Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade80f1a80a0181733c5c5f6b5b/0/36362e3131382e3234372e302f32342d3234203d3e20323130353331.roa
File: 36362e3131382e3234372e302f32342d3234203d3e20323130353331.roa (raw, json)
Hash identifier: xeihX71ekYX+lPUPLXDML2K3lKVz98cnLvVt/teAe7I=
Subject key identifier: A1:C9:AA:93:06:95:2A:21:49:23:9F:CA:99:29:B8:AD:E6:09:C8:E8
Certificate issuer: /CN=0985ea50df54e795a4be14ad5188a8e52873787039bb6b27b2
Certificate serial: 14C56E35412C1F0AC4EF0A8552F21F65CDE7E6AC
Authority key identifier: 18:C0:92:4D:23:1D:A3:01:95:16:0B:25:EE:E6:32:7E:B4:03:06:F8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/7225b415-8ae0-4523-b37f-74ed780676aa/0985ea50df54e795a4be14ad5188a8e52873787039bb6b27b2.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade80f1a80a0181733c5c5f6b5b/0/36362e3131382e3234372e302f32342d3234203d3e20323130353331.roa
Signing time: Wed 04 Jan 2023 10:14:21 +0000
ROA not before: Wed 04 Jan 2023 10:09:21 +0000
ROA not after: Wed 03 Jan 2024 10:14:21 +0000
asID: 210531
IP address blocks: 66.118.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:c5:6e:35:41:2c:1f:0a:c4:ef:0a:85:52:f2:1f:65:cd:e7:e6:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0985ea50df54e795a4be14ad5188a8e52873787039bb6b27b2
Validity
Not Before: Jan 4 10:09:21 2023 GMT
Not After : Jan 3 10:14:21 2024 GMT
Subject: CN=A1C9AA9306952A2149239FCA9929B8ADE609C8E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b3:fb:de:bf:b5:cf:ab:57:7f:37:d7:ed:26:
c2:92:5c:ac:67:b8:53:28:72:b4:b7:40:ef:cf:9e:
33:15:72:1c:b1:26:e5:2e:8e:be:51:59:57:fe:02:
95:41:7b:93:8b:9f:1a:35:2e:c6:42:99:1d:21:27:
e0:04:ed:76:ce:0f:2d:ca:55:c9:f1:33:d3:48:59:
26:91:4a:48:b5:9b:80:24:12:24:ea:1d:5e:1c:b6:
6d:2b:7c:8f:2b:3b:95:83:60:59:62:99:16:97:88:
5e:3d:60:a3:1e:8b:a5:6a:0c:2b:80:c8:dc:7d:bc:
82:6e:6c:66:0f:dd:07:08:95:ba:42:b6:ad:6e:d7:
4b:30:a3:e6:8d:17:91:7c:41:86:5d:92:6e:56:62:
1e:3a:c4:58:0f:3a:d9:6c:81:b2:0c:bf:8c:2b:92:
83:e9:e2:44:6c:a2:96:35:63:e4:5b:51:e3:24:2e:
cf:cb:e1:c8:8e:4c:60:7e:6d:2e:04:de:4d:ef:ef:
0c:fb:41:f2:d6:ec:45:df:61:c2:1a:dc:14:aa:0d:
6c:ee:b9:81:7c:b1:b6:79:bf:5a:dd:a4:10:17:ef:
9d:05:56:1f:67:44:a5:f6:df:f1:df:89:a4:c6:6a:
c4:d5:02:9a:af:84:10:42:38:ae:4c:7e:a2:3d:55:
cb:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C9:AA:93:06:95:2A:21:49:23:9F:CA:99:29:B8:AD:E6:09:C8:E8
X509v3 Authority Key Identifier:
keyid:18:C0:92:4D:23:1D:A3:01:95:16:0B:25:EE:E6:32:7E:B4:03:06:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade80f1a80a0181733c5c5f6b5b/0/18C0924D231DA30195160B25EEE6327EB40306F8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/7225b415-8ae0-4523-b37f-74ed780676aa/0985ea50df54e795a4be14ad5188a8e52873787039bb6b27b2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade80f1a80a0181733c5c5f6b5b/0/36362e3131382e3234372e302f32342d3234203d3e20323130353331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.118.247.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:41:6d:37:6e:05:dd:12:3e:6e:b8:63:fb:2f:e3:63:cb:5f:
15:9b:70:6b:46:59:86:7d:62:f6:08:80:68:a1:cf:66:c1:6e:
27:29:7c:95:dd:52:79:b0:3d:8d:10:29:3a:ac:50:eb:ef:f4:
b9:d4:9c:d8:de:88:12:f7:7d:bb:9d:c2:4e:c6:cc:ce:b5:7a:
47:ea:8c:f2:d1:f5:b4:b8:a6:12:8e:f9:7d:84:ca:54:36:58:
2d:54:0e:e1:2c:77:a4:7c:04:a0:9c:a0:56:c2:99:64:8f:38:
0e:4f:47:fa:d4:9b:bb:f6:d0:a0:b4:3d:0e:cc:b0:c2:03:ea:
cd:90:fc:1e:67:09:a6:6e:f3:a0:47:85:83:a0:57:02:14:96:
66:03:61:cc:b2:ac:b3:7f:94:23:86:c2:34:ea:0d:b8:b5:fe:
3e:5e:88:d5:13:34:e9:67:f8:b7:de:d5:45:41:2b:6a:40:5e:
5a:10:02:fb:03:c5:47:1d:d8:a1:61:55:e0:b4:60:e3:19:9f:
50:ce:ee:71:2a:d5:0b:28:6e:30:0d:11:c5:2d:41:90:70:38:
bb:dd:61:d2:7e:e5:e3:f8:eb:4f:71:25:ed:b1:c9:e7:0c:c9:
45:c4:e0:fd:84:c4:97:72:cb:a7:06:df:06:ca:bf:96:47:ba:
6e:20:97:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:31 2024 by rpki-client on console-ams.rpki-client.org