Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/d43161e4-dac1-407b-8f16-55e6ef100d0a/200542e8-7d59-3372-9873-6c8bd2451295.roa
File: 200542e8-7d59-3372-9873-6c8bd2451295.roa (raw, json)
Hash identifier: OKn10IJlm4IAZ3YJQywItgrh8L32b6ci1J/zbl2HoCk=
Subject key identifier: 32:6C:80:CF:DB:4D:91:55:E5:96:4A:BB:A0:54:10:22:57:FF:BB:6E
Certificate issuer: /CN=d43161e4-dac1-407b-8f16-55e6ef100d0a
Certificate serial: 010D0C9F4328576D51CC73C042CFC173081B08C7
Authority key identifier: 0F:AD:FA:40:22:6B:5D:BA:CB:0D:38:35:36:8C:86:20:CC:D9:5E:B3
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/d43161e4-dac1-407b-8f16-55e6ef100d0a.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/d43161e4-dac1-407b-8f16-55e6ef100d0a/200542e8-7d59-3372-9873-6c8bd2451295.roa
Signing time: Wed 01 Jul 2020 02:00:56 +0000
ROA not before: Mon 29 Jun 2020 04:00:00 +0000
ROA not after: Tue 04 Oct 2022 04:00:00 +0000
asID: 45102
IP address blocks: 47.88.0.0/16 maxlen: 24
47.80.0.0/16 maxlen: 24
47.74.0.0/16 maxlen: 24
47.86.0.0/16 maxlen: 24
47.87.0.0/16 maxlen: 24
47.89.0.0/16 maxlen: 24
47.90.0.0/16 maxlen: 24
47.91.0.0/16 maxlen: 24
47.235.0.0/16 maxlen: 24
47.236.0.0/16 maxlen: 24
47.237.0.0/16 maxlen: 24
47.238.0.0/16 maxlen: 24
47.239.0.0/16 maxlen: 24
47.240.0.0/16 maxlen: 24
47.241.0.0/16 maxlen: 24
47.242.0.0/16 maxlen: 24
47.243.0.0/16 maxlen: 24
47.244.0.0/16 maxlen: 24
47.245.0.0/16 maxlen: 24
47.246.0.0/16 maxlen: 24
47.250.0.0/16 maxlen: 24
47.251.0.0/16 maxlen: 24
47.252.0.0/16 maxlen: 24
47.253.0.0/16 maxlen: 24
47.254.0.0/16 maxlen: 24
72.254.0.0/16 maxlen: 24
139.95.0.0/16 maxlen: 24
147.139.0.0/16 maxlen: 24
155.102.0.0/16 maxlen: 24
163.181.0.0/16 maxlen: 24
198.11.128.0/18 maxlen: 24
205.204.96.0/19 maxlen: 24
47.85.0.0/16 maxlen: 24
47.83.0.0/16 maxlen: 24
47.84.0.0/16 maxlen: 24
47.81.0.0/16 maxlen: 24
47.82.0.0/16 maxlen: 24
47.78.0.0/16 maxlen: 24
47.52.0.0/16 maxlen: 24
47.56.0.0/16 maxlen: 24
47.57.0.0/16 maxlen: 24
47.75.0.0/16 maxlen: 24
47.76.0.0/16 maxlen: 24
47.77.0.0/16 maxlen: 24
47.79.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:57:6d:51:cc:73:c0:42:cf:c1:73:08:1b:08:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d43161e4-dac1-407b-8f16-55e6ef100d0a
Validity
Not Before: Jun 29 04:00:00 2020 GMT
Not After : Oct 4 04:00:00 2022 GMT
Subject: CN=cbd6676f-a0fd-4620-bd56-34f639917110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b3:23:1c:2a:97:4d:f6:d9:d3:45:24:67:29:
