Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/b3b9e191-f7b3-31f6-b31c-e8da7f37c3e2.roa
File: b3b9e191-f7b3-31f6-b31c-e8da7f37c3e2.roa (raw, json)
Hash identifier: WKlr9uIMsgtvk1PPTJ8/rwcBWThTiKBqjtJfnziv0cs=
Subject key identifier: 85:40:76:F8:6E:C6:73:DD:D8:2B:65:AA:13:B6:05:77:A5:14:BF:B8
Certificate issuer: /CN=674c2e16-6a5c-4ae2-961d-f9d291126728
Certificate serial: 010D0C9F432858466BA859E1E92FB8A1AFEE6FC0
Authority key identifier: E5:CD:70:D7:DC:C5:BD:7C:3F:F0:91:FD:5F:FF:08:45:23:8E:EA:AB
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/b3b9e191-f7b3-31f6-b31c-e8da7f37c3e2.roa
Signing time: Thu 04 Jul 2024 00:03:43 +0000
ROA not before: Thu 04 Jul 2024 00:03:43 +0000
ROA not after: Wed 02 Oct 2024 00:03:43 +0000
asID: 21877
IP address blocks: 20.137.176.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:46:6b:a8:59:e1:e9:2f:b8:a1:af:ee:6f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=674c2e16-6a5c-4ae2-961d-f9d291126728
Validity
Not Before: Jul 4 00:03:43 2024 GMT
Not After : Oct 2 00:03:43 2024 GMT
Subject: CN=2e3702cf-c619-4e7d-be41-e3c6a3878b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7a:1e:25:6b:b5:ad:c2:30:0b:ff:28:73:a6:
5d:0d:57:38:4b:80:49:ad:0f:53:33:e1:1c:f1:8a:
5b:b5:75:dc:07:5b:fa:6a:4d:a1:e2:15:d5:45:8a:
87:ab:6d:bf:0b:c4:43:c3:4f:0e:26:a7:f2:f8:d3:
01:74:a0:62:a6:7e:9f:4c:dd:6c:34:d6:ef:15:7a:
82:6f:ca:aa:64:9a:1c:87:f6:5a:a3:41:51:2e:39:
fd:b0:7d:60:b0:e7:17:a8:b3:51:97:87:65:4f:9b:
a7:50:93:7c:85:0e:80:27:bf:4c:ed:18:83:11:f5:
ee:c8:a1:d0:31:4e:a1:48:11:f6:26:61:65:a0:1a:
b8:72:24:24:5c:84:08:95:93:fc:4b:cc:2a:67:3d:
91:fc:ab:bc:6d:24:66:45:47:c2:e9:d8:b0:36:d6:
bc:08:d5:d1:c0:08:95:dd:fc:dd:d1:0f:18:72:f6:
2c:39:b4:d6:75:63:32:c7:05:5a:9a:90:99:67:6a:
aa:31:fa:d1:d0:84:47:47:75:2a:92:db:60:9e:9f:
e0:f9:a8:6e:5c:79:21:49:f4:86:69:d8:1c:59:11:
5c:da:e3:65:44:70:d6:5f:11:30:68:f0:cf:fd:d0:
19:8b:48:90:e0:66:97:92:b1:aa:59:7e:08:7c:f0:
54:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:40:76:F8:6E:C6:73:DD:D8:2B:65:AA:13:B6:05:77:A5:14:BF:B8
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/b3b9e191-f7b3-31f6-b31c-e8da7f37c3e2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728/674c2e16-6a5c-4ae2-961d-f9d291126728.crl
X509v3 Authority Key Identifier:
keyid:E5:CD:70:D7:DC:C5:BD:7C:3F:F0:91:FD:5F:FF:08:45:23:8E:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/674c2e16-6a5c-4ae2-961d-f9d291126728.cer
sbgp-ipAddrBlock: critical
IPv4:
20.137.176.0/21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
00:83:e4:61:7d:c7:41:98:fb:84:39:03:e3:23:63:0f:c7:60:
41:95:14:71:d0:88:4a:0f:cb:02:9d:66:63:07:81:1c:1c:ef:
51:c9:2c:11:0d:9c:7b:cd:21:82:01:ae:17:00:f8:55:ee:ef:
d1:cb:f5:e3:b9:dc:45:fc:e5:90:24:9b:67:82:b7:d4:18:44:
70:4d:40:61:3e:88:03:43:b1:97:bb:1c:fa:32:6d:08:01:5f:
15:be:8e:97:28:9e:f8:f3:b1:86:41:d9:41:52:2f:69:1d:24:
ad:76:19:79:71:58:8d:ec:72:16:86:56:32:f6:4f:aa:0b:f0:
92:91:46:3c:db:bc:4a:39:1c:f0:8c:4a:51:bb:23:fd:ae:a3:
8c:f7:79:5e:f2:ef:57:e2:0c:a8:db:f1:ff:b7:5c:98:59:a6:
ab:d4:79:59:0d:d2:c6:0a:ba:07:b2:0a:54:9f:46:a8:02:75:
37:93:5d:d7:97:0c:b6:16:c8:70:31:36:5c:81:9b:4b:45:b5:
89:0f:a1:fb:4e:c0:7b:33:f3:87:1e:7f:e0:30:7a:00:99:c5:
05:0e:65:81:11:7b:c1:18:c9:e3:85:f9:41:37:94:54:8b:29:
55:d3:33:56:b1:e7:e3:f7:e1:8c:48:da:cd:d1:8e:52:b4:03:
ef:b1:81:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:48:08 2025 by rpki-client