Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0090b0ee-3d7e-47d6-b73d-36494798d9e7/090d9968-e7a5-357c-baed-e1835a496f97.roa
File: 090d9968-e7a5-357c-baed-e1835a496f97.roa (raw, json)
Hash identifier: xHN0onGZSubzHuo9fs+I+ZacQPd6w4gaAPvnCNVvEGQ=
Subject key identifier: 0A:24:FA:8B:11:1B:0C:EB:4C:20:AF:00:43:A4:8F:02:F3:BE:90:9E
Certificate issuer: /CN=0090b0ee-3d7e-47d6-b73d-36494798d9e7
Certificate serial: 010D0C9F43285848F4F6A5281D330139F5F2EF80
Authority key identifier: F8:C1:BA:7B:E0:5D:2E:86:50:75:BA:87:D5:90:30:5C:B7:36:0A:D1
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0090b0ee-3d7e-47d6-b73d-36494798d9e7.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0090b0ee-3d7e-47d6-b73d-36494798d9e7/090d9968-e7a5-357c-baed-e1835a496f97.roa
Signing time: Fri 21 Feb 2025 14:00:50 +0000
ROA not before: Fri 21 Feb 2025 14:00:50 +0000
ROA not after: Thu 22 May 2025 13:00:50 +0000
asID: 394089
IP address blocks: 130.41.144.0/20 maxlen: 24
130.41.224.0/20 maxlen: 24
130.41.253.0/24 maxlen: 24
165.1.176.0/20 maxlen: 24
165.1.192.0/18 maxlen: 24
165.85.0.0/18 maxlen: 24
165.85.128.0/20 maxlen: 24
165.85.146.0/23 maxlen: 24
165.85.160.0/19 maxlen: 24
165.85.192.0/20 maxlen: 24
165.85.208.0/20 maxlen: 24
165.85.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:f4:f6:a5:28:1d:33:01:39:f5:f2:ef:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0090b0ee-3d7e-47d6-b73d-36494798d9e7
Validity
Not Before: Feb 21 14:00:50 2025 GMT
Not After : May 22 13:00:50 2025 GMT
Subject: CN=9b7a9caa-b8fc-4ed1-93c6-7237f2e8a36d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:59:af:1c:33:87:41:82:3d:e3:63:95:64:18:
70:b9:bc:81:94:f5:c0:eb:60:9a:5d:b4:72:a9:92:
62:1a:91:c5:bd:c9:9c:67:ee:f5:2c:15:ac:70:96:
ff:3d:d6:e7:aa:fe:43:2d:8d:95:bb:b8:98:10:79:
ec:7a:5e:7b:92:11:9a:19:20:69:5b:3b:ca:0a:fe:
24:41:69:7a:2a:88:42:a5:c5:4f:ad:8f:43:ce:7a:
f5:da:d5:c9:3b:1b:9c:65:86:c4:0e:21:30:d4:93:
38:53:f1:91:01:af:c7:4a:9c:b2:0d:57:76:b0:2a:
21:dd:17:5d:c2:c4:9a:83:b3:00:78:99:c4:c9:d6:
a6:95:e8:2c:d7:d6:34:1c:eb:16:6d:99:1a:b3:c7:
1c:b2:33:c6:8f:ed:87:be:5d:ac:ce:4b:9c:72:28:
0d:48:62:cd:2b:96:db:3e:4b:7a:75:17:ad:81:b0:
91:f0:9b:c0:17:77:e5:d5:6e:5d:10:d5:6b:7e:62:
6f:c3:fa:e6:72:ff:44:b3:7f:c5:15:42:79:c8:bd:
96:34:61:e4:4c:0e:ba:f9:2a:bd:8c:a4:bd:d1:d2:
ac:1c:38:76:4c:35:bf:96:78:9f:8f:8b:e5:a3:a1:
64:eb:07:44:57:a9:46:c2:51:07:8a:ca:86:31:2a:
e9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:24:FA:8B:11:1B:0C:EB:4C:20:AF:00:43:A4:8F:02:F3:BE:90:9E
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0090b0ee-3d7e-47d6-b73d-36494798d9e7/090d9968-e7a5-357c-baed-e1835a496f97.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0090b0ee-3d7e-47d6-b73d-36494798d9e7/0090b0ee-3d7e-47d6-b73d-36494798d9e7.crl
X509v3 Authority Key Identifier:
keyid:F8:C1:BA:7B:E0:5D:2E:86:50:75:BA:87:D5:90:30:5C:B7:36:0A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0090b0ee-3d7e-47d6-b73d-36494798d9e7.cer
sbgp-ipAddrBlock: critical
IPv4:
130.41.144.0/20
130.41.224.0/20
130.41.253.0/24
165.1.176.0-165.1.255.255
165.85.0.0/18
165.85.128.0/20
165.85.146.0/23
165.85.160.0-165.85.239.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
65:48:41:8f:b5:fd:75:7f:a7:38:ca:f6:f7:16:e2:63:cf:f4:
d5:37:7d:d3:e9:53:e5:92:75:3b:68:18:e4:e2:dd:f8:8b:86:
06:35:37:24:88:2f:1c:8f:a2:b4:8b:c1:8e:41:b9:39:9c:08:
ca:bf:c5:f5:ea:87:23:85:4d:41:a8:2f:a4:1e:82:58:20:f0:
37:9a:ed:20:14:0e:31:20:4c:38:fe:27:ce:bc:3f:b0:c0:04:
60:29:71:34:80:4e:38:b0:bf:2b:23:0d:a7:d4:ca:c0:d9:8a:
7b:db:0a:cd:9a:37:1f:3f:78:13:91:5c:d5:d4:63:bc:43:79:
a1:26:50:10:54:5b:00:41:d6:b1:a6:36:06:8f:c0:bd:c1:20:
c9:c7:f6:6c:dc:36:3f:73:85:a3:7b:73:8b:88:a0:23:7c:80:
d7:b8:a2:ea:e5:50:9b:89:20:6a:7f:bf:0f:f5:28:8b:4e:80:
8f:81:87:7b:1c:65:8d:b7:fd:fc:75:78:52:fe:ce:9e:1a:a4:
ce:7a:99:e8:af:5b:2e:ef:f2:15:b6:b7:fe:db:9e:e5:59:52:
d2:bc:2c:14:2a:3f:5b:23:69:79:ad:25:64:76:fc:4b:70:76:
da:c0:ec:fa:c4:91:0c:c0:25:b5:21:33:68:67:63:2a:6b:b6:
80:6f:2a:a4
-----BEGIN CERTIFICATE-----
MIIGfDCCBWSgAwIBAgIUAQ0Mn0MoWEj09qUoHTMBOfXy74AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMDA5MGIwZWUtM2Q3ZS00N2Q2LWI3M2QtMzY0OTQ3OThk
OWU3MB4XDTI1MDIyMTE0MDA1MFoXDTI1MDUyMjEzMDA1MFowLzEtMCsGA1UEAxMk
OWI3YTljYWEtYjhmYy00ZWQxLTkzYzYtNzIzN2YyZThhMzZkMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFmvHDOHQYI942OVZBhwubyBlPXA62CaXbRy
qZJiGpHFvcmcZ+71LBWscJb/Pdbnqv5DLY2Vu7iYEHnsel57khGaGSBpWzvKCv4k
QWl6KohCpcVPrY9Dznr12tXJOxucZYbEDiEw1JM4U/GRAa/HSpyyDVd2sCoh3Rdd
wsSag7MAeJnEydamlegs19Y0HOsWbZkas8ccsjPGj+2Hvl2szkuccigNSGLNK5bb
Pkt6dRetgbCR8JvAF3fl1W5dENVrfmJvw/rmcv9Es3/FFUJ5yL2WNGHkTA66+Sq9
jKS90dKsHDh2TDW/lnifj4vlo6Fk6wdEV6lGwlEHisqGMSrppQIDAQABo4IDjjCC
A4owHQYDVR0OBBYEFAok+osRGwzrTCCvAEOkjwLzvpCeMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8wMDkw
YjBlZS0zZDdlLTQ3ZDYtYjczZC0zNjQ5NDc5OGQ5ZTcvMDkwZDk5NjgtZTdhNS0z
NTdjLWJhZWQtZTE4MzVhNDk2Zjk3LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8yYTI0Njk0Ny0y
ZDYyLTRhNmMtYmEwNS04NzE4N2YwMDk5YjIvMDA5MGIwZWUtM2Q3ZS00N2Q2LWI3
M2QtMzY0OTQ3OThkOWU3LzAwOTBiMGVlLTNkN2UtNDdkNi1iNzNkLTM2NDk0Nzk4
ZDllNy5jcmwwHwYDVR0jBBgwFoAU+MG6e+BdLoZQdbqH1ZAwXLc2CtEwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzJhMjQ2OTQ3LTJkNjItNGE2
Yy1iYTA1LTg3MTg3ZjAwOTliMi8wMDkwYjBlZS0zZDdlLTQ3ZDYtYjczZC0zNjQ5
NDc5OGQ5ZTcuY2VyMFgGCCsGAQUFBwEHAQH/BEkwRzBFBAIAATA/AwQEgimQAwQE
gingAwQAgin9MAsDBASlAbADAwGlAAMEBqVVAAMEBKVVgAMEAaVVkjAMAwQFpVWg
AwQEpVXgMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYs
aHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJ
KoZIhvcNAQELBQADggEBAGVIQY+1/XV/pzjK9vcW4mPP9NU3fdPpU+WSdTtoGOTi
3fiLhgY1NySILxyPorSLwY5BuTmcCMq/xfXqhyOFTUGoL6Qeglgg8Dea7SAUDjEg
TDj+J868P7DABGApcTSATjiwvysjDafUysDZinvbCs2aNx8/eBORXNXUY7xDeaEm
UBBUWwBB1rGmNgaPwL3BIMnH9mzcNj9zhaN7c4uIoCN8gNe4ourlUJuJIGp/vw/1
KItOgI+Bh3scZY23/fx1eFL+zp4apM56meivWy7v8hW2t/7bnuVZUtK8LBQqP1sj
aXmtJWR2/EtwdtrA7PrEkQzAJbUhM2hnYyprtoBvKqQ=
-----END CERTIFICATE-----
Generated at Tue Apr 8 14:50:07 2025 by rpki-client