Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/3230382e39312e3138382e302f32342d3234203d3e20323034383433.roa
File: 3230382e39312e3138382e302f32342d3234203d3e20323034383433.roa (raw, json)
Hash identifier: /BT8khoigoiGXwKiVFT/zbC5ORo0+lHCJpSJFqotJOY=
Subject key identifier: 7E:AC:6D:52:69:C4:1E:31:B3:42:75:48:60:04:78:6D:F9:1B:63:B7
Certificate issuer: /CN=58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845
Certificate serial: 79A81B295FCBA641EC0D400B7B4FF96EA92B579C
Authority key identifier: E9:AB:82:D4:D9:BF:4C:16:EA:6E:7C:FA:F3:EE:14:CF:EC:5A:4A:8A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/ae85d24a-77d4-4cf7-80aa-c071199c2889/58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/3230382e39312e3138382e302f32342d3234203d3e20323034383433.roa
Signing time: Thu 01 Jun 2023 15:06:42 +0000
ROA not before: Thu 01 Jun 2023 15:01:42 +0000
ROA not after: Thu 30 May 2024 15:06:42 +0000
asID: 204843
IP address blocks: 208.91.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:a8:1b:29:5f:cb:a6:41:ec:0d:40:0b:7b:4f:f9:6e:a9:2b:57:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845
Validity
Not Before: Jun 1 15:01:42 2023 GMT
Not After : May 30 15:06:42 2024 GMT
Subject: CN=7EAC6D5269C41E31B34275486004786DF91B63B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:c8:d1:6a:62:f9:72:97:2f:f0:05:f1:a4:e6:
12:47:e9:f5:93:e1:51:76:5e:55:ae:3e:c2:c6:94:
45:78:46:79:be:79:cb:5c:40:ad:0c:d5:28:a6:b0:
ec:e1:42:52:67:b6:2b:f9:b7:3f:db:2f:96:1b:1c:
a4:ee:72:dc:38:51:85:c9:b9:d3:16:44:c8:b5:55:
26:82:87:50:a2:06:9a:be:51:79:68:1b:f5:dd:ac:
06:df:fd:41:2b:5f:7c:91:bd:88:b3:c7:3d:ec:41:
68:d0:1c:54:65:1f:fa:b4:fd:f2:6b:5f:37:88:8b:
03:b4:fc:48:31:6c:ee:fb:86:84:12:90:f7:15:dc:
59:3c:d1:8f:89:2f:44:49:0b:18:95:c2:57:01:26:
d9:71:48:27:36:61:13:73:37:ee:4c:ac:41:6b:20:
fd:5c:25:a0:67:e1:ea:19:81:7d:d9:71:a1:ea:79:
d3:db:e5:bc:c8:be:7c:ff:68:4e:7e:31:7a:aa:23:
1c:3a:b2:63:e8:7d:36:1b:c6:86:d4:4c:38:b6:5e:
c2:fe:79:3a:3c:e6:24:b7:39:82:84:20:17:77:ad:
43:c5:23:66:99:40:30:ac:23:ba:43:6b:67:f2:c4:
84:bc:54:35:d9:b4:71:ae:03:ba:06:73:ac:1c:8b:
41:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:AC:6D:52:69:C4:1E:31:B3:42:75:48:60:04:78:6D:F9:1B:63:B7
X509v3 Authority Key Identifier:
keyid:E9:AB:82:D4:D9:BF:4C:16:EA:6E:7C:FA:F3:EE:14:CF:EC:5A:4A:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/E9AB82D4D9BF4C16EA6E7CFAF3EE14CFEC5A4A8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/ae85d24a-77d4-4cf7-80aa-c071199c2889/58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/3230382e39312e3138382e302f32342d3234203d3e20323034383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
208.91.188.0/24
Signature Algorithm: sha256WithRSAEncryption
84:b0:99:77:97:ec:48:81:bb:3b:7d:44:2f:7b:47:03:62:5e:
91:bc:58:bd:a3:0d:6f:1f:49:a2:5a:02:76:3f:32:3f:54:e4:
96:c2:e5:fb:57:b2:38:4d:f1:eb:1b:1b:f5:fe:32:a9:53:dd:
79:ce:4f:9d:16:d4:e2:ff:b2:c9:d3:8a:a3:b9:e7:0b:97:3f:
54:f3:98:f2:7d:0e:8d:9c:20:1e:5e:85:c2:6c:2e:71:38:63:
17:f4:80:6c:96:97:a5:89:e9:f9:e8:ca:1c:f6:57:e8:1e:10:
f9:3e:2e:81:9e:3a:59:84:26:9b:c7:f4:e6:48:82:32:01:82:
39:f6:a8:75:9f:16:ad:8f:5a:69:6d:22:f0:a7:d3:11:5e:f6:
b7:4c:bd:37:4f:3c:3f:f6:33:9a:2b:cc:43:28:e4:49:eb:0c:
45:6a:a2:00:2c:6d:1b:62:fe:c7:14:db:e2:2b:3a:69:43:8f:
d0:94:fb:f3:ad:18:12:18:39:98:5a:28:67:84:a3:73:60:38:
c3:2b:bf:ac:9c:de:d8:db:a2:6c:96:98:73:e5:14:58:fd:30:
6f:fa:ec:75:b8:53:46:14:54:70:78:cb:62:b7:9a:87:38:d1:
ba:c1:c5:d4:db:b0:49:c7:e2:9f:04:31:50:e2:71:15:cc:e6:
75:69:25:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:05:33 2025 by rpki-client