Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3132382e302f32322d3234203d3e2038313030.roa
File: 3135372e3235342e3132382e302f32322d3234203d3e2038313030.roa (raw, json)
Hash identifier: xQ6MV4d4aecg+TFCzb0iiRG5t7Zozv4Y2cHMFbyZrNU=
Subject key identifier: 7E:B8:C7:C3:18:15:75:50:A4:6E:19:19:AC:47:D0:25:6B:34:99:1B
Certificate issuer: /CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Certificate serial: 764346AAC51CD2601874117F307BA33D59E380BE
Authority key identifier: D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3132382e302f32322d3234203d3e2038313030.roa
Signing time: Thu 02 Feb 2023 00:22:38 +0000
ROA not before: Thu 02 Feb 2023 00:17:38 +0000
ROA not after: Thu 01 Feb 2024 00:22:38 +0000
asID: 8100
IP address blocks: 157.254.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:43:46:aa:c5:1c:d2:60:18:74:11:7f:30:7b:a3:3d:59:e3:80:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Validity
Not Before: Feb 2 00:17:38 2023 GMT
Not After : Feb 1 00:22:38 2024 GMT
Subject: CN=7EB8C7C318157550A46E1919AC47D0256B34991B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:5c:e6:40:c1:15:15:e2:cc:65:a1:ab:15:
e0:07:e7:a4:38:0d:d1:02:bc:d8:f7:88:70:31:1a:
0d:12:cf:99:58:fb:2b:91:d2:f0:b1:ea:63:70:40:
96:99:76:e5:fb:9e:2f:12:3c:b7:bf:6f:6e:76:51:
f0:04:d3:4f:63:c7:e8:e8:c5:fe:5d:17:3d:0d:19:
bd:54:14:29:0f:0d:4f:99:a6:4c:5e:34:6c:cb:16:
3a:16:b7:21:29:a2:53:9a:2a:25:78:7e:bc:25:f4:
bc:04:0c:89:81:26:ac:13:a6:c3:53:0d:a9:97:96:
3a:24:9f:65:9c:96:e5:34:45:e5:c1:6d:29:6d:f6:
fd:1f:ac:42:ba:45:fb:4a:a7:53:d5:c1:d4:ac:cb:
05:89:bc:17:2f:ca:ae:22:6d:9a:05:88:88:26:bb:
a6:74:88:74:e5:0d:d4:81:ee:ec:1c:60:f5:7f:e9:
97:26:b1:08:f5:a0:80:08:e9:bd:f4:f3:6d:3f:4a:
0c:52:8c:f6:88:11:0e:6f:40:5f:e8:89:d7:82:b3:
37:07:f9:23:f7:65:8d:90:d5:29:b9:01:41:ea:0e:
95:51:5b:79:5c:f8:c2:5e:60:14:f5:d9:46:1b:36:
f8:be:bc:0a:e8:80:0f:6c:f9:62:f3:35:bf:d6:e3:
27:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B8:C7:C3:18:15:75:50:A4:6E:19:19:AC:47:D0:25:6B:34:99:1B
X509v3 Authority Key Identifier:
keyid:D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3132382e302f32322d3234203d3e2038313030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.254.128.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:cd:f8:55:6b:be:be:c9:a1:fc:1d:b7:20:f1:17:f6:38:d2:
a5:65:22:2d:ab:f4:ae:d6:ae:ea:13:da:7b:35:6d:f0:65:4e:
ef:e4:5b:dd:52:6a:88:1a:a8:07:62:25:ae:e3:9c:86:d6:ed:
43:83:78:9b:95:98:c4:19:1a:5c:11:1e:5b:41:ec:ca:48:52:
bb:0d:96:8d:08:8f:55:37:d2:4e:be:cc:65:1a:bf:86:70:f5:
c5:c8:a6:e5:e6:26:82:06:5c:d5:a9:44:16:fd:f5:2a:ef:1f:
58:6c:b8:7d:94:7f:b9:98:0c:bc:33:e5:22:75:fd:eb:53:7c:
cf:5a:b4:24:02:f2:03:99:38:c4:d5:d0:2f:3b:2b:4f:0f:dd:
ce:0b:8f:19:c5:e8:94:d5:4e:66:c8:32:46:e4:0b:68:f4:af:
81:77:c2:e7:4f:dd:80:de:be:ad:c9:6a:0a:fe:5d:bd:a2:c8:
cd:3a:8c:b1:33:aa:77:12:fd:79:a2:22:7c:ee:bb:16:e7:08:
0d:3e:21:a1:f6:7e:5b:65:29:35:89:89:bb:2c:17:63:e6:15:
90:69:45:56:11:8c:bb:96:96:73:28:99:1c:77:a4:a7:fe:a7:
d2:2a:23:c9:b2:74:d6:30:4b:85:32:9b:b3:9e:fb:9a:9f:42:
e3:2d:06:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:08 2024 by rpki-client on console-fra.rpki-client.org