Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/a2435125-aaf6-3f11-be8b-aa63e2b7ee88.roa
File: a2435125-aaf6-3f11-be8b-aa63e2b7ee88.roa (raw, json)
Hash identifier: tNiqN8K37aS8ciGFDNEKnMLnXZImr5jTm20bQgKM7K4=
Subject key identifier: AB:C2:CF:41:8D:C8:FD:79:D4:D1:7D:5E:E5:A6:84:F3:51:BB:EC:CD
Certificate issuer: /CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f
Certificate serial: 010D0C9F432858474B1B4BEB554579A4B5D465C0
Authority key identifier: F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/a2435125-aaf6-3f11-be8b-aa63e2b7ee88.roa
Signing time: Sun 22 Sep 2024 01:00:32 +0000
ROA not before: Sun 22 Sep 2024 01:00:32 +0000
ROA not after: Sat 21 Dec 2024 02:00:32 +0000
asID: 394437
IP address blocks: 72.20.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:47:4b:1b:4b:eb:55:45:79:a4:b5:d4:65:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24fa05bf-5b46-4a55-bd55-4891d21cb24f
Validity
Not Before: Sep 22 01:00:32 2024 GMT
Not After : Dec 21 02:00:32 2024 GMT
Subject: CN=0762008c-4310-4666-89d1-ad3109c1e43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ef:4d:f4:f2:d5:9f:7e:0f:30:0a:36:c3:8d:
51:4b:37:47:b5:67:43:3a:57:f4:93:ae:d5:66:8e:
0e:67:c9:e0:05:de:ed:3a:50:61:44:e7:c5:3c:b6:
e6:24:68:bb:89:48:8e:43:4a:7e:0c:c6:90:33:bf:
a2:b6:4a:50:32:27:ca:c0:0d:82:c4:2f:b3:10:fc:
2b:e7:e8:fc:ca:3c:bb:0b:dc:1a:a2:14:6c:13:dc:
46:6d:8f:8e:6a:d8:ed:15:f8:25:a9:47:e8:15:80:
87:29:8d:79:25:4d:54:8f:63:eb:86:41:80:bf:ed:
82:b3:1b:43:f5:fa:36:f8:c1:77:2c:05:79:7d:dd:
ad:cc:ef:d1:19:d6:ff:6c:59:d2:64:b1:fc:28:a8:
5b:4d:b7:e6:fd:0a:72:6d:81:86:71:df:36:ce:4a:
05:15:53:cd:9d:8b:8a:89:ed:27:c5:bd:92:be:8b:
de:96:8c:c6:57:c7:d6:ea:31:91:b2:17:57:9e:c2:
92:74:12:41:f2:b1:34:36:09:5b:6a:b3:93:59:45:
85:7f:0b:3e:00:fa:ea:1b:96:b0:4c:98:24:64:37:
6b:93:dd:01:eb:3f:34:2d:05:53:fb:91:9d:7c:15:
00:2b:58:6a:b2:18:7d:a4:c0:a4:b1:b0:f7:15:b8:
b9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:C2:CF:41:8D:C8:FD:79:D4:D1:7D:5E:E5:A6:84:F3:51:BB:EC:CD
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/a2435125-aaf6-3f11-be8b-aa63e2b7ee88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f/24fa05bf-5b46-4a55-bd55-4891d21cb24f.crl
X509v3 Authority Key Identifier:
keyid:F7:6F:8C:D8:57:DC:73:3D:90:CF:C1:F9:F3:DF:C0:38:A5:E8:74:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/24fa05bf-5b46-4a55-bd55-4891d21cb24f.cer
sbgp-ipAddrBlock: critical
IPv4:
72.20.132.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
55:de:bb:96:46:09:d3:35:4a:d0:2c:53:58:50:11:39:6b:b8:
53:d4:39:ad:f0:ff:2b:26:8e:19:a3:ad:92:18:0b:74:43:df:
