Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade91fb43b40192908b3e28514a/0/32332e3133352e3232302e302f32342d3234203d3e20323135333634.roa
File: 32332e3133352e3232302e302f32342d3234203d3e20323135333634.roa (raw, json)
Hash identifier: 9V3dcn8PquUdq8WdsPW+0LyyEXFHKH8cPkksaBibWuU=
Subject key identifier: 47:57:A5:4C:4F:CB:34:E0:28:AA:56:D1:3C:03:7E:1F:F8:45:E6:03
Certificate issuer: /CN=0cc857d05efbb350230520d08c8d7f45e34e3bff3cb516e556
Certificate serial: 7414EB04682898E4504572E9250AAC82EF640AE5
Authority key identifier: AB:2E:F8:8F:24:74:9F:5A:12:0D:FA:DE:67:C9:18:E4:C7:10:C5:3E
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/cd9a9dcf-4448-45ff-8ea6-d13be97d91a2/0cc857d05efbb350230520d08c8d7f45e34e3bff3cb516e556.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade91fb43b40192908b3e28514a/0/32332e3133352e3232302e302f32342d3234203d3e20323135333634.roa
Signing time: Wed 26 Mar 2025 02:10:52 +0000
ROA not before: Wed 26 Mar 2025 02:05:52 +0000
ROA not after: Wed 25 Mar 2026 02:10:52 +0000
asID: 215364
IP address blocks: 23.135.220.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:14:eb:04:68:28:98:e4:50:45:72:e9:25:0a:ac:82:ef:64:0a:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cc857d05efbb350230520d08c8d7f45e34e3bff3cb516e556
Validity
Not Before: Mar 26 02:05:52 2025 GMT
Not After : Mar 25 02:10:52 2026 GMT
Subject: CN=4757A54C4FCB34E028AA56D13C037E1FF845E603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1f:eb:cb:8b:6a:16:d3:0a:47:ec:8f:6a:42:
4d:43:a3:10:f5:4a:e3:cc:36:f5:3c:48:5d:42:52:
6f:af:40:07:c9:9c:d6:e6:9a:eb:b9:c6:6c:9d:2f:
a1:e8:f7:1b:ad:e5:30:97:3d:dc:17:a4:69:42:23:
29:39:1c:f7:ab:59:93:5b:90:1d:78:4f:6b:97:ee:
c2:92:23:6c:fa:47:03:aa:b9:02:96:72:71:60:ac:
87:48:d2:99:0c:9f:b5:cb:cf:fa:6a:2e:d9:54:3b:
df:ba:5a:c6:3f:f5:5d:0a:a8:a3:34:08:5d:fe:5d:
b9:f4:b5:7f:f8:ed:76:51:43:9b:39:44:f0:77:43:
02:02:11:5d:c0:51:a7:43:a9:23:58:20:69:6f:6d:
10:4a:ef:3d:4a:b8:0c:63:30:cf:42:8e:6a:12:30:
24:ba:69:ef:68:0b:91:ec:8e:a8:bd:27:5b:05:90:
d8:00:10:4b:78:6a:1a:46:89:80:c4:3c:2c:8c:23:
b6:91:35:b5:82:09:e2:ed:30:60:fc:fd:77:2a:90:
2a:e6:29:45:d6:1c:37:23:58:25:2d:af:7c:fb:c2:
1e:8b:dc:c6:15:ee:30:ea:71:3c:0c:8d:86:cd:94:
a9:81:e9:1d:de:02:69:85:2b:ce:4c:0c:4d:8a:64:
d3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:57:A5:4C:4F:CB:34:E0:28:AA:56:D1:3C:03:7E:1F:F8:45:E6:03
X509v3 Authority Key Identifier:
keyid:AB:2E:F8:8F:24:74:9F:5A:12:0D:FA:DE:67:C9:18:E4:C7:10:C5:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade91fb43b40192908b3e28514a/0/AB2EF88F24749F5A120DFADE67C918E4C710C53E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/cd9a9dcf-4448-45ff-8ea6-d13be97d91a2/0cc857d05efbb350230520d08c8d7f45e34e3bff3cb516e556.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade91fb43b40192908b3e28514a/0/32332e3133352e3232302e302f32342d3234203d3e20323135333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.135.220.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:c6:53:8a:4a:48:e6:3a:6b:75:26:50:bc:a7:f0:45:a4:8a:
35:48:29:21:01:f9:2c:aa:6c:13:a3:67:c2:06:d2:49:3b:38:
98:2f:c2:f5:06:1a:be:b4:a4:c8:b1:49:8d:2c:fa:23:0e:5a:
bb:e0:c6:c8:91:83:48:8f:e5:e7:d8:0c:0a:7a:d4:77:48:69:
d4:98:84:a3:fa:a6:25:9f:45:62:e0:ec:94:76:8f:df:39:9d:
47:f2:88:f1:fc:7d:dc:86:45:4a:93:3c:3e:d5:e4:cc:c6:c8:
36:83:02:20:28:9b:6e:3f:53:56:6a:68:24:4e:b4:ad:f6:63:
28:4d:e3:1e:9f:29:3f:b7:df:85:c1:ef:01:3d:39:f7:a1:36:
2a:7c:a0:92:bf:9c:2c:63:06:b7:00:d7:8a:f4:97:d7:f1:67:
4b:66:01:6e:81:b8:60:66:44:fd:d0:e4:e5:70:4a:d7:da:b0:
54:5c:d7:32:7d:d4:6d:fd:9c:53:78:b5:b0:db:6e:cb:85:22:
fa:1e:c2:15:ae:a8:a9:c4:67:14:55:db:bd:b2:15:20:f8:9e:
e8:e7:20:81:4f:4e:54:a5:14:be:90:34:f6:f2:2b:53:bb:11:
61:43:04:c3:a3:a4:51:2d:c0:91:de:47:56:74:84:ee:1f:9a:
20:6a:5b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:18:54 2025 by rpki-client