Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/94550438-10ef-444f-b785-f7bc6eba08e7/0ad64713-402c-3924-953d-172630874932.roa
File: 0ad64713-402c-3924-953d-172630874932.roa (raw, json)
Hash identifier: a1OpD+VdXeEyNvgTTHUoBCW5GaXTGdzDeiAMt6xZUuI=
Subject key identifier: D2:CA:89:8C:40:F5:6C:85:61:8B:34:2E:F2:A4:3E:1E:CA:CA:83:1A
Certificate issuer: /CN=94550438-10ef-444f-b785-f7bc6eba08e7
Certificate serial: 010D0C9F432858489340A68A331242DEFBE05580
Authority key identifier: 34:47:3D:92:98:3E:D3:C0:22:F0:9B:CA:12:10:8C:3D:A1:EF:3C:20
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/94550438-10ef-444f-b785-f7bc6eba08e7.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/94550438-10ef-444f-b785-f7bc6eba08e7/0ad64713-402c-3924-953d-172630874932.roa
Signing time: Fri 17 Jan 2025 14:00:53 +0000
ROA not before: Fri 17 Jan 2025 14:00:53 +0000
ROA not after: Thu 17 Apr 2025 13:00:53 +0000
asID: 15267
IP address blocks: 72.18.112.0/22 maxlen: 22
72.18.112.0/23 maxlen: 23
72.18.114.0/24 maxlen: 24
72.18.116.0/23 maxlen: 23
72.18.117.0/24 maxlen: 24
72.18.120.0/21 maxlen: 21
72.18.120.0/22 maxlen: 22
72.18.124.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:93:40:a6:8a:33:12:42:de:fb:e0:55:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94550438-10ef-444f-b785-f7bc6eba08e7
Validity
Not Before: Jan 17 14:00:53 2025 GMT
Not After : Apr 17 13:00:53 2025 GMT
Subject: CN=64f8af8d-2c35-4682-8914-2639611227b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4a:a0:0e:ac:14:56:e0:f9:ce:28:f9:c4:2c:
40:57:8f:99:9c:6f:72:81:6b:4a:df:9b:93:33:ce:
cd:ba:48:2d:b8:e9:b8:62:5d:65:f8:5a:3b:aa:71:
a4:c4:76:a9:d1:f4:2c:64:7c:b8:05:8b:0c:61:b4:
51:ee:7d:74:7a:ad:19:c4:79:0c:7b:28:7e:9a:04:
d1:f4:32:7d:12:4e:d9:01:09:da:12:21:cc:0b:a6:
25:ef:57:bb:aa:b1:02:c7:a7:55:be:b8:e4:a3:8c:
32:81:2b:b7:0c:3c:07:6a:ab:25:5d:57:b1:e9:57:
57:1f:a2:11:65:27:d2:a3:b2:97:79:b9:92:d5:94:
ef:5d:ac:eb:90:48:5c:45:86:7f:45:be:61:8f:0a:
80:30:fd:3a:f1:ac:dd:79:57:07:e5:f0:7d:ba:73:
55:b1:c9:e2:62:2e:51:43:79:93:e1:bb:d9:48:be:
bc:ad:af:1b:d0:8c:2b:fd:40:dc:0a:32:51:83:8c:
1a:2e:80:b1:6c:cf:5b:c3:db:5b:e3:44:67:c1:70:
9a:04:63:60:45:ca:2a:c2:cf:89:30:a6:37:3c:9a:
d8:79:69:ac:3c:fc:9e:44:fa:cd:2b:8c:f9:b6:d5:
eb:7e:6c:8d:e9:f5:58:6b:8b:0f:89:af:c3:50:8d:
9e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CA:89:8C:40:F5:6C:85:61:8B:34:2E:F2:A4:3E:1E:CA:CA:83:1A
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/94550438-10ef-444f-b785-f7bc6eba08e7/0ad64713-402c-3924-953d-172630874932.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/94550438-10ef-444f-b785-f7bc6eba08e7/94550438-10ef-444f-b785-f7bc6eba08e7.crl
X509v3 Authority Key Identifier:
keyid:34:47:3D:92:98:3E:D3:C0:22:F0:9B:CA:12:10:8C:3D:A1:EF:3C:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/94550438-10ef-444f-b785-f7bc6eba08e7.cer
sbgp-ipAddrBlock: critical
