Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36342e3230322e39392e302f32342d3234203d3e203631333137.roa
File: 36342e3230322e39392e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: YJbS+r5kCh4Us6bsWaD1gd9wMZG0Fyzpk9EJUP125QI=
Subject key identifier: 2A:88:6E:23:AD:B2:9C:2A:94:09:D8:B0:FB:FD:10:D1:4C:0C:34:5B
Certificate issuer: /CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Certificate serial: 2CB45873DE66C6F5E4985ED888C2A1A209029868
Authority key identifier: 4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36342e3230322e39392e302f32342d3234203d3e203631333137.roa
Signing time: Fri 21 Apr 2023 06:12:46 +0000
ROA not before: Fri 21 Apr 2023 06:07:46 +0000
ROA not after: Fri 19 Apr 2024 06:12:46 +0000
asID: 61317
IP address blocks: 64.202.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:b4:58:73:de:66:c6:f5:e4:98:5e:d8:88:c2:a1:a2:09:02:98:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Validity
Not Before: Apr 21 06:07:46 2023 GMT
Not After : Apr 19 06:12:46 2024 GMT
Subject: CN=2A886E23ADB29C2A9409D8B0FBFD10D14C0C345B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f4:13:e6:94:2f:40:a8:05:ee:da:09:22:52:
47:a0:5a:68:4e:b6:10:d1:a6:8e:e6:cc:2c:65:96:
0f:af:e6:14:9b:e2:b3:25:f2:b8:21:54:2e:f0:8c:
04:8c:ea:1d:bd:bc:25:e8:48:3d:21:24:00:88:6c:
ad:76:25:cb:0b:dc:33:63:e7:d7:ce:b0:af:a3:66:
4c:56:2e:ff:8a:ba:9d:17:df:d5:df:8d:af:76:5d:
46:8f:d1:ad:8f:d1:98:6a:91:1b:5c:ea:4d:0e:c2:
60:92:51:92:a0:2c:86:fa:bf:42:62:0f:f0:0e:dc:
bf:ca:0d:6a:7f:bc:43:26:ec:aa:cc:b6:ad:72:6b:
82:87:4c:f8:40:3e:73:17:17:23:76:55:d0:70:ef:
00:e9:39:8e:4e:05:96:78:bd:42:a9:a8:fb:d2:82:
fd:00:2f:58:6d:d4:03:66:4d:be:59:59:93:bc:dc:
10:ed:20:18:87:c9:81:12:cf:b2:d8:93:29:7f:8a:
fa:5c:32:a3:3e:62:2f:79:f5:2c:2c:a9:7f:49:e8:
bc:10:63:84:e3:78:85:4b:26:43:28:eb:15:c6:b6:
86:22:50:95:c2:eb:9f:c7:f2:0e:b5:87:3f:fc:16:
ab:d5:43:51:f0:5c:f6:07:d5:b0:1a:68:db:5a:b8:
e1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:88:6E:23:AD:B2:9C:2A:94:09:D8:B0:FB:FD:10:D1:4C:0C:34:5B
X509v3 Authority Key Identifier:
keyid:4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/4F061F3AB9863828F7633EBC46300F9B7E877ABC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36342e3230322e39392e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.202.99.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:71:c5:24:45:a9:e9:5a:9d:c8:72:7c:9d:bd:bb:e5:bd:86:
62:59:e1:ea:d8:75:29:39:e2:13:a9:c0:b0:33:2b:09:f3:ab:
c3:54:9e:6a:aa:ee:63:b5:00:0c:b5:d7:e2:1e:35:2c:fb:0f:
1f:9f:39:8a:16:26:aa:4f:dc:0a:ad:5f:58:06:73:7c:5d:1e:
6d:40:10:5c:76:7c:d2:b8:d5:7f:d7:1d:6c:fe:b6:63:d6:93:
4f:b5:e9:26:b2:ff:ce:78:b1:38:51:ab:91:ea:a9:3a:84:fb:
