Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3135392e302f32342d3234203d3e203630373231.roa
File: 3135372e3235342e3135392e302f32342d3234203d3e203630373231.roa (raw, json)
Hash identifier: mDM4dBVd2BKbdJxWjSBmDNlLMQrLxioGKHX+xcnuI+4=
Subject key identifier: E0:7C:1D:B9:04:21:9C:65:C6:91:19:1A:43:77:1E:AD:3A:F5:D5:FF
Certificate issuer: /CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Certificate serial: 5488296165202F6E555FA9F27ADAF0F0520D0033
Authority key identifier: D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3135392e302f32342d3234203d3e203630373231.roa
Signing time: Fri 30 Dec 2022 19:54:17 +0000
ROA not before: Fri 30 Dec 2022 19:49:17 +0000
ROA not after: Fri 29 Dec 2023 19:54:17 +0000
asID: 60721
IP address blocks: 157.254.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:88:29:61:65:20:2f:6e:55:5f:a9:f2:7a:da:f0:f0:52:0d:00:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Validity
Not Before: Dec 30 19:49:17 2022 GMT
Not After : Dec 29 19:54:17 2023 GMT
Subject: CN=E07C1DB904219C65C691191A43771EAD3AF5D5FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:39:99:92:4b:a4:bf:6b:04:2c:a5:ac:d2:33:
bf:8e:1c:bb:44:d3:60:0e:98:e2:10:c7:73:f7:00:
21:18:49:6c:29:10:45:6d:d8:4d:dc:1f:e8:47:a0:
98:9f:e2:59:6d:31:a5:ec:27:04:a0:e8:2a:22:b5:
39:b2:b0:d7:0a:80:b4:19:f1:44:a5:34:42:72:84:
d1:cf:cd:9e:c6:fb:ae:e0:c8:71:8f:87:88:71:fa:
1a:b0:4c:25:16:15:71:25:b5:e3:52:7b:d7:9a:27:
ee:21:82:6f:c6:a5:65:f8:19:bf:9c:56:28:f3:c1:
b5:2e:2b:4b:49:b0:14:06:88:73:50:db:d6:85:5d:
17:06:e4:81:d1:e6:21:e2:8d:ef:42:fe:61:05:bf:
ac:3c:a3:78:c9:39:e4:81:87:b7:19:83:3a:86:c1:
6d:c2:1a:e7:6d:27:51:49:21:b4:cd:79:0f:25:58:
63:ae:3b:b3:fc:7b:4d:c2:55:e0:11:15:ab:28:0a:
ca:8c:37:c3:ea:0d:ea:54:f0:c7:bb:80:cb:b1:7c:
43:6a:76:80:7c:2c:ff:b8:fc:45:f8:b9:f0:21:b2:
a1:57:24:63:98:08:7d:cc:48:26:d4:a1:59:5b:0f:
5d:84:c1:43:ff:aa:18:76:72:e0:e7:00:10:b0:32:
17:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:7C:1D:B9:04:21:9C:65:C6:91:19:1A:43:77:1E:AD:3A:F5:D5:FF
X509v3 Authority Key Identifier:
keyid:D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3135392e302f32342d3234203d3e203630373231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.254.159.0/24
Signature Algorithm: sha256WithRSAEncryption
53:6c:9a:1a:be:1c:6b:6b:e0:38:56:75:ed:b0:f6:2a:05:fe:
83:94:ba:ce:40:0f:88:c4:d8:49:29:5f:ed:dd:cd:0c:99:68:
c2:cf:30:4c:2d:6b:1e:a7:7f:b2:2f:7d:be:cf:ee:2e:d5:c3:
c7:74:32:ce:5d:3d:9f:f9:61:74:98:93:c4:95:f7:89:76:bf:
56:74:82:34:dc:9e:b0:6c:c3:fc:e2:83:01:34:3a:6f:5d:c7:
dd:1b:21:dc:f0:e1:fd:1c:bb:17:d8:4a:60:ca:57:3e:b1:3f:
82:ea:ed:1d:85:7a:d9:0c:66:0e:09:6c:8b:08:fe:42:90:f9:
d7:72:5e:c8:8f:21:e3:78:c3:83:ac:c2:bb:96:f0:d9:21:6a:
18:02:f6:a3:a6:00:4d:c6:47:2b:be:61:cb:3c:c5:73:c7:6d:
44:61:83:ac:24:93:ce:a1:aa:d8:30:b5:cc:6a:23:bd:ca:8c:
83:00:2a:20:36:48:87:47:03:7f:2a:78:8d:94:1f:98:6c:90:
d2:0d:8c:22:da:87:70:49:cf:55:41:c8:e8:3b:a1:c4:73:1f:
6f:4f:c5:4c:eb:86:a5:ae:ce:fc:64:1f:23:df:7f:db:63:87:
81:6b:9e:e7:7a:40:bd:e1:a1:08:58:9e:d8:d1:19:38:70:c5:
e4:36:c2:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:40 2024 by rpki-client on console-ams.rpki-client.org