f8:05:61:7a:2b:15:6c:07:ec:e3:88:15:2b:44:93:37:2c:c4:
df:12:be:20:78:ab:e5:5b:55:f6:79:19:15:ae:7e:49:f9:1f:
76:f3:33:dc:c1:b9:b2:59:a5:11:30:78:9d:89:74:e6:1d:30:
44:6e:5b:21:ca:49:af:d3:13:d0:09:42:2f:c6:0a:e2:47:5d:
8f:9d:14:12:7d:83:9f:d1:4f:c2:17:16:ef:53:9e:b7:52:65:
53:42:aa:6e:28:b3:aa:d7:95:c0:6e:69:08:88:21:8c:eb:c9:
29:86:07:a3:20:66:b7:97:83:46:9f:91:85:b5:f9:54:f6:cc:
8a:2a:ec:17:a0:5e:2d:06:d8:da:d8:0c:fc:91:94:74:97:a1:
52:de:c6:1b:54:ae:b2:9b:87:27:cd:8d:65:73:f1:72:79:14:
4a:0e:6c:51:71:56:68:a8:8a:32:22:02:30:ab:bd:82:e7:2f:
0d:fc:29:6b:64:d0:e4:ea:00:ee:c2:5e:cc:12:f9:0f:82:b6:
78:d3:d1:32:2d:15:09:c4:5f:05:32:53:c3:13:1f:24:02:0a:
c4:d8:1f:08
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIUAQ0Mn0MoWEdLG0vrVUV5pLXUZcAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMjRmYTA1YmYtNWI0Ni00YTU1LWJkNTUtNDg5MWQyMWNi
MjRmMB4XDTI0MDkyMjAxMDAzMloXDTI0MTIyMTAyMDAzMlowLzEtMCsGA1UEAxMk
MDc2MjAwOGMtNDMxMC00NjY2LTg5ZDEtYWQzMTA5YzFlNDNiMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsu9N9PLVn34PMAo2w41RSzdHtWdDOlf0k67V
Zo4OZ8ngBd7tOlBhROfFPLbmJGi7iUiOQ0p+DMaQM7+itkpQMifKwA2CxC+zEPwr
5+j8yjy7C9waohRsE9xGbY+OatjtFfglqUfoFYCHKY15JU1Uj2PrhkGAv+2CsxtD
9fo2+MF3LAV5fd2tzO/RGdb/bFnSZLH8KKhbTbfm/QpybYGGcd82zkoFFVPNnYuK
ie0nxb2SvovelozGV8fW6jGRshdXnsKSdBJB8rE0NglbarOTWUWFfws+APrqG5aw
TJgkZDdrk90B6z80LQVT+5GdfBUAK1hqshh9pMCksbD3Fbi55QIDAQABo4IDVTCC
A1EwHQYDVR0OBBYEFKvCz0GNyP151NF9XuWmhPNRu+zNMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZh
MDViZi01YjQ2LTRhNTUtYmQ1NS00ODkxZDIxY2IyNGYvYTI0MzUxMjUtYWFmNi0z
ZjExLWJlOGItYWE2M2UyYjdlZTg4LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NDZlMDExMS1m
YWZiLTQzMGYtYjc3OC1kMjA0Y2ZjZDk5YTgvMjRmYTA1YmYtNWI0Ni00YTU1LWJk
NTUtNDg5MWQyMWNiMjRmLzI0ZmEwNWJmLTViNDYtNGE1NS1iZDU1LTQ4OTFkMjFj
YjI0Zi5jcmwwHwYDVR0jBBgwFoAU92+M2Ffccz2Qz8H589/AOKXodIAwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc0NmUwMTExLWZhZmItNDMw
Zi1iNzc4LWQyMDRjZmNkOTlhOC8yNGZhMDViZi01YjQ2LTRhNTUtYmQ1NS00ODkx
ZDIxY2IyNGYuY2VyMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQASBSEMFQG
A1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93
d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQEL
BQADggEBAFXeu5ZGCdM1StAsU1hQETlruFPUOa3w/ysmjhmjrZIYC3RD3/gFYXor
FWwH7OOIFStEkzcsxN8SviB4q+VbVfZ5GRWufkn5H3bzM9zBubJZpREweJ2JdOYd
MERuWyHKSa/TE9AJQi/GCuJHXY+dFBJ9g5/RT8IXFu9TnrdSZVNCqm4os6rXlcBu
aQiIIYzrySmGB6MgZreXg0afkYW1+VT2zIoq7BegXi0G2NrYDPyRlHSXoVLexhtU
rrKbhyfNjWVz8XJ5FEoObFFxVmioijIiAjCrvYLnLw38KWtk0OTqAO7CXswS+Q+C
tnjT0TItFQnEXwUyU8MTHyQCCsTYHwg=
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:53:08 2025 by rpki-client