f2:41:41:1f:5d:ae:6b:c8:03:e8:19:6c:d5:ae:28:
c5:a8:f6:e5:47:f0:87:e9:ed:66:38:a6:68:ad:75:
37:43:53:fe:f6:59:07:db:2f:39:c1:21:60:b2:0b:
ca:1d:b8:21:3d:7b:25:0e:54:bb:f5:9f:9d:f3:34:
2c:2b:72:e7:3e:f4:36:e5:76:86:3c:96:cf:52:51:
23:30:6e:a3:2b:08:ca:26:30:7e:fd:bc:7f:f1:43:
82:c3:ee:e0:f9:62:69:14:ba:d6:c6:c9:06:bd:ed:
de:1f:ee:4f:f9:a4:32:47:3a:55:d2:11:72:0a:31:
b8:0f:6b:d5:17:43:61:3e:fc:9c:d4:1f:65:ef:8d:
97:42:d9:fc:0c:35:3b:58:82:d6:60:51:2d:38:7a:
18:d2:86:0f:26:12:e6:eb:23:4b:6e:ab:9e:7e:f1:
a9:5e:62:0b:8b:6c:71:51:69:bd:b3:af:c5:99:d9:
3d:93:30:84:56:00:d9:63:5f:e7:3d:a0:a9:7a:55:
7d:b4:9b:2b:c1:9a:3e:85:0a:a6:4f:03:2f:7b:f5:
2f:25:d0:a3:3a:0c:57:ec:ce:44:90:5b:24:0d:b9:
62:33:f1:0f:19:2c:fb:0c:fd:f1:ed:3d:0f:a3:00:
fe:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6C:80:CF:DB:4D:91:55:E5:96:4A:BB:A0:54:10:22:57:FF:BB:6E
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/d43161e4-dac1-407b-8f16-55e6ef100d0a/200542e8-7d59-3372-9873-6c8bd2451295.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/d43161e4-dac1-407b-8f16-55e6ef100d0a/d43161e4-dac1-407b-8f16-55e6ef100d0a.crl
X509v3 Authority Key Identifier:
keyid:0F:AD:FA:40:22:6B:5D:BA:CB:0D:38:35:36:8C:86:20:CC:D9:5E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/d43161e4-dac1-407b-8f16-55e6ef100d0a.cer
sbgp-ipAddrBlock: critical
IPv4:
47.52.0.0/16
47.56.0.0/15
47.74.0.0-47.91.255.255
47.235.0.0-47.246.255.255
47.250.0.0-47.254.255.255
72.254.0.0/16
139.95.0.0/16
147.139.0.0/16
155.102.0.0/16
163.181.0.0/16
198.11.128.0/18
205.204.96.0/19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
94:9a:55:c5:ee:47:90:26:73:0d:fe:41:54:d8:56:1d:1c:57:
a7:af:dc:c3:bc:c3:93:13:90:0e:c0:9c:9c:58:f0:6a:c6:5c:
9c:9d:05:21:7d:c2:5d:70:12:7f:52:67:63:59:c3:25:8f:64:
4a:fb:b0:3c:6e:70:0a:9a:85:0e:72:73:fa:ec:d5:9b:2b:ea:
8b:57:86:d8:4d:3e:aa:0e:3f:0f:0c:bc:a9:a8:aa:af:24:7d:
f4:bf:6c:20:e7:b3:b9:fd:98:ca:8a:32:4a:29:fc:f7:1e:52:
ee:f2:48:6b:a7:a0:70:34:35:ff:c1:92:80:d9:3e:59:ff:08:
c0:56:2c:ce:f1:af:0d:d6:d1:1d:e7:90:d2:94:a2:fa:79:31:
89:be:e8:1c:02:bf:52:90:73:84:1a:5f:92:16:a0:0b:5b:65:
f9:67:18:dc:5f:4a:22:90:43:a3:81:00:22:bf:b8:b3:35:d5:
8a:c9:b4:67:e8:c9:90:5e:72:9f:1a:5a:40:5f:d4:f3:53:94:
a0:60:00:1e:ff:ab:28:f9:cf:8d:e1:02:94:68:12:98:89:12:
5c:88:ad:f3:58:1f:fc:0e:53:97:fc:57:9d:8e:4d:5c:44:f8:
3c:80:06:d1:8c:7f:65:32:7c:e9:b4:29:1c:72:89:9e:a0:92:
bc:6d:f4:51
-----BEGIN CERTIFICATE-----
MIIGjDCCBXagAwIBAgIUAQ0Mn0MoV21RzHPAQs/BcwgbCMcwCwYJKoZIhvcNAQEL
