Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/3230382e39312e3138382e302f32342d3234203d3e203631333137.roa
File: 3230382e39312e3138382e302f32342d3234203d3e203631333137.roa (raw, json)
Hash identifier: lLr3OpETeeE8CJcgSO2QLlC/Q6yORL5bUqCXVDB2xdQ=
Subject key identifier: F4:1C:19:3E:8A:C2:F6:58:D9:45:48:84:AC:CF:BE:2D:3A:75:22:43
Certificate issuer: /CN=58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845
Certificate serial: 4344D934A1AF4DE96CA7F2A56C74204170198EE6
Authority key identifier: E9:AB:82:D4:D9:BF:4C:16:EA:6E:7C:FA:F3:EE:14:CF:EC:5A:4A:8A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/ae85d24a-77d4-4cf7-80aa-c071199c2889/58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/3230382e39312e3138382e302f32342d3234203d3e203631333137.roa
Signing time: Wed 29 Mar 2023 10:11:47 +0000
ROA not before: Wed 29 Mar 2023 10:06:47 +0000
ROA not after: Wed 27 Mar 2024 10:11:47 +0000
asID: 61317
IP address blocks: 208.91.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:44:d9:34:a1:af:4d:e9:6c:a7:f2:a5:6c:74:20:41:70:19:8e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845
Validity
Not Before: Mar 29 10:06:47 2023 GMT
Not After : Mar 27 10:11:47 2024 GMT
Subject: CN=F41C193E8AC2F658D9454884ACCFBE2D3A752243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e3:a7:e6:00:ca:24:f1:29:35:3a:cf:73:74:
ab:6a:20:8e:dd:f1:74:fa:3d:68:ad:d2:00:22:ff:
cf:db:c3:40:34:0a:21:7a:e7:1b:d6:7c:ee:46:bc:
60:60:2b:1c:f5:b2:cb:cf:0a:32:8b:f8:50:08:ec:
d9:40:82:d4:1f:da:59:60:70:8a:0a:03:1c:37:33:
90:4b:ff:be:36:1c:90:cb:32:87:90:b5:6a:53:a6:
f7:65:fe:83:95:c9:9a:e7:4b:3f:4e:73:fb:96:4e:
16:30:cc:c3:95:0c:0d:5f:fd:70:94:dc:f5:23:16:
47:a7:c1:71:b7:4b:89:b7:28:ac:59:d4:37:43:ab:
7a:ca:36:ae:84:fb:ca:42:f4:d9:33:30:31:f0:47:
e8:9d:d1:2f:83:19:7e:b7:d7:df:7b:ef:4d:ad:29:
67:31:3c:d4:4d:5e:4a:56:ed:8f:1d:88:d2:a8:a5:
9a:c3:6c:a4:2b:d1:cf:b6:8a:3c:bf:a6:ab:32:02:
97:1d:f7:1a:b2:1c:ad:8f:b0:c3:6f:33:df:7b:cf:
15:71:cc:51:16:36:ef:e0:f1:7d:2c:db:e7:ed:fb:
58:98:c2:d8:1d:99:e0:ce:4b:8c:81:e6:2d:31:85:
36:e4:5d:19:f9:f9:70:76:a6:80:5c:d4:d4:b5:12:
c9:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1C:19:3E:8A:C2:F6:58:D9:45:48:84:AC:CF:BE:2D:3A:75:22:43
X509v3 Authority Key Identifier:
keyid:E9:AB:82:D4:D9:BF:4C:16:EA:6E:7C:FA:F3:EE:14:CF:EC:5A:4A:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/E9AB82D4D9BF4C16EA6E7CFAF3EE14CFEC5A4A8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/ae85d24a-77d4-4cf7-80aa-c071199c2889/58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/3230382e39312e3138382e302f32342d3234203d3e203631333137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
208.91.188.0/24
Signature Algorithm: sha256WithRSAEncryption
88:b7:6d:9d:29:93:c6:95:69:66:f3:ec:3d:c7:74:b5:7e:0b:
f5:78:53:bf:61:80:81:64:2e:3c:a7:b0:c2:76:f1:96:a3:47:
d2:63:f8:f4:dc:c3:7e:9b:a4:b8:3c:ca:6a:c4:c0:e6:d7:ab:
20:d1:ab:81:99:2a:41:5d:c8:68:9e:d6:f5:0d:01:29:1e:72:
8b:eb:05:e0:5e:c4:9c:e7:93:8e:96:41:11:c5:ee:ca:75:68:
d1:d5:9c:44:58:ce:83:52:65:b6:42:c4:14:19:4e:9b:c9:3a:
6e:48:51:5c:69:8a:18:49:25:89:b0:ec:9a:75:47:13:15:6a:
f6:90:26:a7:2c:71:e7:98:29:7a:ba:ca:69:6f:cb:96:de:2b:
0f:c6:67:da:f3:15:96:fe:14:f0:74:3f:a5:28:08:5e:2e:36:
90:ce:04:9a:c1:9f:c9:50:3d:fd:24:e0:fa:ca:bf:cd:4e:c7:
c9:54:f1:3d:03:22:9d:97:9c:e5:3c:d5:01:9c:53:b2:0a:c9:
80:d1:0b:f5:ec:eb:a6:2b:21:e2:1d:a1:c4:f1:fc:9f:81:00:
69:e6:d4:a0:fe:3a:a8:58:60:a6:8e:94:4e:76:4d:a3:1e:87:
fc:3c:53:c4:70:1d:11:e4:ae:f4:36:ea:9b:11:65:ba:7c:e0:
4f:e0:c5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:46:48 2025 by rpki-client