Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3232302e302f32332d3233203d3e203233333532.roa
File: 36362e3232352e3232302e302f32332d3233203d3e203233333532.roa (raw, json)
Hash identifier: dzLonwKE+1yons1jiqrIOn71MliqDwxE2CqJCWdqU3A=
Subject key identifier: 76:74:5B:91:00:95:C0:B2:65:1E:3E:9B:12:F2:04:A3:92:22:EE:D5
Certificate issuer: /CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Certificate serial: 1814937EB8CB5D05A25EAC44858F0A824F9F6427
Authority key identifier: 4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3232302e302f32332d3233203d3e203233333532.roa
Signing time: Mon 08 May 2023 16:20:23 +0000
ROA not before: Mon 08 May 2023 16:15:23 +0000
ROA not after: Mon 06 May 2024 16:20:23 +0000
asID: 23352
IP address blocks: 66.225.220.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:14:93:7e:b8:cb:5d:05:a2:5e:ac:44:85:8f:0a:82:4f:9f:64:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Validity
Not Before: May 8 16:15:23 2023 GMT
Not After : May 6 16:20:23 2024 GMT
Subject: CN=76745B910095C0B2651E3E9B12F204A39222EED5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:0e:48:c5:44:c7:9b:1b:49:3f:59:35:da:50:
4c:f9:7f:2b:27:82:21:c2:09:8d:31:21:25:0c:be:
f3:ee:50:51:1e:c8:41:0c:ba:b4:a5:69:f3:c0:b4:
2b:77:ce:0d:ab:aa:2a:52:fd:c4:a8:9b:6f:9a:37:
86:c5:74:c2:c0:42:f9:0a:18:6d:06:54:20:0e:df:
bf:7a:8d:d2:2e:59:00:a2:46:67:60:c0:ee:2c:7b:
47:6c:70:a3:34:ae:b2:1f:53:fa:6c:7d:d7:c0:d2:
60:f8:56:b0:b8:12:fd:61:7b:c4:f0:50:9f:e0:06:
24:69:ac:50:ff:d8:fe:0b:24:0b:15:61:69:aa:31:
75:ca:22:b1:0b:09:8b:c5:b3:55:21:63:f3:4e:ac:
86:ee:fb:80:37:7a:1a:b7:e9:cf:55:e2:ec:41:fc:
ea:a1:16:f6:c4:bb:a0:f5:b0:06:50:74:fc:28:29:
d2:44:2e:d8:32:89:f6:9e:5f:03:85:6a:41:ed:ef:
e1:a6:f2:4f:bb:2a:4c:0e:d1:ea:9f:38:c2:5a:ce:
29:9d:cd:f8:98:35:d8:e2:81:28:5c:10:32:21:de:
c0:36:44:da:c3:92:09:71:29:bb:81:a9:c3:38:51:
01:25:64:f1:1c:40:f4:84:1c:a0:8a:33:a4:4d:97:
08:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:74:5B:91:00:95:C0:B2:65:1E:3E:9B:12:F2:04:A3:92:22:EE:D5
X509v3 Authority Key Identifier:
keyid:4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/4F061F3AB9863828F7633EBC46300F9B7E877ABC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3232302e302f32332d3233203d3e203233333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.225.220.0/23
Signature Algorithm: sha256WithRSAEncryption
02:f9:b2:d4:c1:e2:36:13:59:01:7d:90:ca:4e:9b:a0:f0:92:
8d:55:7b:59:8e:59:16:ea:09:94:22:84:e1:3d:65:80:aa:9a:
39:26:e9:f0:6e:58:89:87:30:1a:8c:72:e3:e6:35:71:8d:1a:
ab:b6:e0:c0:45:08:61:45:8e:31:c5:ec:9d:3b:05:65:1b:0e:
f3:cd:62:d5:71:ef:81:5e:66:97:f3:e1:30:60:76:64:c8:fb:
4d:cf:8b:c4:55:1d:40:c8:ae:b2:16:e7:b4:a0:72:eb:76:c3:
aa:4b:20:93:e5:6b:99:f6:8d:a7:26:e2:65:99:e0:08:a3:c1:
da:31:34:74:b9:ad:b0:d2:b9:78:bf:14:aa:30:76:19:17:aa:
81:fb:2a:3b:b7:b5:89:6e:41:fb:2e:f1:21:36:28:77:c2:d3:
79:36:fd:58:5a:64:55:40:7d:15:09:79:6b:65:83:aa:22:b9:
38:03:68:51:58:3d:38:15:8c:d0:cb:84:48:f3:aa:bf:2d:13:
88:58:d6:74:48:4e:d6:3a:04:fc:ea:84:5b:fb:ef:7f:af:45:
76:cd:7b:cf:b2:11:a5:19:b6:8b:02:50:be:99:33:e1:81:39:
73:6f:48:c6:ba:f1:0b:f2:65:7b:48:5d:b5:7c:81:56:32:f5:
28:f1:64:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:05 2024 by rpki-client on console-fra.rpki-client.org