0d:2a:42:10:4c:b9:2f:ea:ce:56:e0:fb:36:40:b1:2f:37:92:
fb:05:48:22:a2:a3:2b:09:72:ea:01:28:38:68:89:90:04:d1:
68:aa:a6:32:36:39:cd:c0:1c:39:22:24:4c:9d:64:f2:c3:eb:
7b:de:f4:df:d4:72:3e:bd:8a:62:7e:4d:b0:a4:8c:70:5d:2f:
ef:89:d8:48:71:2f:f4:16:51:d9:e7:3c:17:9e:38:2c:ca:7a:
19:4d:aa:50:1c:a6:71:b6:e3:cf:c6:2a:c9:c4:8a:23:28:eb:
ce:44:a0:29:7f:43:cc:c7:e7:1d:bc:fd:14:78:e9:a2:9a:c4:
c7:59:be:96:fd:c0:1a:86:4f:c9:ad:9f:6a:23:eb:23:6e:09:
9a:95:c3:a6
-----BEGIN CERTIFICATE-----
MIIFsDCCBJigAwIBAgIULLRYc95mxvXkmF7YiMKhogkCmGgwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyNjk2MjZjMmUwYjk2NGVkNWU4YmE2YTZmM2VkMGZkNjM2
Y2YzNjQ1ZDZjY2I2MTIzYjkwHhcNMjMwNDIxMDYwNzQ2WhcNMjQwNDE5MDYxMjQ2
WjAzMTEwLwYDVQQDEygyQTg4NkUyM0FEQjI5QzJBOTQwOUQ4QjBGQkZEMTBEMTRD
MEMzNDVCMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/QT5pQvQKgF
7toJIlJHoFpoTrYQ0aaO5swsZZYPr+YUm+KzJfK4IVQu8IwEjOodvbwl6Eg9ISQA
iGytdiXLC9wzY+fXzrCvo2ZMVi7/irqdF9/V342vdl1Gj9Gtj9GYapEbXOpNDsJg
klGSoCyG+r9CYg/wDty/yg1qf7xDJuyqzLatcmuCh0z4QD5zFxcjdlXQcO8A6TmO
TgWWeL1Cqaj70oL9AC9YbdQDZk2+WVmTvNwQ7SAYh8mBEs+y2JMpf4r6XDKjPmIv
efUsLKl/Sei8EGOE43iFSyZDKOsVxraGIlCVwuufx/IOtYc//Bar1UNR8Fz2B9Ww
GmjbWrjh0wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFCqIbiOtspwqlAnYsPv9ENFM
DDRbMB8GA1UdIwQYMBaAFE8GHzq5hjgo92M+vEYwD5t+h3q8MA4GA1UdDwEB/wQE
AwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6Ly9ycGtpLXJwcy5hcmluLm5l
dC9yZXBvc2l0b3J5LzhhODQ4YWRlODY5M2YwNjAwMTg2YzZlN2ZkOGQzNjYwLzAv
NEYwNjFGM0FCOTg2MzgyOEY3NjMzRUJDNDYzMDBGOUI3RTg3N0FCQy5jcmwwgfMG
CCsGAQUFBwEBBIHmMIHjMIHgBggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmlu
Lm5ldC9yZXBvc2l0b3J5L2FyaW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2Ut
YjA4Yy0yMTcxZGEyMTU3ZDMvNTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3
ZTk3MWFjL2FkOWIzMDEwLTMxMTYtNDY0ZS04YzU4LTk1ODY1MDBmMTcwMS82OTYy
NmMyZTBiOTY0ZWQ1ZThiYTZhNmYzZWQwZmQ2MzZjZjM2NDVkNmNjYjYxMjNiOS5j
ZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBr
aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZTg2OTNmMDYwMDE4NmM2
ZTdmZDhkMzY2MC8wLzM2MzQyZTMyMzAzMjJlMzkzOTJlMzAyZjMyMzQyZDMyMzQy
MDNkM2UyMDM2MzEzMzMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABAymMwDQYJKoZIhvcNAQELBQAD
ggEBALVxxSRFqelanchyfJ29u+W9hmJZ4erYdSk54hOpwLAzKwnzq8NUnmqq7mO1
AAy11+IeNSz7Dx+fOYoWJqpP3AqtX1gGc3xdHm1AEFx2fNK41X/XHWz+tmPWk0+1
6Say/854sThRq5HqqTqE+w0qQhBMuS/qzlbg+zZAsS83kvsFSCKioysJcuoBKDho
iZAE0WiqpjI2Oc3AHDkiJEydZPLD63ve9N/Ucj69imJ+TbCkjHBdL++J2EhxL/QW
UdnnPBeeOCzKehlNqlAcpnG248/GKsnEiiMo685EoCl/Q8zH5x28/RR46aKaxMdZ
vpb9wBqGT8mtn2oj6yNuCZqVw6Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:05 2024 by rpki-client on console-fra.rpki-client.org