Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3232302e302f32332d3234203d3e203233333532.roa
File: 36362e3232352e3232302e302f32332d3234203d3e203233333532.roa (raw, json)
Hash identifier: JQKRet5EScLI5dSng/PL+Cw1Uw8axjRQY1XQ7jufvsU=
Subject key identifier: 3D:6B:9A:62:53:0D:0F:AC:1D:B2:45:92:DE:EA:D6:1F:F7:6F:B3:7D
Certificate issuer: /CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Certificate serial: 7C7374C5FE0E4B228A59C4F3F991710B1B145665
Authority key identifier: 4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3232302e302f32332d3234203d3e203233333532.roa
Signing time: Fri 19 May 2023 18:43:12 +0000
ROA not before: Fri 19 May 2023 18:38:12 +0000
ROA not after: Fri 17 May 2024 18:43:12 +0000
asID: 23352
IP address blocks: 66.225.220.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:73:74:c5:fe:0e:4b:22:8a:59:c4:f3:f9:91:71:0b:1b:14:56:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Validity
Not Before: May 19 18:38:12 2023 GMT
Not After : May 17 18:43:12 2024 GMT
Subject: CN=3D6B9A62530D0FAC1DB24592DEEAD61FF76FB37D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c5:67:00:72:7e:82:90:17:1b:35:a4:8f:09:
a8:91:0e:a0:83:8e:14:de:c0:79:ef:99:3d:3c:51:
99:60:40:6a:73:cf:1f:9d:95:bd:8d:89:b3:95:3a:
e3:3c:14:ef:3c:ee:58:1f:49:7e:58:d0:73:1b:64:
2a:b1:ed:f5:25:0e:c8:b3:e7:e4:4a:97:71:0b:fa:
34:0c:ba:df:8c:ea:3d:fa:7e:2d:0b:8d:5e:8e:ee:
6d:3b:b2:e1:42:3e:54:c4:26:7b:7b:65:3f:7f:a9:
76:f9:5b:5f:fe:b3:ba:49:7c:86:c4:12:bf:29:2e:
c2:89:d1:43:c6:88:9c:65:bc:74:ae:59:4c:0e:6c:
5e:f4:ae:32:8c:44:f9:d0:ee:c4:55:83:4f:d2:03:
ac:bb:af:84:0f:59:f6:a2:ca:1d:25:f0:57:70:9a:
fd:a0:49:8b:56:da:39:f3:bb:1b:9b:51:3b:68:30:
43:1f:b4:48:79:d4:e8:76:94:65:5e:47:21:3e:00:
32:81:15:70:89:48:8a:f8:78:dc:d0:c0:a1:65:a6:
9a:11:09:a2:91:09:a0:45:a4:25:bc:5d:0a:20:d6:
f7:0b:e5:84:e0:68:ce:f4:cf:ca:72:5f:13:1d:e4:
35:6b:6d:28:12:85:4f:cf:ee:91:63:d0:ed:30:84:
95:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:6B:9A:62:53:0D:0F:AC:1D:B2:45:92:DE:EA:D6:1F:F7:6F:B3:7D
X509v3 Authority Key Identifier:
keyid:4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/4F061F3AB9863828F7633EBC46300F9B7E877ABC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3232302e302f32332d3234203d3e203233333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.225.220.0/23
Signature Algorithm: sha256WithRSAEncryption
95:3c:3e:ec:3f:05:19:90:6b:a1:24:2b:28:d9:d3:eb:35:55:
ef:47:39:d3:0d:56:ca:8c:39:ce:5a:78:12:01:43:90:02:64:
9f:5c:26:00:1d:a2:ba:7d:74:a7:ab:4a:18:c6:2e:d7:34:40:
e9:c0:ab:7a:10:8a:33:9a:6f:20:e3:72:f3:dc:07:f6:29:24:
5a:fe:39:76:1a:0e:9a:52:2d:29:85:90:ba:3e:82:1d:e0:68:
68:2f:cd:7f:b7:13:5f:8d:c0:1b:f6:5c:b9:fa:18:ab:d2:9f:
f5:54:e1:a2:07:bb:95:63:12:0d:0d:ea:6c:f4:5f:6f:c2:34:
de:fb:88:8c:05:7a:24:6a:d8:6e:74:5c:8b:a9:58:1f:49:e1:
13:6c:49:9e:f5:8c:91:52:1f:a8:b5:c6:f9:39:25:38:89:d5:
35:f3:bd:cf:95:05:0b:6f:d3:7a:8a:b0:ee:81:a5:5d:3c:06:
9a:4b:5c:22:58:cf:91:b2:9d:34:d3:4b:ae:61:0c:db:13:c4:
a1:64:8f:0f:b5:db:c3:2b:47:ef:66:49:b4:53:55:e0:61:d4:
0b:1d:ca:4c:63:4c:2f:8d:9d:20:c1:c5:4e:66:2c:86:b0:6f:
b8:bb:0e:a8:ae:a0:9a:80:32:b1:06:ef:ef:f5:eb:4b:44:c1:
54:a9:69:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:05 2024 by rpki-client on console-fra.rpki-client.org