Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/78a35d59-5267-4ec6-965e-2346bd05cddd/485e91a1-34d8-32bf-b354-4b821de4b572.roa
File: 485e91a1-34d8-32bf-b354-4b821de4b572.roa (raw, json)
Hash identifier: LK/Yi2pFBDUs1GagtVyn5jszDtsl7yLDTUdQCPcbL2s=
Subject key identifier: DF:22:9F:C4:13:68:B9:53:EE:FB:00:3F:CF:9F:95:F9:60:82:FF:87
Certificate issuer: /CN=78a35d59-5267-4ec6-965e-2346bd05cddd
Certificate serial: 010D0C9F43285844D61F09541B7FD994AAF2AC80
Authority key identifier: 91:20:3B:BB:DC:6B:AC:2A:E6:DF:16:CC:27:B4:4C:31:44:09:9D:BA
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/78a35d59-5267-4ec6-965e-2346bd05cddd.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/78a35d59-5267-4ec6-965e-2346bd05cddd/485e91a1-34d8-32bf-b354-4b821de4b572.roa
Signing time: Fri 09 Feb 2024 17:44:39 +0000
ROA not before: Fri 09 Feb 2024 17:44:39 +0000
ROA not after: Thu 09 May 2024 16:44:39 +0000
asID: 10750
IP address blocks: 67.221.202.0/23 maxlen: 23
64.111.58.0/23 maxlen: 23
64.111.35.0/24 maxlen: 24
64.111.42.0/23 maxlen: 23
64.111.44.0/24 maxlen: 24
64.111.61.0/24 maxlen: 24
65.255.134.0/24 maxlen: 24
67.221.200.0/24 maxlen: 24
67.221.204.0/23 maxlen: 23
67.221.206.0/24 maxlen: 24
69.27.192.0/24 maxlen: 24
69.27.197.0/24 maxlen: 24
130.51.36.0/22 maxlen: 22
132.147.192.0/29 maxlen: 29
199.127.48.0/21 maxlen: 21
209.152.155.0/24 maxlen: 24
216.145.145.0/24 maxlen: 24
216.145.146.0/24 maxlen: 24
216.145.148.0/23 maxlen: 23
216.145.150.0/24 maxlen: 24
216.145.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:44:d6:1f:09:54:1b:7f:d9:94:aa:f2:ac:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78a35d59-5267-4ec6-965e-2346bd05cddd
Validity
Not Before: Feb 9 17:44:39 2024 GMT
Not After : May 9 16:44:39 2024 GMT
Subject: CN=25567f66-4c5d-4639-a79b-cb8f9189b0b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4f:7a:13:b4:f8:10:ca:6d:79:1b:5a:b7:a9:
65:7a:86:6c:e1:86:61:54:16:59:ae:2a:32:5c:98:
a5:27:44:d4:e0:a9:55:21:0e:5c:3d:1e:05:63:cc:
19:9e:bc:59:74:9a:6e:cd:d4:79:eb:6f:c9:44:bc:
21:b1:11:24:f5:0b:52:c8:a3:d3:89:1a:96:78:54:
1b:5d:8a:b9:1b:e8:f5:22:84:b3:77:97:9e:75:22:
75:b7:07:23:75:20:78:32:d5:cf:e4:8a:46:da:ba:
c4:23:5b:71:60:16:eb:a4:e9:ec:06:bd:82:64:36:
40:2c:13:c3:3f:3f:f2:b5:36:b0:c2:0d:99:7e:e7:
24:6e:0b:0b:39:92:97:00:4c:08:2e:b0:0d:bd:eb:
d4:63:26:04:e2:eb:7a:49:b6:c7:d3:94:80:27:6f:
21:5e:26:b3:ae:cb:49:82:92:4f:ae:fd:a7:7d:0b:
72:05:df:33:54:5d:8d:fe:57:3d:06:b5:0c:55:3c:
53:2a:63:dc:c9:42:d3:88:0e:85:c2:cc:b8:bb:6b:
3a:a6:67:2e:bb:27:42:ea:b6:e4:a3:4c:a2:1f:72:
5e:3b:28:5f:4d:d8:7e:e7:a0:25:51:a2:a9:aa:20:
21:7e:d7:a4:48:2e:33:cd:a1:bf:32:7c:2d:e6:fe:
ad:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:22:9F:C4:13:68:B9:53:EE:FB:00:3F:CF:9F:95:F9:60:82:FF:87
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/78a35d59-5267-4ec6-965e-2346bd05cddd/485e91a1-34d8-32bf-b354-4b821de4b572.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/78a35d59-5267-4ec6-965e-2346bd05cddd/78a35d59-5267-4ec6-965e-2346bd05cddd.crl
X509v3 Authority Key Identifier:
keyid:91:20:3B:BB:DC:6B:AC:2A:E6:DF:16:CC:27:B4:4C:31:44:09:9D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/78a35d59-5267-4ec6-965e-2346bd05cddd.cer
sbgp-ipAddrBlock: critical
IPv4:
64.111.35.0/24
64.111.42.0-64.111.44.255
64.111.58.0/23
64.111.61.0/24
65.255.134.0/24
67.221.200.0/24
67.221.202.0-67.221.206.255
69.27.192.0/24
69.27.197.0/24
130.51.36.0/22
132.147.192.0/29
199.127.48.0/21
209.152.155.0/24
216.145.145.0-216.145.146.255
216.145.148.0-216.145.150.255
216.145.155.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
b9:8d:a4:15:b9:08:5a:cd:10:52:05:2c:b0:09:82:06:11:7b:
36:4c:36:83:b0:87:6d:41:9a:fc:ee:85:20:34:b8:e1:9d:e3:
76:61:44:1a:11:76:88:39:df:fa:23:b1:78:6c:8d:1b:b3:c6:
9d:71:22:d7:ba:a4:ff:7d:7d:f5:ef:e0:dc:d8:8e:24:16:46:
2e:70:73:26:af:88:95:b8:fa:b3:bc:93:01:df:ed:bb:28:c4:
6e:d6:b7:5a:80:a3:57:78:83:70:d1:45:eb:a2:dd:5e:e3:7d:
4c:0a:4a:95:a6:4c:b3:2d:18:0c:3e:3a:9f:6d:1c:ea:a4:f9:
b1:b8:b6:df:97:73:9c:74:a0:73:a3:55:6a:48:2c:db:ed:36:
6e:27:ab:27:7d:65:46:05:90:94:5c:ec:57:aa:89:33:21:37:
15:1c:b3:1a:c7:0f:10:e3:0c:44:19:4f:80:6f:58:84:2f:5c:
05:84:43:d5:c2:ad:50:c7:24:97:58:f1:24:9a:65:4b:d8:26:
95:a2:ec:ee:5e:d1:c2:78:1c:6f:75:8b:a3:7d:8b:5a:36:fd:
24:a3:fe:87:d4:79:5d:be:1e:97:29:99:79:df:8c:77:a3:98:
84:bb:44:f3:33:d4:45:2c:58:28:64:45:f5:c8:63:ec:02:6b:
63:0d:ae:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:54 2025 by rpki-client