MC8xLTArBgNVBAMTJGQ0MzE2MWU0LWRhYzEtNDA3Yi04ZjE2LTU1ZTZlZjEwMGQw
YTAeFw0yMDA2MjkwNDAwMDBaFw0yMjEwMDQwNDAwMDBaMC8xLTArBgNVBAMTJGNi
ZDY2NzZmLWEwZmQtNDYyMC1iZDU2LTM0ZjYzOTkxNzExMDCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBANWzIxwql0322dNFJGcp8kFBH12ua8gD6Bls1a4o
xaj25Ufwh+ntZjimaK11N0NT/vZZB9svOcEhYLILyh24IT17JQ5Uu/WfnfM0LCty
5z70NuV2hjyWz1JRIzBuoysIyiYwfv28f/FDgsPu4PliaRS61sbJBr3t3h/uT/mk
Mkc6VdIRcgoxuA9r1RdDYT78nNQfZe+Nl0LZ/Aw1O1iC1mBRLTh6GNKGDyYS5usj
S26rnn7xqV5iC4tscVFpvbOvxZnZPZMwhFYA2WNf5z2gqXpVfbSbK8GaPoUKpk8D
L3v1LyXQozoMV+zORJBbJA25YjPxDxks+wz98e09D6MA/kkCAwEAAaOCA6IwggOe
MB0GA1UdDgQWBBQybIDP202RVeWWSrugVBAiV/+7bjCB5QYIKwYBBQUHAQsEgdgw
gdUwgdIGCCsGAQUFBzALhoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRv
cnkvYXJpbi1ycGtpLXRhLzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIx
NTdkMy83NDZlMDExMS1mYWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvZDQzMTYx
ZTQtZGFjMS00MDdiLThmMTYtNTVlNmVmMTAwZDBhLzIwMDU0MmU4LTdkNTktMzM3
Mi05ODczLTZjOGJkMjQ1MTI5NS5yb2EwgdwGA1UdHwSB1DCB0TCBzqCBy6CByIaB
xXJzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81
ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMvNzQ2ZTAxMTEtZmFm
Yi00MzBmLWI3NzgtZDIwNGNmY2Q5OWE4L2Q0MzE2MWU0LWRhYzEtNDA3Yi04ZjE2
LTU1ZTZlZjEwMGQwYS9kNDMxNjFlNC1kYWMxLTQwN2ItOGYxNi01NWU2ZWYxMDBk
MGEuY3JsMB8GA1UdIwQYMBaAFA+t+kAia126yw04NTaMhiDM2V6zMA4GA1UdDwEB
/wQEAwIHgDCBwAYIKwYBBQUHAQEEgbMwgbAwga0GCCsGAQUFBzAChoGgcnN5bmM6
Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRhLzVlNGEyM2Vh
LWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1mYWZiLTQzMGYt
Yjc3OC1kMjA0Y2ZjZDk5YTgvZDQzMTYxZTQtZGFjMS00MDdiLThmMTYtNTVlNmVm
MTAwZDBhLmNlcjBsBggrBgEFBQcBBwEB/wRdMFswWQQCAAEwUwMDAC80AwMBLzgw
CgMDAS9KAwMCL1gwCgMDAC/rAwMAL/YwCgMDAS/6AwMAL/4DAwBI/gMDAItfAwMA
k4sDAwCbZgMDAKO1AwQGxguAAwQFzcxgMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUH
DgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2Vz
L3Jwa2kvY3BzLmh0bWwwCwYJKoZIhvcNAQELA4IBAQCUmlXF7keQJnMN/kFU2FYd
HFenr9zDvMOTE5AOwJycWPBqxlycnQUhfcJdcBJ/UmdjWcMlj2RK+7A8bnAKmoUO
cnP67NWbK+qLV4bYTT6qDj8PDLypqKqvJH30v2wg57O5/ZjKijJKKfz3HlLu8khr
p6BwNDX/wZKA2T5Z/wjAVizO8a8N1tEd55DSlKL6eTGJvugcAr9SkHOEGl+SFqAL
W2X5ZxjcX0oikEOjgQAiv7izNdWKybRn6MmQXnKfGlpAX9TzU5SgYAAe/6so+c+N
4QKUaBKYiRJciK3zWB/8DlOX/Fedjk1cRPg8gAbRjH9lMnzptCkccomeoJK8bfRR
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:39:23 2023 by rpki-client on console-fra.rpki-client.org