Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/4b089e7a-fdd9-3925-9244-fd2f16f4e2d1.roa
File: 4b089e7a-fdd9-3925-9244-fd2f16f4e2d1.roa (raw, json)
Hash identifier: KIgVW2IrMdBTTlW7X0dXqxV8ERpf+Hm+kvqrf+5Q3DY=
Subject key identifier: 6A:C5:4C:6A:AD:CF:03:64:D2:AF:6C:D3:27:87:8F:24:B4:69:11:93
Certificate issuer: /CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
Certificate serial: 010D0C9F432858423ADA9108418E689C1FF4CB00
Authority key identifier: C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/4b089e7a-fdd9-3925-9244-fd2f16f4e2d1.roa
Signing time: Thu 15 Jun 2023 17:22:32 +0000
ROA not before: Thu 15 Jun 2023 17:22:32 +0000
ROA not after: Wed 13 Sep 2023 17:22:32 +0000
asID: 11798
IP address blocks: 166.1.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:42:3a:da:91:08:41:8e:68:9c:1f:f4:cb:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
Validity
Not Before: Jun 15 17:22:32 2023 GMT
Not After : Sep 13 17:22:32 2023 GMT
Subject: CN=a57ff8d8-ba11-41cb-94ab-91d480e6b31b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:5b:25:88:bb:94:b4:ce:d0:98:23:35:1c:
86:35:47:cd:ec:64:34:22:22:f0:10:85:5f:83:e9:
6d:dd:fe:d8:f1:d4:2b:ad:dc:8a:7c:4d:71:e1:eb:
18:02:a2:a4:88:1d:0b:6a:59:2f:59:66:ac:62:83:
c9:08:bd:f3:42:1e:3f:8b:60:57:1c:9e:a4:81:e8:
3f:97:ca:d4:3d:3b:58:e6:f5:a0:ba:84:eb:72:63:
98:e1:73:1d:ac:c4:9b:c1:e0:cc:c3:ac:ad:1b:87:
e3:c6:22:ac:70:5e:cc:fe:3d:2f:b7:e3:d0:9c:18:
47:df:40:e7:11:44:5e:fe:2b:bc:7c:e0:2d:d1:48:
ba:ed:62:85:f1:17:3a:b9:3c:ef:ac:2b:a2:6a:72:
51:b4:77:32:52:1a:20:21:3f:5d:83:f6:f2:b4:89:
74:b5:44:67:e1:c4:f8:e5:2f:12:55:01:a9:a2:69:
4f:c8:fe:f7:25:89:54:8f:1b:8b:ad:71:07:34:74:
a8:29:be:4a:0d:4d:60:46:2e:4a:0f:54:8a:88:7e:
dd:e9:2e:e4:82:56:0d:93:04:1f:b0:b0:38:8e:fc:
49:5e:88:dc:0c:4b:58:9d:ca:65:86:58:55:b3:47:
32:d1:06:8f:c1:2e:48:55:1d:03:93:45:32:e4:a0:
ed:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C5:4C:6A:AD:CF:03:64:D2:AF:6C:D3:27:87:8F:24:B4:69:11:93
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/4b089e7a-fdd9-3925-9244-fd2f16f4e2d1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl
X509v3 Authority Key Identifier:
keyid:C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer
sbgp-ipAddrBlock: critical
IPv4:
166.1.237.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
0a:f0:c3:9d:26:b7:6c:85:c7:e9:7d:2a:d3:97:e8:1c:54:73:
31:13:5d:f4:40:c2:a6:09:5a:a4:c5:aa:8b:10:37:20:c1:74:
2c:0a:2b:13:4f:62:ee:b9:21:5b:16:7f:fe:88:57:ec:06:7c:
49:d7:fe:ee:d4:c8:b9:0d:ae:fd:d5:74:13:96:99:84:ea:2b:
b1:a1:e3:49:87:4d:e3:64:70:03:bc:88:5e:05:a6:af:f5:88:
82:1e:ed:cb:ae:3c:18:e0:0e:fc:01:12:05:89:fa:bc:f0:aa:
ef:28:9a:32:24:0e:63:83:81:de:0f:27:a9:46:80:8e:21:ab:
af:e4:1f:17:12:79:8e:c3:ba:83:02:ac:bf:d0:cd:77:71:25:
fb:d1:3a:b9:66:47:f9:a3:85:49:bc:1a:1d:3d:9c:0a:bb:28:
50:f8:8d:03:d5:f7:ab:9e:47:eb:52:6e:50:9f:d5:6e:7e:47:
d9:16:1d:c0:87:cf:9e:8c:28:d3:2c:29:6c:9a:27:ea:c7:bc:
24:6b:28:f3:4f:62:83:cc:3d:28:9c:f5:fb:07:69:bf:cc:fe:
6b:54:1c:2c:6a:77:6a:89:03:97:82:5e:86:1c:75:0b:02:90:
d5:c3:77:28:51:58:fc:72:6b:76:b3:3e:67:e4:5c:db:c2:36:
a0:e9:52:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 22:06:09 2025 by rpki-client