Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/3230392e3230302e3235322e302f32342d3234203d3e203434343836.roa
File: 3230392e3230302e3235322e302f32342d3234203d3e203434343836.roa (raw, json)
Hash identifier: 2w9+XUXrtsRXI1eypxLJwO9PjiOOQxe7ly+b9EcKqis=
Subject key identifier: 98:65:1C:C2:30:43:D6:F0:D2:CE:FD:5F:D4:F6:ED:23:3C:43:B8:74
Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
Certificate serial: 6952B84E833E93904F19B34EF3F07E51827F542F
Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/3230392e3230302e3235322e302f32342d3234203d3e203434343836.roa
Signing time: Mon 28 Nov 2022 11:22:00 +0000
ROA not before: Mon 28 Nov 2022 11:17:00 +0000
ROA not after: Mon 27 Nov 2023 11:22:00 +0000
asID: 44486
IP address blocks: 209.200.252.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:52:b8:4e:83:3e:93:90:4f:19:b3:4e:f3:f0:7e:51:82:7f:54:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
Validity
Not Before: Nov 28 11:17:00 2022 GMT
Not After : Nov 27 11:22:00 2023 GMT
Subject: CN=98651CC23043D6F0D2CEFD5FD4F6ED233C43B874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:73:a3:60:f0:89:51:0a:e1:d0:b1:99:41:e2:
2c:cd:23:b0:d9:08:04:1e:7d:08:6a:bd:c9:dd:30:
49:54:9d:42:9d:b3:82:d1:83:2b:de:55:82:75:d9:
2d:c0:ce:9e:66:88:32:93:a8:fd:af:b5:88:e5:7c:
85:e4:c0:71:36:b8:fc:a9:b5:46:10:81:64:83:bb:
4b:ef:75:18:b9:36:cb:9f:e1:5c:33:44:f5:88:4b:
ae:27:6c:b3:07:ff:9a:d9:1c:15:e1:90:0e:49:0e:
45:6a:5f:d3:c1:d4:55:31:43:63:5e:f5:a5:33:76:
34:a2:0b:ba:7d:00:75:55:73:db:fd:62:88:b5:a3:
bb:16:0f:ec:39:a2:30:11:5a:e5:54:ad:0f:5a:9f:
df:57:2f:25:06:4a:2e:7a:dc:de:f0:3c:a5:e6:ee:
35:41:cd:c0:14:f6:6f:7d:8e:05:32:40:df:b5:41:
8a:04:e9:94:91:79:c9:4e:26:24:72:c9:98:cb:ba:
46:f8:a0:3f:49:03:0c:1c:98:03:7f:d2:72:db:60:
02:a1:c9:42:fe:7e:26:1f:5d:3d:c2:b4:63:0b:41:
4d:1f:a2:8f:e4:e8:d4:bb:3d:99:fb:6e:19:81:4b:
a4:f4:0a:73:b3:13:d3:43:c4:d6:70:ba:89:90:ed:
33:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:65:1C:C2:30:43:D6:F0:D2:CE:FD:5F:D4:F6:ED:23:3C:43:B8:74
X509v3 Authority Key Identifier:
keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/3230392e3230302e3235322e302f32342d3234203d3e203434343836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.200.252.0/24
Signature Algorithm: sha256WithRSAEncryption
54:04:e6:a6:d9:44:82:6e:15:9b:1c:f6:ba:4d:e3:de:42:e2:
c0:a2:8a:4b:29:fc:81:9a:1b:08:ea:e1:c9:ed:1b:25:20:de:
49:1e:fa:2d:52:2f:52:67:85:30:d6:09:f4:2a:d1:1c:8f:d8:
04:bc:a5:a2:d1:7e:4a:e6:a4:f6:2f:31:25:53:4c:52:e0:25:
21:11:3c:db:2c:d1:99:82:9e:f6:ae:ad:c7:3f:f7:58:03:0e:
0f:04:f8:1a:27:cc:7a:42:ff:46:49:b1:1f:57:d0:68:d8:98:
08:ba:ec:5c:9c:e6:79:45:bb:bd:10:f1:c0:4d:25:2a:66:a4:
02:31:9a:f4:61:71:7a:8c:4b:99:9d:0c:5c:96:b1:6b:9c:20:
a6:06:3d:4b:a0:3c:18:2f:12:87:75:4e:b8:c9:52:fb:dc:71:
f1:04:ad:fc:ad:96:88:6b:c1:67:c4:b5:e8:4d:e2:1e:62:a8:
48:b1:43:5c:8f:1f:d3:67:d9:1c:87:0e:6f:30:3b:5e:f0:61:
25:16:a7:6b:2d:f5:fd:81:b2:2c:a3:20:e5:b2:7f:db:4f:1c:
2d:15:3d:67:68:d4:1e:f7:b6:33:f9:6e:c0:d1:37:c0:49:9f:
d8:42:6c:54:be:76:8b:31:fa:ad:77:7e:d6:c0:3c:57:1c:73:
88:de:ef:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:07 2024 by rpki-client on console-fra.rpki-client.org