Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa/a97852ee-f670-3d48-a0d1-59307bddcb4d.roa
File: a97852ee-f670-3d48-a0d1-59307bddcb4d.roa (raw, json)
Hash identifier: Rk2YqA4I88LL6L6YWx6In8MowKwMiNYgBgfR9fix5Q8=
Subject key identifier: 63:AB:15:23:E8:78:BB:D0:05:A3:53:0C:26:FE:56:69:64:EE:14:64
Certificate issuer: /CN=5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa
Certificate serial: 010D0C9F43285844A74B9EA0B1103D0DF5FA87E0
Authority key identifier: A8:43:7A:D0:A3:E0:15:CC:9F:23:55:96:F3:C5:01:F0:B6:70:64:7D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa/a97852ee-f670-3d48-a0d1-59307bddcb4d.roa
Signing time: Tue 23 Jan 2024 23:11:30 +0000
ROA not before: Tue 23 Jan 2024 23:11:30 +0000
ROA not after: Mon 22 Apr 2024 22:11:30 +0000
asID: 400624
IP address blocks: 16.7.6.0/26 maxlen: 26
16.0.58.0/24 maxlen: 24
16.143.29.0/24 maxlen: 24
16.103.138.0/23 maxlen: 23
16.1.96.0/20 maxlen: 20
16.7.6.160/28 maxlen: 28
16.7.6.176/28 maxlen: 28
16.0.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:a7:4b:9e:a0:b1:10:3d:0d:f5:fa:87:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa
Validity
Not Before: Jan 23 23:11:30 2024 GMT
Not After : Apr 22 22:11:30 2024 GMT
Subject: CN=403b7539-0dd5-43d1-96fe-b6e5d7c42907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8e:5a:c1:8b:7b:72:3a:fa:4c:28:2e:8a:f8:
2e:69:98:d8:12:e0:01:62:62:4c:ce:39:c7:77:d0:
f3:9b:40:6e:ad:7e:ff:a1:e2:ab:1c:d4:35:38:7f:
79:ac:af:96:ac:62:10:74:c2:b4:a0:68:9c:10:48:
c4:b2:45:4b:ef:68:0f:cb:16:c9:dc:d4:5e:a0:c3:
65:45:98:e2:30:85:a1:3e:3c:e3:03:9e:f4:32:41:
8b:d8:97:f6:bb:0e:c1:ce:f4:fc:55:ea:01:25:e7:
d1:f6:c7:d5:6e:2c:49:ad:bd:ed:dc:2d:da:28:a0:
87:a7:c9:d0:26:d0:4d:c3:32:ed:2e:de:96:f0:c8:
ff:6c:fd:57:b2:94:8d:1d:50:6a:c2:6a:c7:19:25:
6e:d1:1e:eb:98:28:c7:39:ad:86:60:e2:dd:ab:93:
8a:3b:cb:f1:94:fc:7c:42:fb:96:52:b7:d8:5e:ce:
32:14:8c:c1:cf:9b:56:5f:31:2e:a6:d3:46:80:db:
7a:bc:97:f1:d6:8a:28:c4:1a:7e:6f:9f:a7:08:eb:
d5:56:da:94:79:59:6a:32:2d:cc:28:23:52:d7:aa:
ce:b6:44:56:4b:18:c3:69:0b:c7:c3:4d:f7:04:8e:
a4:5b:3d:7a:de:02:49:96:3a:d3:52:dd:1c:ba:03:
68:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AB:15:23:E8:78:BB:D0:05:A3:53:0C:26:FE:56:69:64:EE:14:64
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa/a97852ee-f670-3d48-a0d1-59307bddcb4d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa/5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa.crl
X509v3 Authority Key Identifier:
keyid:A8:43:7A:D0:A3:E0:15:CC:9F:23:55:96:F3:C5:01:F0:B6:70:64:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/5abc34ba-5ab4-4f1a-965e-3d6ec04cdbfa.cer
sbgp-ipAddrBlock: critical
IPv4:
16.0.57.0-16.0.58.255
16.1.96.0/20
16.7.6.0/26
16.7.6.160/27
16.103.138.0/23
16.143.29.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
49:31:f7:51:03:5c:fa:85:34:4c:5e:2a:36:a9:78:71:2a:dd:
ba:00:3a:58:29:8a:bd:1d:65:f5:2a:86:19:ea:ae:e3:3d:bf:
10:8b:53:a6:8e:83:c9:68:0f:22:3e:bd:0e:ae:2f:00:f8:3d:
90:1f:ea:34:d3:3d:9c:36:45:41:d4:9b:93:dd:a9:e2:3a:80:
14:4e:97:04:82:6f:83:b9:1b:be:74:99:77:01:c5:1c:d5:f1:
2a:d4:f5:03:1b:4b:83:3f:d5:d0:ee:7a:b9:a0:b3:56:c0:d7:
96:43:71:3c:d8:2b:6e:d2:5d:cf:0b:10:3b:c7:71:46:de:b5:
92:d6:6a:fc:f2:f2:5b:da:2b:27:51:cb:36:23:6e:cc:cf:0e:
52:0b:56:a4:3d:05:b3:9a:9e:ee:e5:c8:5d:4e:ec:49:7d:73:
3d:c0:6b:f3:ba:81:1d:86:f8:c2:48:ba:f1:dc:be:e7:3e:9d:
cb:2d:49:5e:9e:a2:18:04:90:93:94:3b:61:29:ec:f0:3d:72:
4b:5a:ce:5b:21:6c:a2:7e:d7:20:20:af:b6:46:a8:c4:01:6d:
ee:b4:e4:21:56:87:5e:f5:61:b4:28:af:ad:af:9c:3c:69:12:
85:aa:5b:cf:6e:8d:fa:76:44:79:f6:e0:95:37:47:24:31:0b:
d8:43:29:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:41:44 2024 by rpki-client on console-ams.rpki-client.org