Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/36342e342e3137302e302f32332d3233203d3e20323131353835.roa
File: 36342e342e3137302e302f32332d3233203d3e20323131353835.roa (raw, json)
Hash identifier: HtDUHsSfxnuVMnYz0vNB0VsPw670f3TsyoERODXVN54=
Subject key identifier: D8:D4:30:FC:61:C5:33:C7:F8:80:44:53:FE:2F:6B:AB:45:2F:1C:0A
Certificate issuer: /CN=58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845
Certificate serial: 63B90775ABEB9B987B8EAEABEF29763027DB030D
Authority key identifier: E9:AB:82:D4:D9:BF:4C:16:EA:6E:7C:FA:F3:EE:14:CF:EC:5A:4A:8A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/ae85d24a-77d4-4cf7-80aa-c071199c2889/58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/36342e342e3137302e302f32332d3233203d3e20323131353835.roa
Signing time: Thu 11 May 2023 17:25:43 +0000
ROA not before: Thu 11 May 2023 17:20:43 +0000
ROA not after: Thu 09 May 2024 17:25:43 +0000
asID: 211585
IP address blocks: 64.4.170.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:b9:07:75:ab:eb:9b:98:7b:8e:ae:ab:ef:29:76:30:27:db:03:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845
Validity
Not Before: May 11 17:20:43 2023 GMT
Not After : May 9 17:25:43 2024 GMT
Subject: CN=D8D430FC61C533C7F8804453FE2F6BAB452F1C0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:16:22:7e:81:3d:c2:b8:a5:71:a9:ea:d8:a8:
71:5f:fc:81:8d:6e:64:0a:3e:d8:5b:70:d4:74:04:
73:7c:04:63:ed:88:f7:e3:5f:5b:2b:a7:d3:6f:ab:
35:fb:71:5f:f5:b4:8d:9a:cd:06:75:41:c2:95:25:
d7:f4:b7:20:42:c1:55:84:e9:bc:3a:5e:83:3e:37:
5c:27:3f:4d:ce:5a:8a:10:69:b1:81:47:09:4b:3f:
1d:bf:25:a9:c3:05:fc:78:99:66:e8:8b:61:ea:5f:
08:9e:2f:66:82:74:1c:5e:cf:c9:bf:cf:36:d4:b1:
64:b9:89:b7:6d:87:06:46:5c:7c:cb:17:8d:9d:63:
22:62:1e:81:56:eb:9a:24:45:73:88:45:bc:b4:dc:
b2:f1:0a:90:90:b8:a5:1c:57:62:f1:6d:c7:d4:b5:
fe:70:9c:47:18:2c:2a:b9:46:9f:cb:cb:77:b2:bc:
02:fb:3e:c7:18:07:a1:69:95:48:67:46:63:01:02:
51:01:7d:4c:b9:b7:25:27:cd:48:6f:3d:5e:09:c4:
de:fe:2d:8c:67:e8:af:0c:93:5f:2f:e2:c4:82:53:
0d:a0:64:ad:bc:fe:7a:03:1d:1c:36:a3:0a:b9:35:
35:d3:99:4c:fc:5d:05:f6:d8:35:c6:6c:d0:78:30:
72:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D4:30:FC:61:C5:33:C7:F8:80:44:53:FE:2F:6B:AB:45:2F:1C:0A
X509v3 Authority Key Identifier:
keyid:E9:AB:82:D4:D9:BF:4C:16:EA:6E:7C:FA:F3:EE:14:CF:EC:5A:4A:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/E9AB82D4D9BF4C16EA6E7CFAF3EE14CFEC5A4A8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/ae85d24a-77d4-4cf7-80aa-c071199c2889/58f72174a0a9e3d07a37cad87c2235a762efa6a9b620372845.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf86941d5c0186998663d80702/0/36342e342e3137302e302f32332d3233203d3e20323131353835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.4.170.0/23
Signature Algorithm: sha256WithRSAEncryption
49:ff:f7:59:e3:79:5f:4a:29:99:c9:00:d9:5c:c8:2a:75:3e:
d2:5e:ab:6a:5f:39:e5:26:01:53:02:70:42:ea:7a:33:0e:d6:
01:00:63:99:4b:2d:20:fa:dc:61:90:5f:2a:7d:2f:7a:74:d8:
94:8f:de:6c:3c:9e:ee:6e:0f:60:c2:d6:05:cd:ac:58:e0:ff:
e6:c5:fc:94:d7:17:36:f6:01:33:1b:cb:b4:f1:76:09:10:e0:
07:eb:1a:09:15:6b:db:0d:ff:9b:89:45:b3:d5:bc:6e:55:cb:
6a:94:6f:d8:89:78:7b:5c:47:3d:5d:9d:a0:56:e0:e5:56:1e:
6c:c7:73:9f:59:36:78:63:6c:b8:95:c0:23:a8:c0:5f:ef:c2:
f9:db:c4:ef:3c:a9:be:20:0e:43:33:02:a9:32:8c:0e:ef:0e:
c2:3e:40:8d:34:ef:a0:13:9e:f3:93:b3:59:3a:a0:b4:0b:08:
01:79:19:76:d3:ac:89:7f:41:6d:ce:bd:a7:ff:19:a8:52:35:
29:8b:f6:6d:5d:e0:56:69:07:cd:59:36:b4:12:f2:a4:65:c7:
5c:70:d7:28:f5:3e:0a:72:39:78:f9:b3:5d:ed:14:c7:15:7f:
ed:c4:b3:f8:a8:e0:c6:23:c6:4f:89:4b:e1:6f:be:be:b1:da:
41:6e:17:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 18:06:34 2025 by rpki-client