Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3137312e302f32342d3234203d3e20383334.roa
File: 3135372e3235342e3137312e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: BECQOSWqWx72HeVFvB8gx1Rs16LuSrbTrr/WpWiTxwE=
Subject key identifier: 08:6E:29:1C:81:C3:9A:E0:E4:09:A5:04:B5:C6:C6:C7:49:67:A2:1A
Certificate issuer: /CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Certificate serial: 22D834AD819546C8E3D896460C01A7C9A036D529
Authority key identifier: D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3137312e302f32342d3234203d3e20383334.roa
Signing time: Sun 09 Apr 2023 00:00:11 +0000
ROA not before: Sat 08 Apr 2023 23:55:11 +0000
ROA not after: Sun 07 Apr 2024 00:00:11 +0000
asID: 834
IP address blocks: 157.254.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:d8:34:ad:81:95:46:c8:e3:d8:96:46:0c:01:a7:c9:a0:36:d5:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2
Validity
Not Before: Apr 8 23:55:11 2023 GMT
Not After : Apr 7 00:00:11 2024 GMT
Subject: CN=086E291C81C39AE0E409A504B5C6C6C74967A21A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a2:1b:ad:6e:bf:97:08:61:69:5d:44:ca:28:
49:a9:2e:3d:bb:30:b4:85:ee:61:5a:3e:b3:47:9b:
cb:4c:7c:3c:fa:f7:37:21:58:9e:ba:c4:e3:73:6c:
da:1f:61:e9:bc:08:c8:df:10:00:8c:00:e3:b0:7c:
4c:6b:c3:d1:04:b5:63:03:37:e7:2e:e8:a4:6f:65:
7e:ff:84:28:0a:b6:23:fa:ef:f1:6a:3c:90:c9:90:
69:b2:fe:9f:b2:ae:2a:e9:35:13:f2:fb:f5:81:d1:
4e:20:0c:1d:71:96:78:e7:70:a7:33:6e:19:89:08:
48:91:77:29:22:f6:1d:89:d0:57:91:4e:1f:5f:15:
49:d4:c3:e1:04:e2:d0:9f:d0:20:5a:82:51:87:74:
0d:0c:df:ca:f7:a4:47:5d:5c:19:a8:69:c0:44:22:
d1:e3:a7:cf:f7:d2:7c:64:12:82:1a:41:4d:b2:ad:
18:9c:9b:04:51:85:66:3b:ef:11:bb:db:a0:b0:08:
97:cb:f6:37:3c:82:12:54:65:86:32:06:cc:6f:eb:
7f:41:71:8e:71:cc:e2:a1:8c:d9:43:97:ac:d1:fb:
20:69:51:cf:f2:a3:ed:bf:cc:3d:b8:d5:2e:c6:a8:
82:dc:ce:0b:9b:31:e9:13:bc:ee:d1:f2:72:25:0d:
65:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:6E:29:1C:81:C3:9A:E0:E4:09:A5:04:B5:C6:C6:C7:49:67:A2:1A
X509v3 Authority Key Identifier:
keyid:D3:F9:CD:28:8A:96:34:B5:39:63:8F:E7:DF:A6:C8:54:27:C3:03:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/D3F9CD288A9634B539638FE7DFA6C85427C303F9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/43b7fbf4-4def-4904-87fd-e598bf9cf2e3/ede78162c790f7ae09c1f534cc7a2cf48471a263d94ccf7fb2.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e01856490f4453b7b/0/3135372e3235342e3137312e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.254.171.0/24
Signature Algorithm: sha256WithRSAEncryption
74:16:5d:3a:c0:bf:ab:27:5e:8e:f7:6f:c1:fb:70:ab:7e:4d:
6f:d2:26:8e:5b:be:70:22:2a:58:31:5f:16:e1:0b:e0:3a:54:
06:ee:14:fa:7f:df:56:9e:09:f5:f9:a8:5b:fa:b2:aa:96:6b:
69:c4:21:54:82:ed:58:c1:7a:d3:31:bd:af:b0:62:e3:7a:86:
2a:a4:cb:1a:9e:0a:9c:71:2d:30:dc:ac:a0:bb:f9:7c:8e:47:
e7:63:88:95:3b:7e:eb:11:67:22:17:5c:f7:23:62:74:9d:1d:
84:9d:a5:5e:a8:14:ea:b5:af:39:f2:b5:82:de:db:b3:c5:36:
54:27:65:bb:6c:6d:3a:47:91:f8:1b:9e:7b:79:ad:ec:b4:35:
a9:16:21:5f:66:33:10:0e:df:25:d4:d3:e7:ab:6e:4a:57:16:
dc:c4:e0:cc:2a:b1:ca:38:88:60:94:8a:c3:c4:aa:02:47:d6:
37:ac:17:9f:f0:e4:50:91:80:81:5c:af:98:94:60:41:13:0c:
05:4f:a5:64:28:4b:41:54:df:de:a2:8e:65:c7:43:fc:01:b6:
b1:66:dd:ff:0f:81:ad:a6:76:6e:91:bd:73:c3:c8:fa:82:6a:
c0:f3:da:84:e0:13:3a:3d:bc:0e:d6:38:85:f0:e9:e2:13:05:
85:58:ef:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:08:26 2025 by rpki-client