Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf7f518c5d017f949e0c8c42f5/0/323630343a613334303a3a2f33322d3332203d3e203534343736.roa
File: 323630343a613334303a3a2f33322d3332203d3e203534343736.roa (raw, json)
Hash identifier: UlZb1TeKpX/dtFdc0fft8SyxfytIfowdDMXYHdDpDeg=
Subject key identifier: CD:BB:29:AB:32:40:77:B9:E1:FB:0B:9D:B5:04:0C:41:74:CE:83:FB
Certificate issuer: /CN=63ef6ba7c7a8be96cfb149135472cbd00aab8f29a31820d418
Certificate serial: 3B7CDD54BAD1B2535717E8279D4B0CBB68550698
Authority key identifier: 7D:F5:5D:C7:DA:C4:1C:A7:45:35:95:CB:9A:79:AB:7F:E6:C8:35:31
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d7e20303-2390-47a7-b89c-842367be4584/63ef6ba7c7a8be96cfb149135472cbd00aab8f29a31820d418.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf7f518c5d017f949e0c8c42f5/0/323630343a613334303a3a2f33322d3332203d3e203534343736.roa
Signing time: Fri 01 Nov 2024 16:22:33 +0000
ROA not before: Fri 01 Nov 2024 16:17:33 +0000
ROA not after: Fri 31 Oct 2025 16:22:33 +0000
asID: 54476
IP address blocks: 2604:a340::/32 maxlen: 32
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:7c:dd:54:ba:d1:b2:53:57:17:e8:27:9d:4b:0c:bb:68:55:06:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63ef6ba7c7a8be96cfb149135472cbd00aab8f29a31820d418
Validity
Not Before: Nov 1 16:17:33 2024 GMT
Not After : Oct 31 16:22:33 2025 GMT
Subject: CN=CDBB29AB324077B9E1FB0B9DB5040C4174CE83FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f2:09:ec:07:cb:b4:ae:32:d5:df:02:ca:28:
42:aa:d4:89:a5:46:12:17:b1:1f:27:2d:9b:03:59:
ed:a6:de:59:4a:ae:12:be:82:94:ed:77:f5:30:14:
65:6a:57:87:37:f3:ab:61:e4:22:b3:3d:6a:8d:cf:
3e:e5:3f:ff:e9:65:1d:40:38:c1:bc:2d:e7:28:b0:
1b:87:b6:34:7f:68:8a:fa:8c:33:09:54:89:7d:8b:
8d:6b:78:3e:00:c5:fd:25:85:45:38:e5:99:95:d2:
f6:75:df:09:26:03:be:fd:41:26:56:99:e7:ed:bb:
00:d8:45:32:68:1c:bd:d9:ee:63:dd:13:b6:fb:1b:
f7:18:3a:53:d1:b5:0d:f3:b1:5a:db:25:e8:f5:b5:
90:0d:a6:13:d3:11:8f:37:95:05:54:d2:c3:95:12:
26:cf:08:9b:4d:36:50:3a:2a:cc:2b:54:cf:9e:ef:
ce:34:c3:95:21:f7:26:48:88:e5:66:31:a1:ce:ae:
17:62:fc:66:43:d4:1e:0f:b5:08:7f:46:87:7e:0e:
1e:aa:2f:a0:c8:a3:43:bf:9b:1c:20:82:ec:ef:ad:
b7:70:e0:64:44:ef:8f:f6:3f:26:7f:9a:81:3b:71:
9d:7b:03:5a:67:6e:35:d6:21:5a:27:96:68:a0:b7:
78:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:BB:29:AB:32:40:77:B9:E1:FB:0B:9D:B5:04:0C:41:74:CE:83:FB
X509v3 Authority Key Identifier:
keyid:7D:F5:5D:C7:DA:C4:1C:A7:45:35:95:CB:9A:79:AB:7F:E6:C8:35:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf7f518c5d017f949e0c8c42f5/0/7DF55DC7DAC41CA7453595CB9A79AB7FE6C83531.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/d7e20303-2390-47a7-b89c-842367be4584/63ef6ba7c7a8be96cfb149135472cbd00aab8f29a31820d418.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf7f518c5d017f949e0c8c42f5/0/323630343a613334303a3a2f33322d3332203d3e203534343736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2604:a340::/32
Signature Algorithm: sha256WithRSAEncryption
c1:03:b6:a2:b1:43:e6:0c:37:2b:5e:8c:c6:2f:4c:28:4a:72:
5e:a8:3d:83:90:a3:b8:ea:fa:92:0a:2f:c1:54:0d:3a:c8:73:
d7:3f:c9:b7:4a:79:98:65:7b:5e:be:64:3d:4b:f5:f9:81:38:
b9:56:65:01:e2:03:5c:bb:bd:29:a7:e0:45:b6:c5:de:cb:69:
68:35:ae:f3:2b:3b:53:05:2d:5c:7f:1b:1f:0a:2b:95:94:67:
f4:9a:61:af:ad:a9:8d:37:0f:0a:d4:f8:c9:7b:38:27:f5:71:
6e:c3:4e:06:ce:a4:98:02:11:4c:fa:fd:3d:91:d4:b3:24:ce:
a3:85:27:41:11:9d:c4:b1:ec:f4:14:db:4d:40:66:e7:32:13:
a7:42:b3:4e:0a:12:07:ed:54:e8:da:1b:7e:0a:b1:02:05:d6:
d7:cc:c9:2d:6d:3b:7b:4e:ba:af:cb:cc:ea:7e:d7:d8:a1:a0:
7d:70:41:ba:79:fc:99:cd:a4:a2:66:20:65:15:ae:c9:e0:f7:
b4:59:a1:cb:0c:d8:16:65:88:2d:10:a9:e1:92:60:cf:f7:c9:
8a:d4:4b:1a:06:e1:5d:cb:be:53:01:c9:e3:55:9f:aa:04:55:
01:4c:7f:e1:d5:0d:12:20:25:f8:34:10:e9:dc:b9:fb:12:1d:
43:44:ce:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 17 08:32:02 2024 by rpki-client on console-ams.rpki-client.org