Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa
File: de58c588-4488-3729-a7e1-98130f91c66c.roa (raw, json)
Hash identifier: i1gQLW5hlIInHxkHZcl+CHcvKIhkY0Yl1q78FE8GQNk=
Subject key identifier: 0D:A8:32:0F:3B:98:71:38:88:1D:A0:7E:2B:18:5E:88:FA:28:BF:CD
Certificate issuer: /CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849
Certificate serial: 010D0C9F432858494B6413233F4056B61AB34640
Authority key identifier: 76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa
Signing time: Mon 24 Mar 2025 13:00:53 +0000
ROA not before: Mon 24 Mar 2025 13:00:53 +0000
ROA not after: Sun 22 Jun 2025 13:00:53 +0000
asID: 32867
IP address blocks: 64.5.64.0/20 maxlen: 20
64.186.16.0/21 maxlen: 21
66.172.192.0/18 maxlen: 18
74.221.32.0/20 maxlen: 20
199.116.180.0/22 maxlen: 22
199.247.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:4b:64:13:23:3f:40:56:b6:1a:b3:46:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca2c0e73-f7f7-4070-98aa-c78ef1752849
Validity
Not Before: Mar 24 13:00:53 2025 GMT
Not After : Jun 22 13:00:53 2025 GMT
Subject: CN=bd5f5ca5-ff08-486c-9152-392ae27fdaa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:92:8b:db:77:09:96:3c:a7:b5:d3:a6:03:01:
3d:c8:4a:b3:f4:41:fe:d1:2c:80:d8:81:0b:ca:9e:
c5:d2:35:2e:2c:cc:e7:4c:c3:3a:be:23:51:4e:de:
c8:88:ac:75:bc:a3:fd:45:a8:84:f3:1c:46:45:96:
6d:f3:0c:35:8d:00:00:36:23:dc:5d:50:3f:5d:38:
42:fd:ca:b2:05:a5:50:1a:65:e8:25:4d:f1:ec:4c:
b7:ff:fb:ef:8d:2a:89:f6:26:3e:b4:45:0a:dc:39:
f9:ab:3e:5d:00:c0:1f:1b:ca:1c:db:66:7b:81:df:
dd:cc:c5:48:07:c1:90:18:e8:9b:cc:5b:01:a7:31:
00:20:d2:86:55:a6:8b:d1:f9:c4:cb:e5:b4:b8:0d:
46:a7:49:2e:dd:3c:ba:68:95:d4:c4:76:0c:c7:fe:
11:17:5b:09:92:ff:5b:ef:11:a0:9e:d2:75:cf:72:
cb:23:8b:b6:42:a8:19:aa:99:b5:14:a3:bc:6c:9f:
79:81:89:5b:55:14:47:bf:dc:af:e5:c2:b6:37:e7:
3e:f3:51:d2:cc:a5:4a:40:8a:1b:39:ed:6e:ae:d6:
76:a1:d9:34:ae:2e:45:8d:79:56:3a:27:5f:30:91:
c2:6a:74:9d:40:77:21:29:8d:cd:3f:49:e3:90:7d:
14:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A8:32:0F:3B:98:71:38:88:1D:A0:7E:2B:18:5E:88:FA:28:BF:CD
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/de58c588-4488-3729-a7e1-98130f91c66c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849/ca2c0e73-f7f7-4070-98aa-c78ef1752849.crl
X509v3 Authority Key Identifier:
keyid:76:CE:90:F2:9A:98:0C:BD:C1:58:74:E2:1C:58:59:B7:53:0A:4E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/ca2c0e73-f7f7-4070-98aa-c78ef1752849.cer
sbgp-ipAddrBlock: critical
IPv4:
64.5.64.0/20
64.186.16.0/21
66.172.192.0/18
74.221.32.0/20
199.116.180.0/22
199.247.64.0/20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1b:4e:59:07:8e:d0:da:42:99:2f:2e:25:4c:df:08:4b:70:25:
e9:db:84:c9:48:f2:f3:41:42:ce:de:a4:36:35:5d:a7:b5:01:
c7:ee:b1:3a:79:b3:7d:b1:f9:ba:ff:13:29:91:32:7b:25:f1:
52:d6:28:f1:15:27:82:d8:d8:d9:f1:95:93:78:cc:5a:91:12:
02:e9:9d:ce:83:7d:d4:d0:c1:fb:73:7d:6f:49:c9:63:2c:43:
86:33:b5:7d:0b:08:b3:ec:20:86:90:43:5a:61:22:8d:e5:ce:
69:2e:fd:09:55:3a:1f:e4:07:a3:6b:cc:e1:34:b7:eb:6f:c1:
d2:a4:93:56:39:79:d7:6c:a8:a4:56:52:74:9c:f8:ee:07:61:
75:8e:ee:41:33:d1:ed:90:23:02:15:9f:2f:f9:0c:e7:ba:b8:
d6:cf:b8:79:74:1d:cc:77:95:7f:a4:40:63:3f:6b:f9:6a:34:
e8:8c:66:b1:8b:ec:59:6d:9d:9d:8c:73:b6:f7:15:b0:12:0d:
15:8f:c9:18:f1:44:ca:77:19:30:2f:da:d0:8b:2d:2b:4e:22:
ef:75:5b:e1:34:26:b8:a5:65:b4:94:25:cc:cc:90:f1:0b:a8:
8c:83:61:5d:92:1c:af:dc:af:1d:da:f0:43:30:96:89:c4:b3:
5a:f2:89:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:32:33 2025 by rpki-client