Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: 1mqaRxSqBZdecVuTqGEc1fORs07ASpq0A2E9QmKHbws=
Subject key identifier: 01:AA:FB:22:2F:2F:2A:4C:43:0E:DB:EE:8F:15:4D:32:D3:C1:20:9A
Certificate issuer: /CN=ec93568485034d6f590126278015e55786765323f329d6aa05
Certificate serial: 2BBA368E1901362DC032071EADC2E0E102DC997C
Authority key identifier: BB:27:B3:7B:58:F0:56:06:E1:5F:52:CA:24:2E:A1:D4:FE:B6:B3:04
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/ec93568485034d6f590126278015e55786765323f329d6aa05.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS2914.roa
Signing time: Wed 31 May 2023 15:30:12 +0000
ROA not before: Wed 31 May 2023 15:25:12 +0000
ROA not after: Wed 29 May 2024 15:30:12 +0000
asID: 2914
IP address blocks: 140.99.64.0/24 maxlen: 24
140.99.65.0/24 maxlen: 24
140.99.67.0/24 maxlen: 24
140.99.68.0/24 maxlen: 24
140.99.69.0/24 maxlen: 24
140.99.72.0/24 maxlen: 24
140.99.74.0/24 maxlen: 24
140.99.76.0/24 maxlen: 24
140.99.80.0/24 maxlen: 24
140.99.82.0/24 maxlen: 24
140.99.89.0/24 maxlen: 24
140.99.105.0/24 maxlen: 24
140.99.106.0/24 maxlen: 24
140.99.109.0/24 maxlen: 24
140.99.110.0/24 maxlen: 24
140.99.111.0/24 maxlen: 24
140.99.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:ba:36:8e:19:01:36:2d:c0:32:07:1e:ad:c2:e0:e1:02:dc:99:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec93568485034d6f590126278015e55786765323f329d6aa05
Validity
Not Before: May 31 15:25:12 2023 GMT
Not After : May 29 15:30:12 2024 GMT
Subject: CN=01AAFB222F2F2A4C430EDBEE8F154D32D3C1209A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a9:34:3f:36:c8:62:74:08:c5:a7:d1:eb:21:
15:88:ff:b4:31:19:56:26:1a:c9:41:57:13:be:c0:
99:70:49:de:5c:8f:1d:4a:4a:e2:1b:0d:52:30:bb:
36:ec:09:98:eb:e4:ad:0c:87:c0:b2:9d:db:56:1b:
c8:09:16:78:5a:b6:74:e5:96:58:e8:f2:36:21:9e:
d5:33:ba:78:fb:e5:a4:86:e1:54:83:63:fe:88:17:
81:13:b8:db:13:ab:d9:15:bb:03:22:a1:94:c7:b1:
e8:cf:aa:69:2c:ef:98:a0:89:fb:fd:0d:69:31:40:
b1:4b:94:d1:6c:60:60:f2:8c:9c:81:95:a6:dd:9f:
10:be:4f:a6:8f:98:23:95:e2:4c:db:53:a6:6f:74:
fd:ca:c0:41:93:84:ef:04:d3:98:65:98:31:fa:4a:
4d:83:50:22:23:1e:66:2c:cb:49:ed:d6:9e:c7:dd:
fe:70:86:b6:97:36:79:65:ff:07:bf:87:a7:b2:cc:
82:04:4a:53:1f:82:b0:ad:31:c1:f8:5c:a3:9d:3a:
81:0d:f4:50:c7:b2:d9:3a:6f:dd:59:bf:49:4a:20:
e7:09:90:28:2f:46:cb:52:91:af:46:22:ce:f3:39:
7f:b3:14:e2:99:21:d8:3e:47:16:04:4a:ff:7b:0a:
08:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AA:FB:22:2F:2F:2A:4C:43:0E:DB:EE:8F:15:4D:32:D3:C1:20:9A
X509v3 Authority Key Identifier:
keyid:BB:27:B3:7B:58:F0:56:06:E1:5F:52:CA:24:2E:A1:D4:FE:B6:B3:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/BB27B37B58F05606E15F52CA242EA1D4FEB6B304.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/c556b910-dc6c-4228-adf3-8828ac96ee60/ec93568485034d6f590126278015e55786765323f329d6aa05.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade82d5de4101837fd0df0a70c8/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.99.64.0/23
140.99.67.0-140.99.69.255
140.99.72.0/24
140.99.74.0/24
140.99.76.0/24
140.99.80.0/24
140.99.82.0/24
140.99.89.0/24
140.99.105.0-140.99.106.255
140.99.109.0-140.99.111.255
140.99.113.0/24
Signature Algorithm: sha256WithRSAEncryption
94:b4:7d:7d:8f:5b:eb:cb:89:4f:a6:a4:f7:6d:6f:0e:af:ba:
dc:34:3b:89:7c:30:ca:55:2b:bd:6e:89:2d:26:25:67:20:73:
5b:fe:e6:f3:3f:67:05:ac:84:ab:2c:03:f1:40:cc:f7:17:b0:
6d:6e:30:9e:b6:1b:d0:37:66:e5:93:da:fe:75:a5:78:95:9d:
f5:5f:8e:a4:53:2b:bd:42:30:ca:dd:65:50:ea:f8:ef:60:88:
4f:7b:9c:bc:e9:e2:85:0b:a6:eb:d3:95:96:0d:ba:7f:39:fb:
1a:7b:c0:b9:73:9d:24:c0:32:dd:b1:b0:1d:77:ae:35:1b:45:
e4:e0:3a:29:f4:4b:d3:20:31:84:a5:6a:b5:3f:11:3b:a3:85:
11:9d:6e:00:eb:60:14:da:43:e9:1b:d5:7f:b4:5e:b7:21:e4:
9c:11:d3:d9:35:57:09:0d:da:82:29:b4:81:4b:93:f4:5a:26:
80:7c:38:6e:56:e7:0a:e3:bf:b6:e2:07:a5:bf:7d:3a:3b:7d:
76:33:ee:49:17:6c:a0:4e:e1:11:6e:ca:99:8f:1b:97:09:95:
95:ff:ec:84:3b:12:dc:7d:92:d4:94:43:0f:be:be:8f:f9:29:
cf:6e:21:25:31:33:11:c2:ce:f4:23:99:27:9b:e7:52:ab:7c:
a9:b2:e1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:03 2024 by rpki-client on console-fra.rpki-client.org