Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/5/3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa
File: 3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa (raw, json)
Hash identifier: 00SAKB+c1ZqVOWau32xWx/dnPvLXGO0UJVkyDkd1bns=
Subject key identifier: B1:16:4B:05:E9:BA:77:95:AE:EB:82:52:C5:C5:BC:74:A1:2E:87:E1
Certificate issuer: /CN=A91650860000/serialNumber=23B1030F3CCAC999F2B57745FC9DDA1CCDFA3630
Certificate serial: 53CDBFC52AF8AC5F6060BE7718FEA00C9F4B33B3
Authority key identifier: 23:B1:03:0F:3C:CA:C9:99:F2:B5:77:45:FC:9D:DA:1C:CD:FA:36:30
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I7EDDzzKyZnytXdF_J3aHM36NjA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/5/3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa
Signing time: Mon 17 Jun 2024 06:05:34 +0000
ROA not before: Mon 17 Jun 2024 06:00:34 +0000
ROA not after: Mon 16 Jun 2025 06:05:34 +0000
asID: 149301
IP address blocks: 160.22.168.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:cd:bf:c5:2a:f8:ac:5f:60:60:be:77:18:fe:a0:0c:9f:4b:33:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91650860000
Validity
Not Before: Jun 17 06:00:34 2024 GMT
Not After : Jun 16 06:05:34 2025 GMT
Subject: CN=B1164B05E9BA7795AEEB8252C5C5BC74A12E87E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4a:b2:73:b5:48:c3:a2:95:65:a9:78:a0:f5:
82:52:fc:51:7f:7f:6e:79:8b:d9:e7:c2:b2:84:ab:
03:7b:66:6b:cb:81:e2:47:c9:fd:62:ea:a6:73:4a:
3f:dd:f7:f4:97:1b:d7:8f:51:fd:e1:16:c8:ec:b7:
38:cc:73:ff:f0:19:d8:74:ed:22:59:ba:5e:51:d1:
36:c7:ba:8e:b2:13:55:45:41:75:36:85:6b:0b:4a:
00:e3:6d:29:30:54:f0:59:0c:fe:b2:d0:eb:2a:20:
b3:a1:98:9b:03:27:75:fb:35:9f:43:eb:b9:7f:4b:
a5:73:0e:eb:20:3d:4c:3d:26:c1:5d:da:c7:01:0d:
1f:e8:9d:13:67:31:24:15:50:7f:d5:dc:0b:0f:3c:
80:65:8e:93:a7:ce:0b:21:64:36:89:a1:db:12:e1:
9b:cd:a5:86:13:b0:31:00:9b:98:15:42:e2:b9:d6:
86:8d:f2:21:e6:01:41:5b:26:56:57:60:3c:df:59:
16:54:a8:89:44:38:51:c9:1d:07:bc:3b:3b:26:19:
ef:57:48:c0:79:e7:7b:d5:d7:c3:f9:c5:ec:c3:13:
36:fc:80:24:57:ef:48:94:04:8d:47:66:4a:57:cd:
fd:45:3b:e4:08:e6:14:92:31:39:2c:bb:93:12:7f:
4d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:16:4B:05:E9:BA:77:95:AE:EB:82:52:C5:C5:BC:74:A1:2E:87:E1
X509v3 Authority Key Identifier:
keyid:23:B1:03:0F:3C:CA:C9:99:F2:B5:77:45:FC:9D:DA:1C:CD:FA:36:30
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/5/23B1030F3CCAC999F2B57745FC9DDA1CCDFA3630.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/I7EDDzzKyZnytXdF_J3aHM36NjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/5/3136302e32322e3136382e302f32332d3234203d3e20313439333031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.168.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:a6:04:6f:cf:ad:25:35:d7:04:72:09:e9:41:25:e2:68:2b:
a4:0d:b0:e1:d9:c5:88:6b:6a:57:ae:12:25:8f:c4:41:d0:05:
53:9b:26:e8:29:01:6b:5c:cf:ac:da:7f:77:51:d4:98:8e:25:
96:cc:3c:6f:58:0e:6d:d0:ba:72:38:38:01:e2:cf:63:21:8d:
24:e6:78:72:68:f2:90:8d:a5:c3:b0:6c:03:f8:bc:cb:09:fd:
2d:55:74:ce:68:49:01:68:e1:07:7a:91:01:84:c2:16:3a:47:
0e:9e:c1:5f:ea:04:00:26:9d:f8:b4:b3:dc:05:07:c4:65:cb:
ec:27:d4:68:b7:15:34:3d:6b:32:47:e4:c2:cf:ac:f4:b4:3e:
91:81:39:b0:d9:f6:a8:fa:b4:92:e9:f8:78:70:b5:04:d8:c0:
36:3c:b5:20:f7:df:a8:b0:22:84:bd:f0:88:d6:f1:1d:37:3a:
06:91:d1:02:2e:a2:90:c4:ec:2c:35:d5:ca:b3:02:c3:ee:1c:
df:39:d8:5a:1c:20:96:40:32:b2:b2:4c:ac:0e:dd:dd:0e:58:
17:00:6d:e3:a3:46:53:04:a8:f9:b6:39:2a:9d:fc:7e:80:2b:
47:d5:ce:2c:6d:50:1b:b4:0b:63:0e:a7:a5:8d:32:64:7c:8a:
7b:27:e9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:08:37 2025 by rpki-client