Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/aaa11a90-1a15-3d8d-8e0f-20b82f57c6f0.roa
File: aaa11a90-1a15-3d8d-8e0f-20b82f57c6f0.roa (raw, json)
Hash identifier: 4VlFh1MRwbsottOKcypMKWjljh17jdKCYTzyqRsuMzs=
Subject key identifier: BC:A0:E1:0F:0B:7E:E6:8B:B6:37:CD:D3:00:C0:D8:00:B9:49:08:7E
Certificate issuer: /CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
Certificate serial: 010D0C9F43285847F72CCD1B5D48C52FC958D46F
Authority key identifier: C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/aaa11a90-1a15-3d8d-8e0f-20b82f57c6f0.roa
Signing time: Fri 22 Nov 2024 16:14:53 +0000
ROA not before: Fri 22 Nov 2024 16:14:53 +0000
ROA not after: Thu 20 Feb 2025 16:14:53 +0000
asID: 834
IP address blocks: 166.0.240.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:47:f7:2c:cd:1b:5d:48:c5:2f:c9:58:d4:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dea2a5-837d-46d8-8f8e-9447ece20c09
Validity
Not Before: Nov 22 16:14:53 2024 GMT
Not After : Feb 20 16:14:53 2025 GMT
Subject: CN=ce5e3338-5863-4081-ae3c-c8a3fdf61ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:02:1e:70:83:47:3e:5b:37:56:1c:be:c3:a4:
05:52:1d:53:75:5b:77:6c:78:2c:ca:7b:50:79:fc:
18:7c:f8:1c:10:1b:06:33:65:46:17:0b:28:10:67:
40:3c:d7:9e:2f:75:46:ca:a9:6c:1a:ed:4f:74:de:
10:9d:fe:94:4b:01:04:aa:d9:5f:dd:57:fa:b3:92:
94:4b:f3:47:dd:70:90:64:fa:c2:18:13:77:f9:67:
ef:a4:7d:c5:82:eb:57:c4:50:ff:38:d6:98:f4:7d:
a2:d0:21:42:a7:b3:14:74:37:fd:f0:f7:6b:56:dd:
ee:6f:dd:6c:92:98:09:3c:27:6a:bb:ce:23:36:40:
70:5a:94:95:ab:f9:04:0e:5a:9a:d3:a0:39:63:4c:
9d:8d:70:71:65:ac:b7:96:6e:62:b3:ee:59:e9:6c:
0d:3e:1e:c8:d5:12:42:1c:36:06:02:eb:c3:a0:07:
1c:29:d8:1f:3c:50:64:c4:ce:0f:39:92:d4:5d:89:
6d:9a:81:f2:6e:c6:d8:79:05:6b:8a:ce:a1:e8:be:
e0:c2:a2:86:02:c6:7b:05:1c:c2:94:30:83:87:46:
1e:90:62:b8:59:0f:31:13:c8:41:41:3b:8e:c3:7b:
f9:f4:58:39:c2:03:df:66:c8:47:a6:ee:a8:e4:b2:
12:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A0:E1:0F:0B:7E:E6:8B:B6:37:CD:D3:00:C0:D8:00:B9:49:08:7E
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/aaa11a90-1a15-3d8d-8e0f-20b82f57c6f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09/66dea2a5-837d-46d8-8f8e-9447ece20c09.crl
X509v3 Authority Key Identifier:
keyid:C3:86:AD:8B:F4:19:4B:35:94:24:9B:90:BA:9D:80:11:C2:08:71:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/66dea2a5-837d-46d8-8f8e-9447ece20c09.cer
sbgp-ipAddrBlock: critical
IPv4:
166.0.240.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
53:e2:c0:9d:1e:fb:63:37:96:af:16:5e:16:48:7b:2f:54:47:
0b:89:3d:f4:e7:c3:e5:03:90:1d:5f:4c:0c:4f:32:da:60:a4:
be:f0:53:05:b2:e1:10:63:a8:ed:42:6c:e1:99:fc:0c:90:80:
f1:3f:e4:06:92:b9:18:ed:8f:bc:de:42:83:74:e5:b3:ae:8b:
dc:0a:59:b6:c7:b4:fe:ba:c4:97:de:59:d2:4a:0b:31:9a:be:
84:72:c0:7e:d7:66:6f:9a:95:5f:17:bb:e3:61:6c:89:32:71:
5d:df:b7:9d:48:b2:69:45:fc:3a:f0:d8:d4:25:73:44:bb:1e:
c1:ed:c7:a5:0e:4d:2a:04:c6:c2:14:cd:2f:b5:a4:01:bf:2e:
71:b2:3b:90:2e:e2:de:88:57:e0:8d:9a:60:e4:fd:d3:3a:ec:
ac:e0:c2:48:c6:cc:ab:f6:e5:fe:21:84:2d:b8:ea:53:f3:49:
db:74:2f:2e:6e:49:16:ee:50:e7:e1:40:10:e3:73:c8:30:47:
88:f4:25:43:0f:3c:73:37:5c:c7:b8:10:8b:8e:79:1b:8f:5a:
55:0b:a2:a3:68:fd:9a:84:43:aa:ba:f5:60:52:d3:1b:2b:dd:
52:c6:75:6a:30:85:d8:30:b5:7f:83:58:fb:99:0b:30:db:08:
81:50:e7:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 15:58:54 2025 by rpki-client