Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/323430373a636463303a633031303a3a2f34342d3438203d3e20313438393832.roa
File: 323430373a636463303a633031303a3a2f34342d3438203d3e20313438393832.roa (raw, json)
Hash identifier: IbsQwly7cnVTBEgiFgf+/enW5rq3r6x9s+im/VDnjO0=
Subject key identifier: 9D:86:47:A3:7C:DB:69:53:D0:E4:E0:61:87:6E:DB:85:E6:21:22:BA
Certificate issuer: /CN=A916C75D0000/serialNumber=ADBE1A0F46F9C77B0D249FD6A438B48B7FB21BCF
Certificate serial: 1EB3E237A4788630CFBCC4E286E6141BCC4BB165
Authority key identifier: AD:BE:1A:0F:46:F9:C7:7B:0D:24:9F:D6:A4:38:B4:8B:7F:B2:1B:CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rb4aD0b5x3sNJJ_WpDi0i3-yG88.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/323430373a636463303a633031303a3a2f34342d3438203d3e20313438393832.roa
Signing time: Fri 16 Aug 2024 07:02:28 +0000
ROA not before: Fri 16 Aug 2024 06:57:28 +0000
ROA not after: Fri 15 Aug 2025 07:02:28 +0000
asID: 148982
IP address blocks: 2407:cdc0:c010::/44 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:b3:e2:37:a4:78:86:30:cf:bc:c4:e2:86:e6:14:1b:cc:4b:b1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C75D0000
Validity
Not Before: Aug 16 06:57:28 2024 GMT
Not After : Aug 15 07:02:28 2025 GMT
Subject: CN=9D8647A37CDB6953D0E4E061876EDB85E62122BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:75:6c:3c:78:a9:e4:50:92:55:5a:89:04:1b:
b8:c7:bd:ac:6a:c7:a6:2a:38:c0:a0:6d:aa:a6:32:
b3:a3:32:8f:56:de:38:c4:09:98:0e:98:2a:7e:08:
2a:04:b0:ca:91:cf:76:f9:0b:7e:98:f6:09:aa:68:
23:44:b2:3a:ab:e2:bb:da:d3:18:ec:ad:4a:35:42:
5f:a2:12:8e:58:b8:61:8c:69:a4:fc:91:09:59:d7:
eb:58:9e:e9:71:5a:b4:ed:f8:50:63:6d:df:0d:75:
3b:ae:44:1e:fb:69:bb:26:e8:97:da:95:1f:a4:38:
f8:a6:be:d0:ed:31:0c:4b:7e:93:e6:dd:3c:82:08:
c2:23:9a:97:d8:ed:64:58:2f:fa:ce:c9:75:44:d3:
2b:8c:a5:d7:b1:59:8c:c8:5f:ab:3f:50:aa:01:41:
44:a0:36:22:5f:b6:ae:56:30:36:a1:a0:91:9d:3a:
63:00:3f:ff:14:ef:9f:2d:0e:31:21:5b:e4:48:66:
41:d2:42:e4:05:94:cf:9a:f7:53:a7:b6:49:b1:33:
62:ad:40:15:0a:98:d0:0b:f8:1c:35:a9:da:36:fa:
91:d1:8e:46:61:07:a5:a0:ed:61:36:03:9a:80:68:
5a:43:4f:bc:15:bd:cd:a2:91:66:48:8e:16:69:49:
be:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:86:47:A3:7C:DB:69:53:D0:E4:E0:61:87:6E:DB:85:E6:21:22:BA
X509v3 Authority Key Identifier:
keyid:AD:BE:1A:0F:46:F9:C7:7B:0D:24:9F:D6:A4:38:B4:8B:7F:B2:1B:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/ADBE1A0F46F9C77B0D249FD6A438B48B7FB21BCF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rb4aD0b5x3sNJJ_WpDi0i3-yG88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf914e0aa6019159f2fb270ca8/1/323430373a636463303a633031303a3a2f34342d3438203d3e20313438393832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:cdc0:c010::/44
Signature Algorithm: sha256WithRSAEncryption
