Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/e8c73746-18f6-4692-80c6-1d7b3e93659a/f9038877-b6c2-370a-b6d5-6af140311fad.roa
File: f9038877-b6c2-370a-b6d5-6af140311fad.roa (raw, json)
Hash identifier: +wKzJyQBT1Sc52D4ia1qCK04wwZsRe3eB4s57uKqPhU=
Subject key identifier: D3:E5:0D:DF:23:EA:3C:DC:43:E9:43:3D:37:DE:BD:4A:2C:2C:22:FE
Certificate issuer: /CN=e8c73746-18f6-4692-80c6-1d7b3e93659a
Certificate serial: 010D0C9F432858480EA5041165202EB866070400
Authority key identifier: 37:0A:97:59:74:D5:5E:63:86:B7:6A:77:B8:A8:47:1C:2E:C1:31:D9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/e8c73746-18f6-4692-80c6-1d7b3e93659a.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/e8c73746-18f6-4692-80c6-1d7b3e93659a/f9038877-b6c2-370a-b6d5-6af140311fad.roa
Signing time: Sun 01 Dec 2024 02:00:39 +0000
ROA not before: Sun 01 Dec 2024 02:00:39 +0000
ROA not after: Sat 01 Mar 2025 02:00:39 +0000
asID: 8100
IP address blocks: 198.96.88.0/24 maxlen: 24
198.96.89.0/24 maxlen: 24
198.96.90.0/24 maxlen: 24
198.96.91.0/24 maxlen: 24
198.96.92.0/24 maxlen: 24
198.96.93.0/24 maxlen: 24
198.96.94.0/24 maxlen: 24
198.96.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:0e:a5:04:11:65:20:2e:b8:66:07:04:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8c73746-18f6-4692-80c6-1d7b3e93659a
Validity
Not Before: Dec 1 02:00:39 2024 GMT
Not After : Mar 1 02:00:39 2025 GMT
Subject: CN=afe0fb45-67ef-4b01-8a68-8ad7d462dc87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:73:f1:5d:6a:78:db:cf:72:06:c7:63:5b:e0:
d3:00:72:db:74:87:45:a2:1e:17:0e:52:d4:5f:c1:
60:2a:70:42:c8:60:20:20:01:cf:ce:31:87:db:5c:
f5:08:bb:d2:ad:60:63:fd:e3:62:a7:45:93:3d:2c:
85:1a:49:6b:d4:8a:97:10:6f:86:21:cd:92:74:28:
69:fc:80:af:75:6b:7f:a7:02:2c:16:a0:2f:6f:15:
84:bb:a7:1c:e7:99:fe:f0:03:aa:74:dc:bb:ee:fb:
5f:fb:2b:91:de:8e:89:ab:bc:94:e1:cc:53:44:39:
0b:b1:1d:c7:76:71:28:75:ce:7b:95:38:a2:34:a0:
ee:94:ca:27:aa:0f:8f:09:c1:3a:aa:7a:c7:0c:d7:
1b:b8:20:63:78:82:c3:cd:3b:dd:b5:59:99:ba:ef:
9d:fc:69:ad:e7:20:96:73:54:5b:10:3d:ca:a5:69:
78:9c:a2:73:63:c0:15:2d:a4:1a:6a:3a:a6:9b:99:
fa:f2:74:4a:74:02:5b:b7:b2:03:65:e7:38:c4:47:
4e:c6:99:f9:66:29:7a:5b:ca:ec:6b:7d:2d:2a:2b:
25:2d:c5:0b:33:25:d7:98:64:0a:0c:12:30:de:39:
3b:83:54:08:5a:92:59:32:4e:6d:f7:07:dd:97:51:
6e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E5:0D:DF:23:EA:3C:DC:43:E9:43:3D:37:DE:BD:4A:2C:2C:22:FE
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/e8c73746-18f6-4692-80c6-1d7b3e93659a/f9038877-b6c2-370a-b6d5-6af140311fad.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/e8c73746-18f6-4692-80c6-1d7b3e93659a/e8c73746-18f6-4692-80c6-1d7b3e93659a.crl
X509v3 Authority Key Identifier:
keyid:37:0A:97:59:74:D5:5E:63:86:B7:6A:77:B8:A8:47:1C:2E:C1:31:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/e8c73746-18f6-4692-80c6-1d7b3e93659a.cer
sbgp-ipAddrBlock: critical
IPv4:
198.96.88.0/21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
11:a4:19:fc:66:53:ca:31:66:21:dd:88:1d:d2:cd:e3:44:46:
45:38:2b:ba:9d:66:ae:70:5c:e0:17:69:a8:36:7d:df:0a:48:
4d:dc:b1:8f:15:cf:8a:f7:36:16:97:c2:f1:76:87:8e:7c:5f:
7a:e0:39:88:69:45:7d:d5:9c:32:15:ce:ee:59:de:4b:91:28:
6b:50:87:a7:56:b0:88:27:d9:3e:9f:66:1c:94:62:cd:b9:35:
1e:61:2f:53:3b:df:c9:f1:d4:d6:49:88:4a:34:76:35:7b:49:
81:1a:0f:ba:ba:f9:19:ca:47:40:38:ae:50:f0:fb:40:71:26:
46:8f:d3:6f:a6:33:0c:1c:5d:99:73:ad:3e:05:8f:72:19:86:
14:a5:d9:1d:71:c0:11:17:d4:ad:27:91:6b:56:cf:ea:40:df:
03:ef:2f:ff:3c:af:7b:58:f8:2b:b0:24:86:0e:b7:58:7f:2f:
ea:cc:20:3b:d1:23:ce:18:0b:2a:f5:a6:8d:77:fc:da:91:53:
c5:94:e2:cf:43:ed:9f:cc:6c:bd:9e:be:8f:03:30:9d:06:26:
84:94:35:63:4d:95:4c:88:8b:fc:28:a1:51:0c:ea:f3:06:84:
87:70:7b:36:56:e8:19:65:8c:46:f1:16:48:fb:e2:06:f8:17:
11:6b:04:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 14:56:17 2025 by rpki-client