IPv4:
72.18.112.0-72.18.117.255
72.18.120.0/21
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
28:d2:8f:ce:fb:73:ab:7d:48:9d:ff:50:3c:72:3d:70:30:f5:
f7:45:42:ee:e0:99:8e:43:cb:d3:53:db:0c:b4:70:fb:c6:7b:
71:90:a5:7c:5b:be:f5:7a:b6:72:a4:83:9f:61:ea:08:50:c4:
81:a4:41:e0:f9:df:14:f1:e3:8f:7b:ee:c2:d1:a6:20:85:29:
75:73:89:48:1b:24:ab:8f:17:68:ec:23:70:39:a5:51:af:82:
7c:dd:42:09:53:69:cc:f0:4e:f2:10:8d:49:c2:d5:6a:84:02:
96:25:45:d2:f8:71:15:d5:a5:4b:2c:f8:70:95:8e:d6:bf:ba:
d3:9a:9f:6e:79:8e:76:87:dc:cc:95:ec:06:63:6f:a6:e6:3a:
85:9e:24:1a:20:96:92:e7:9c:74:1a:4c:a1:f8:0c:18:ec:e8:
1c:ad:f1:75:93:eb:5b:0c:6b:00:9b:b5:69:ef:74:52:5c:62:
ba:b1:23:c3:4f:99:ec:45:0a:d4:1c:e9:13:04:e1:70:4d:c1:
41:12:1f:8f:d6:94:76:f4:9a:9f:b8:2a:04:15:7d:9c:16:be:
57:ca:1d:d9:2d:40:0c:5b:6f:11:82:3b:bb:e3:49:ec:2e:d9:
86:dc:60:de:5b:90:b5:f3:50:56:db:a7:a1:47:3a:34:94:be:
59:97:70:a8
-----BEGIN CERTIFICATE-----
MIIGUTCCBTmgAwIBAgIUAQ0Mn0MoWEiTQKaKMxJC3vvgVYAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkOTQ1NTA0MzgtMTBlZi00NDRmLWI3ODUtZjdiYzZlYmEw
OGU3MB4XDTI1MDExNzE0MDA1M1oXDTI1MDQxNzEzMDA1M1owLzEtMCsGA1UEAxMk
NjRmOGFmOGQtMmMzNS00NjgyLTg5MTQtMjYzOTYxMTIyN2IyMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykqgDqwUVuD5zij5xCxAV4+ZnG9ygWtK35uT
M87NukgtuOm4Yl1l+Fo7qnGkxHap0fQsZHy4BYsMYbRR7n10eq0ZxHkMeyh+mgTR
9DJ9Ek7ZAQnaEiHMC6Yl71e7qrECx6dVvrjko4wygSu3DDwHaqslXVex6VdXH6IR
ZSfSo7KXebmS1ZTvXazrkEhcRYZ/Rb5hjwqAMP068azdeVcH5fB9unNVscniYi5R
Q3mT4bvZSL68ra8b0Iwr/UDcCjJRg4waLoCxbM9bw9tb40RnwXCaBGNgRcoqws+J
MKY3PJrYeWmsPPyeRPrNK4z5ttXrfmyN6fVYa4sPia/DUI2eAQIDAQABo4IDYzCC
A18wHQYDVR0OBBYEFNLKiYxA9WyFYYs0LvKkPh7KyoMaMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy85NDU1
MDQzOC0xMGVmLTQ0NGYtYjc4NS1mN2JjNmViYTA4ZTcvMGFkNjQ3MTMtNDAyYy0z
OTI0LTk1M2QtMTcyNjMwODc0OTMyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h
NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvOTQ1NTA0MzgtMTBlZi00NDRmLWI3
ODUtZjdiYzZlYmEwOGU3Lzk0NTUwNDM4LTEwZWYtNDQ0Zi1iNzg1LWY3YmM2ZWJh
MDhlNy5jcmwwHwYDVR0jBBgwFoAUNEc9kpg+08Ai8JvKEhCMPaHvPCAwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi
Zi05NTg2LTkyZGQ0OWVmMzIyMy85NDU1MDQzOC0xMGVmLTQ0NGYtYjc4NS1mN2Jj
NmViYTA4ZTcuY2VyMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBARIEnAD
BAFIEnQDBANIEngwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUF
BwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRt
bDANBgkqhkiG9w0BAQsFAAOCAQEAKNKPzvtzq31Inf9QPHI9cDD190VC7uCZjkPL
01PbDLRw+8Z7cZClfFu+9Xq2cqSDn2HqCFDEgaRB4PnfFPHjj3vuwtGmIIUpdXOJ
SBskq48XaOwjcDmlUa+CfN1CCVNpzPBO8hCNScLVaoQCliVF0vhxFdWlSyz4cJWO
1r+605qfbnmOdofczJXsBmNvpuY6hZ4kGiCWkuecdBpMofgMGOzoHK3xdZPrWwxr
AJu1ae90UlxiurEjw0+Z7EUK1BzpEwThcE3BQRIfj9aUdvSan7gqBBV9nBa+V8od
2S1ADFtvEYI7u+NJ7C7Zhtxg3luQtfNQVtunoUc6NJS+WZdwqA==
-----END CERTIFICATE-----
Generated at Fri Apr 11 23:32:42 2025 by rpki-client