6f:a4:2f:64:38:43:42:ed:3f:7c:bd:62:c9:93:b0:12:ce:b0:
f8:e4:ff:1e:57:c9:b7:05:36:87:f8:4a:27:47:5a:f7:9a:97:
5f:92:da:f2:a5:f1:c3:9f:13:87:1c:67:d5:19:00:48:4e:66:
05:02:3e:66:74:d5:4f:35:8b:08:48:3d:a6:86:a7:a9:4a:6e:
0e:c1:d1:9c:22:34:c8:72:28:40:41:06:65:86:18:e7:84:86:
14:56:90:98:1b:fc:f4:bb:2f:d1:63:b6:cb:61:50:e7:1a:44:
f1:73:85:4e:89:7f:d0:72:59:e5:4d:6f:a4:02:18:dc:ff:6f:
b4:20:67:19:e3:65:c7:90:1a:4c:61:1e:79:a2:b8:a6:b7:2d:
79:e5:ed:e5:d4:63:d7:1c:66:59:e4:a6:45:a0:0e:0b:06:f7:
02:aa:6d:65:0f:31:79:75:db:7c:da:7d:f9:32:72:11:f7:45:
58:38:01:82:51:d3:ca:6e:57:78:16:a3:18:e3:9f:3a:4d:cf:
63:73:c2:31:85:70:8d:a8:2e:57:ff:90:43:98:8e:56:36:2a:
8a:70:bd:61:90:f8:c1:81:cb:76:04:ad:2e:72:fe:ad:f3:b3:
19:70:ab:f2:cb:66:fb:c8:43:c0:8a:bd:70:4d:3f:d4:e9:87:
8d:c0:e0:e4
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgIUHrPiN6R4hjDPvMTihuYUG8xLsWUwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxNkM3NUQwMDAwMTEwLwYDVQQFEyhBREJFMUEwRjQ2
RjlDNzdCMEQyNDlGRDZBNDM4QjQ4QjdGQjIxQkNGMB4XDTI0MDgxNjA2NTcyOFoX
DTI1MDgxNTA3MDIyOFowMzExMC8GA1UEAxMoOUQ4NjQ3QTM3Q0RCNjk1M0QwRTRF
MDYxODc2RURCODVFNjIxMjJCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKt1bDx4qeRQklVaiQQbuMe9rGrHpio4wKBtqqYys6Myj1beOMQJmA6YKn4I
KgSwypHPdvkLfpj2CapoI0SyOqviu9rTGOytSjVCX6ISjli4YYxppPyRCVnX61ie
6XFatO34UGNt3w11O65EHvtpuybol9qVH6Q4+Ka+0O0xDEt+k+bdPIIIwiOal9jt
ZFgv+s7JdUTTK4yl17FZjMhfqz9QqgFBRKA2Il+2rlYwNqGgkZ06YwA//xTvny0O
MSFb5EhmQdJC5AWUz5r3U6e2SbEzYq1AFQqY0Av4HDWp2jb6kdGORmEHpaDtYTYD
moBoWkNPvBW9zaKRZkiOFmlJvt0CAwEAAaOCAkkwggJFMB0GA1UdDgQWBBSdhkej
fNtpU9Dk4GGHbtuF5iEiujAfBgNVHSMEGDAWgBStvhoPRvnHew0kn9akOLSLf7Ib
zzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr
aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjkxNGUwYWE2MDE5MTU5
ZjJmYjI3MGNhOC8xL0FEQkUxQTBGNDZGOUM3N0IwRDI0OUZENkE0MzhCNDhCN0ZC
MjFCQ0YuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y
cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3
QzcyRkQxRkYyL3JiNGFEMGI1eDNzTkpKX1dwRGkwaTMteUc4OC5jZXIwgawGCCsG
AQUFBwELBIGfMIGcMIGZBggrBgEFBQcwC4aBjHJzeW5jOi8vcnBraS1ycHMuYXJp
bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjkxNGUwYWE2MDE5MTU5ZjJmYjI3MGNh
OC8xLzMyMzQzMDM3M2E2MzY0NjMzMDNhNjMzMDMxMzAzYTNhMmYzNDM0MmQzNDM4
MjAzZDNlMjAzMTM0MzgzOTM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH
DgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkB83AwBAwDQYJKoZIhvcN
AQELBQADggEBAG+kL2Q4Q0LtP3y9YsmTsBLOsPjk/x5XybcFNof4SidHWveal1+S
2vKl8cOfE4ccZ9UZAEhOZgUCPmZ01U81iwhIPaaGp6lKbg7B0ZwiNMhyKEBBBmWG
GOeEhhRWkJgb/PS7L9FjtsthUOcaRPFzhU6Jf9ByWeVNb6QCGNz/b7QgZxnjZceQ
GkxhHnmiuKa3LXnl7eXUY9ccZlnkpkWgDgsG9wKqbWUPMXl123zaffkychH3RVg4
AYJR08puV3gWoxjjnzpNz2NzwjGFcI2oLlf/kEOYjlY2KopwvWGQ+MGBy3YErS5y
/q3zsxlwq/LLZvvIQ8CKvXBNP9Tph43A4OQ=
-----END CERTIFICATE-----
Generated at Fri Apr 4 23:43:05 2025 by rpki-client