15:81:8d:
68:90:e2:60:56:25:65:6b:a6:cc:4e:2e:74:48:14:10:a0:e6:
dc:31:71:5e:bd:cb:99:f2:c7:96:eb:1a:7c:33:59:45:de:3a:
e1:d9:6c:14:37:95:df:8b:a7:46:ad:1f:a4:e8:4d:36:5a:0f:
a7:60:48:25:f6:33:1d:fa:70:f8:1d:ae:dc:1f:70:fe:c8:f0:
aa:a1:b5:ab:80:a4:37:62:ec:8d:ca:25:11:a3:f8:0e:ce:2c:
33:dd:2c:bf:be:31:3d:a8:82:08:27:91:01:e3:0d:f4:1d:2d:
e1:78:b3:fe:60:68:7f:1c:0f:70:33:38:ef:67:d0:40:fb:a6:
71:9f:0e:4d:03:3b:56:7a:45:ac:6e:1d:10:e9:33:5c:fe:fa:
24:74:29:f7:77:d5:01:2d:00:ea:c7:e8:5a:43:48:3a:4c:e9:
60:33:39:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:32:35 2025 by rpki-client