Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3235322e302f32342d3234203d3e20323034383433.roa
File: 36362e3232352e3235322e302f32342d3234203d3e20323034383433.roa (raw, json)
Hash identifier: PUsNlsiGx7BqhvJJt7IEaR5RBRtJGK+5JnjtHAVA4qE=
Subject key identifier: 2B:D9:7F:9D:78:E7:D0:E9:07:E6:9E:10:74:84:03:2B:55:A7:11:75
Certificate issuer: /CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Certificate serial: 0B97075F559F01DA2A901B6C090F6F35595DD17B
Authority key identifier: 4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3235322e302f32342d3234203d3e20323034383433.roa
Signing time: Sat 13 May 2023 16:18:11 +0000
ROA not before: Sat 13 May 2023 16:13:11 +0000
ROA not after: Sat 11 May 2024 16:18:11 +0000
asID: 204843
IP address blocks: 66.225.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:97:07:5f:55:9f:01:da:2a:90:1b:6c:09:0f:6f:35:59:5d:d1:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Validity
Not Before: May 13 16:13:11 2023 GMT
Not After : May 11 16:18:11 2024 GMT
Subject: CN=2BD97F9D78E7D0E907E69E107484032B55A71175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:cc:89:21:d6:b6:86:8a:68:c9:cd:73:d8:30:
80:78:b3:d0:f3:c0:5d:3a:48:9a:73:ca:47:cb:76:
0b:e4:fa:98:89:40:0b:18:da:b2:45:9e:79:41:eb:
ac:1d:ee:96:18:27:bc:90:1f:a2:56:67:08:c9:d8:
a2:a9:ea:28:46:d1:38:cb:0f:af:31:56:87:cd:b8:
11:cb:50:56:a9:ae:65:d5:dc:d8:c1:4a:54:c3:63:
28:f9:88:e8:68:38:0b:45:e3:97:84:1b:c8:8a:29:
51:ac:95:2e:3c:6d:c7:31:5f:05:0a:61:0b:c7:9e:
64:7e:18:4d:e3:b1:da:5a:9b:46:a8:57:ac:eb:f5:
2a:b4:37:da:3b:1f:7c:46:7a:26:de:13:ed:91:ce:
fa:99:bc:96:2a:b1:94:ce:af:c1:59:d6:fb:be:98:
58:cd:29:0c:45:82:09:52:42:bc:d9:c5:ca:5e:86:
69:f2:8f:f5:7d:4c:bc:7c:86:36:06:20:a0:66:3d:
96:d1:3f:b4:15:07:50:49:8b:ec:bb:2a:f4:12:88:
8e:54:51:9d:77:e0:0b:a7:96:89:33:6d:6b:dc:1b:
0b:06:bb:4e:98:93:92:f5:f6:f4:26:b6:9f:31:23:
42:12:f7:15:0f:5f:c6:19:89:5f:38:00:59:45:eb:
bd:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D9:7F:9D:78:E7:D0:E9:07:E6:9E:10:74:84:03:2B:55:A7:11:75
X509v3 Authority Key Identifier:
keyid:4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/4F061F3AB9863828F7633EBC46300F9B7E877ABC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/36362e3232352e3235322e302f32342d3234203d3e20323034383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.225.252.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:42:69:d0:a0:25:f9:8d:06:25:b7:80:0b:9e:a0:b8:f8:11:
46:b3:31:c0:05:a1:b0:b9:61:ec:70:00:b8:1e:5f:b2:74:61:
47:c0:06:71:57:50:34:11:02:3b:34:89:5a:f8:b5:8c:03:90:
3c:8c:ce:48:b5:3c:75:fe:7d:0b:63:cb:16:b1:51:d5:38:0a:
aa:bb:e4:66:c7:ec:3c:99:74:f1:e6:48:97:a6:04:66:3e:ec:
c1:39:03:da:9a:f9:48:2c:1f:62:6c:c0:98:06:6d:f5:1d:d2:
6c:4d:8c:8c:6d:0c:5d:bc:fd:4a:ec:5e:d8:29:b2:6f:8f:ee:
bc:c8:2e:02:9c:fe:df:a5:b0:be:32:9e:02:0b:c4:78:d0:a5:
b4:98:97:12:7c:33:3c:2a:dd:5e:f3:25:2b:d7:75:93:f3:10:
89:d6:5f:a0:4e:f5:00:43:e2:4a:82:5b:78:68:1d:c8:cc:07:
8b:3e:a8:dc:9e:6e:22:16:d2:24:42:60:92:a9:65:a0:e7:3e:
81:76:59:36:c0:2c:db:93:08:83:64:69:4b:3f:fa:62:c4:6a:
bc:b0:4b:b9:7e:6e:95:da:43:a3:94:10:ae:ee:ae:65:e8:98:
e6:f9:91:31:95:fa:7e:8d:61:a9:18:90:53:4c:36:99:8a:c3:
db:2e:12:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:35 2024 by rpki-client on console-ams.rpki-client.org