Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS136258.roa
File: AS136258.roa (raw, json)
Hash identifier: TaAJtg1diHn/EWKSChQA6UckN7M0rAlhvgJltapqc+g=
Subject key identifier: 39:93:46:EE:EA:C7:91:98:6C:40:0B:CA:EA:40:D2:AA:C5:C5:D1:18
Certificate issuer: /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
Certificate serial: 489486AE0CD35895AA14C1D9424D3B380AFA503E
Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS136258.roa
Signing time: Tue 04 Jun 2024 13:26:36 +0000
ROA not before: Tue 04 Jun 2024 13:21:36 +0000
ROA not after: Tue 03 Jun 2025 13:26:36 +0000
asID: 136258
IP address blocks: 23.95.72.0/22 maxlen: 24
23.95.76.0/23 maxlen: 24
23.95.79.0/24 maxlen: 24
107.175.82.0/24 maxlen: 24
172.245.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:94:86:ae:0c:d3:58:95:aa:14:c1:d9:42:4d:3b:38:0a:fa:50:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
Validity
Not Before: Jun 4 13:21:36 2024 GMT
Not After : Jun 3 13:26:36 2025 GMT
Subject: CN=399346EEEAC791986C400BCAEA40D2AAC5C5D118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:00:fa:5f:51:38:27:cc:be:91:26:85:a0:8f:
71:fe:8f:59:40:f6:3e:f1:e2:83:ca:5a:55:f9:a9:
90:d2:96:58:c1:df:a9:e0:ad:a4:51:a2:8e:e7:e6:
f6:60:0c:5d:bf:11:c8:1a:48:04:da:16:c3:d5:8e:
b5:8a:f3:2c:51:6a:4a:15:d6:81:ce:bc:54:8b:b0:
0b:9c:b2:f2:be:c8:4e:a4:60:3e:b6:d4:df:d6:79:
d9:37:10:7c:5a:6a:37:67:05:0a:ea:ee:fe:ee:df:
8d:b7:1e:4f:45:b4:82:a1:d8:57:0f:db:45:21:19:
5a:5b:eb:3b:74:61:f7:75:2d:6f:4d:f7:84:41:60:
30:56:30:19:4d:83:cb:96:ac:1e:80:0a:0b:9b:1e:
de:2d:5a:fa:f7:2d:32:31:2d:d4:f0:1b:27:fb:ce:
cc:45:f0:6a:e7:98:d3:58:ae:2d:f7:5e:fb:7d:82:
e6:c0:83:42:b5:c5:63:1d:a7:96:bc:12:ab:2c:3d:
b2:3f:5c:be:56:a5:65:d2:b8:6c:7d:49:b6:70:63:
5a:f6:6b:d6:51:0b:50:b4:72:a1:1e:f1:d0:b4:28:
c2:f3:bc:97:1c:02:55:7d:34:99:8d:11:ee:50:06:
31:4d:53:e8:29:7e:0a:3b:4f:da:ae:49:56:b8:a4:
7d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:93:46:EE:EA:C7:91:98:6C:40:0B:CA:EA:40:D2:AA:C5:C5:D1:18
X509v3 Authority Key Identifier:
keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/AS136258.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.95.72.0-23.95.77.255
23.95.79.0/24
107.175.82.0/24
172.245.232.0/21
Signature Algorithm: sha256WithRSAEncryption
7f:1b:b2:42:98:38:88:b3:d5:f8:6c:54:c1:ee:8f:c1:17:01:
bf:03:72:c5:dd:19:f6:1a:89:2e:b8:53:c7:8f:62:65:c3:dc:
46:f3:fa:19:81:85:4b:9e:26:75:87:6d:c1:fd:c9:a5:23:ad:
f6:04:ba:36:6e:37:15:b3:25:ab:2f:49:cc:3c:e6:ce:93:6e:
05:db:c9:c8:be:aa:de:02:a9:3c:32:1c:2b:33:39:3f:d1:31:
53:b2:e3:1e:93:62:b2:9b:80:0d:ad:63:ee:cc:31:2e:ae:4d:
a1:a4:9a:c7:6e:d8:d1:b9:a7:02:fd:cf:e6:45:bf:82:fb:82:
f2:e9:b9:92:82:3d:19:bf:46:09:0e:77:64:9f:18:58:47:07:
55:88:7b:63:7b:77:74:1c:cc:33:c6:40:b2:28:5d:ec:07:ae:
7f:f3:26:58:db:b5:11:ce:f5:ad:f4:50:36:4d:74:71:a6:f6:
ab:08:ea:32:e3:33:1d:ce:c1:0f:06:df:8e:91:81:61:94:51:
c5:1d:33:4e:9c:d5:ce:c1:05:43:20:f3:3c:ae:a9:22:7e:2c:
56:81:66:95:b9:64:ff:0d:4b:ef:45:b6:4a:0b:11:25:c8:0a:
d5:f8:1e:a3:04:20:ab:f9:00:d2:ab:75:e7:76:ca:b3:31:ce:
dd:b0:99:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:31:24 2025 by rpki-client