Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3232382e302f32342d3234203d3e20383334.roa
File: 3135372e3235342e3232382e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: T5cv1XPAFdjKy1A/luxGPdM+Ray0/jkKkI70Yc7KlMQ=
Subject key identifier: BB:CA:93:8A:2C:BC:78:52:A4:08:3F:70:A1:50:8E:8C:93:C8:BE:BC
Certificate issuer: /CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Certificate serial: 3959E3DE54C92EC909B6C7C13E917F261DE29572
Authority key identifier: D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3232382e302f32342d3234203d3e20383334.roa
Signing time: Wed 11 Jan 2023 12:29:59 +0000
ROA not before: Wed 11 Jan 2023 12:24:59 +0000
ROA not after: Wed 10 Jan 2024 12:29:59 +0000
asID: 834
IP address blocks: 157.254.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:59:e3:de:54:c9:2e:c9:09:b6:c7:c1:3e:91:7f:26:1d:e2:95:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Validity
Not Before: Jan 11 12:24:59 2023 GMT
Not After : Jan 10 12:29:59 2024 GMT
Subject: CN=BBCA938A2CBC7852A4083F70A1508E8C93C8BEBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:f1:e9:b6:93:47:1e:de:7b:a5:3b:7b:bf:
f2:85:9c:c5:e0:87:a6:48:7a:ac:21:24:fc:78:05:
8c:67:5d:dd:42:03:62:4f:e3:0e:c7:b3:26:5e:f7:
29:ca:13:a0:b7:f1:31:a9:b7:99:d7:e7:45:e2:3f:
30:4b:1b:da:68:67:7a:8b:25:17:d3:fb:f7:6d:7b:
22:75:16:38:5f:0f:10:24:18:a6:b1:00:0e:d0:34:
ba:ed:88:b0:f3:33:91:61:ac:f2:9d:68:bc:75:0b:
01:28:a4:d8:6a:7d:7b:39:a6:38:23:61:1c:cc:f8:
a2:f5:53:9e:98:98:8b:98:0a:9d:50:45:68:54:6b:
f8:9c:87:2f:43:c7:88:b0:7e:5e:66:74:43:56:a3:
b3:e0:7f:2f:06:46:60:a7:8d:e7:11:9d:ce:7d:77:
93:3d:f9:7d:ed:34:f2:59:77:ca:de:29:fc:27:1a:
0d:b2:0f:09:de:fa:cb:9a:4f:59:3c:cc:d8:4d:cf:
79:5a:7a:26:73:47:dd:e4:f0:a5:1f:e5:6b:3f:2e:
24:1f:cb:76:8d:b1:d5:d0:08:ee:1d:5e:07:b4:d8:
db:cd:c3:b4:d6:6d:92:67:9d:c8:58:ca:0d:e9:c7:
d1:52:94:39:9c:1e:fe:a1:35:49:ad:f2:93:59:db:
76:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:CA:93:8A:2C:BC:78:52:A4:08:3F:70:A1:50:8E:8C:93:C8:BE:BC
X509v3 Authority Key Identifier:
keyid:D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3232382e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.254.228.0/24
Signature Algorithm: sha256WithRSAEncryption
92:e0:de:71:55:ab:ae:e6:65:d5:14:06:ae:af:a5:c3:3a:07:
1d:a1:e3:3e:f4:b1:a8:b9:31:98:98:34:db:8a:91:2f:91:f6:
dc:fc:04:e3:f7:2f:3e:84:f3:f4:57:49:d4:17:aa:07:fe:91:
18:7c:67:2d:cb:3b:80:0a:10:fc:b4:97:8a:b4:8c:eb:79:48:
07:3d:7d:22:68:6d:ee:72:d8:d9:e4:71:74:09:2c:a9:e3:bc:
25:83:6a:e1:62:c5:07:e1:c2:79:7e:7b:4c:29:7e:7f:35:95:
b7:e2:dc:9e:9a:d0:cf:97:20:a9:c7:a3:69:94:38:bb:25:15:
3d:59:49:28:06:75:20:84:eb:7d:87:31:a9:0e:ff:ed:1f:42:
e8:d8:3e:55:11:e6:91:b8:f8:36:e9:91:22:50:44:65:b2:28:
95:5a:fd:1c:3f:00:20:a7:a9:33:f9:80:4f:fb:2d:5f:b6:ba:
6b:95:4b:37:d8:04:01:38:0c:ef:a1:30:14:8b:be:37:0d:4c:
b8:da:8d:24:66:35:10:d2:47:01:a6:93:7b:16:97:ee:cf:47:
3e:ac:ae:6e:07:70:2a:e8:91:9e:3c:92:a0:fa:a3:62:21:6c:
4c:ad:b8:7d:67:e7:6d:21:3b:ab:af:b3:c2:13:df:d5:d1:56:
e2:16:ed:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:41:08 2024 by rpki-client on console-fra.rpki-client.org