Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3871f1a7-c32a-314b-bdfd-606ab94f5e9c.roa
File: 3871f1a7-c32a-314b-bdfd-606ab94f5e9c.roa (raw, json)
Hash identifier: t/oTzhVYcVMWMrToIjGUEQ7bNTpGESntEVihs/EmfD8=
Subject key identifier: 11:34:55:BA:42:2F:03:17:5F:DE:13:E4:B7:CE:B1:24:45:BC:44:B7
Certificate issuer: /CN=d1f886df-6c58-4ea7-9d1f-0659e2324460
Certificate serial: 010D0C9F432858489075F665F5B9239539146A00
Authority key identifier: DE:16:51:20:56:83:D6:08:13:E6:42:45:8E:FD:16:70:EE:87:6F:BB
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3871f1a7-c32a-314b-bdfd-606ab94f5e9c.roa
Signing time: Thu 16 Jan 2025 14:00:50 +0000
ROA not before: Thu 16 Jan 2025 14:00:50 +0000
ROA not after: Wed 16 Apr 2025 13:00:50 +0000
asID: 6621
IP address blocks: 72.170.0.0/19 maxlen: 19
72.170.208.0/24 maxlen: 24
72.170.209.0/24 maxlen: 24
72.170.210.0/24 maxlen: 24
72.170.211.0/24 maxlen: 24
72.170.212.0/24 maxlen: 24
72.170.213.0/24 maxlen: 24
72.170.214.0/24 maxlen: 24
72.170.215.0/24 maxlen: 24
72.170.216.0/24 maxlen: 24
72.170.220.0/23 maxlen: 23
72.170.223.0/24 maxlen: 24
72.170.224.0/24 maxlen: 24
72.170.225.0/24 maxlen: 24
72.170.226.0/24 maxlen: 24
72.170.227.0/24 maxlen: 24
72.170.228.0/24 maxlen: 24
72.170.229.0/24 maxlen: 24
72.170.230.0/24 maxlen: 24
72.170.231.0/24 maxlen: 24
72.170.232.0/24 maxlen: 24
72.170.233.0/24 maxlen: 24
72.170.234.0/24 maxlen: 24
72.170.235.0/24 maxlen: 24
72.170.236.0/24 maxlen: 24
72.170.237.0/24 maxlen: 24
72.170.238.0/24 maxlen: 24
72.170.239.0/24 maxlen: 24
72.170.240.0/24 maxlen: 24
72.170.241.0/24 maxlen: 24
72.170.242.0/24 maxlen: 24
72.170.243.0/24 maxlen: 24
72.170.244.0/24 maxlen: 24
72.170.245.0/24 maxlen: 24
72.170.246.0/24 maxlen: 24
72.170.247.0/24 maxlen: 24
72.170.248.0/24 maxlen: 24
72.170.249.0/24 maxlen: 24
72.170.250.0/24 maxlen: 24
72.170.251.0/24 maxlen: 24
72.170.252.0/24 maxlen: 24
72.170.253.0/24 maxlen: 24
72.170.254.0/24 maxlen: 24
72.170.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:90:75:f6:65:f5:b9:23:95:39:14:6a:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f886df-6c58-4ea7-9d1f-0659e2324460
Validity
Not Before: Jan 16 14:00:50 2025 GMT
Not After : Apr 16 13:00:50 2025 GMT
Subject: CN=f401549a-96a1-47fd-ac70-c213861c7ba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:14:6e:e2:ed:5d:cd:d2:72:74:f8:f2:76:e0:
b9:05:3d:3d:3d:fd:d2:96:35:6d:8b:46:ce:9c:7f:
9f:8a:67:98:68:33:29:b8:8f:48:66:25:28:1e:a5:
30:00:47:30:dd:da:87:9f:05:fa:da:8d:b2:4f:a4:
c6:72:7c:55:48:f6:5a:97:ec:48:0f:a6:2d:d5:79:
ad:92:18:51:80:ee:0e:97:ae:8b:b8:e6:9c:10:49:
88:23:58:7d:6a:ea:07:d7:af:9a:06:52:5f:ad:61:
a0:ac:e3:06:9c:0e:63:52:9f:3d:75:e8:8f:d6:79:
67:f5:cd:80:b7:49:b9:e8:19:64:72:dd:48:d3:e0:
a0:a2:b3:39:ad:3e:fe:7c:95:e4:e4:6d:a7:81:be:
b4:16:7c:3f:2e:ed:26:3c:57:d6:cc:55:40:38:82:
d8:e3:16:83:aa:35:9c:bf:e3:61:dd:7a:74:5d:1e:
fd:32:38:d8:bf:a6:f0:25:2c:57:de:96:2b:33:03:
ba:bd:48:b3:59:5f:73:a3:d6:04:a5:b4:4f:4e:a9:
9f:70:93:7e:46:db:68:e7:f8:d7:f0:06:77:b4:4e:
af:fb:f4:a4:53:a4:76:e5:23:77:d9:0b:d1:53:63:
1f:e3:bf:c9:5c:8e:33:ad:49:68:24:7e:c6:8c:f3:
82:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:34:55:BA:42:2F:03:17:5F:DE:13:E4:B7:CE:B1:24:45:BC:44:B7
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3871f1a7-c32a-314b-bdfd-606ab94f5e9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/d1f886df-6c58-4ea7-9d1f-0659e2324460.crl
X509v3 Authority Key Identifier:
keyid:DE:16:51:20:56:83:D6:08:13:E6:42:45:8E:FD:16:70:EE:87:6F:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460.cer
sbgp-ipAddrBlock: critical
IPv4:
72.170.0.0/19
72.170.208.0-72.170.216.255
72.170.220.0/23
72.170.223.0-72.170.255.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
9d:ac:d8:9b:1f:81:b7:35:5d:a0:6a:b9:67:21:80:88:e7:ac:
89:f6:81:ee:41:79:86:50:ef:bb:d0:a6:16:b3:8f:2c:aa:f8:
1b:ea:0d:79:62:60:4b:75:1c:a3:3c:a6:dd:3e:1a:d4:f1:1b:
ab:75:03:3d:e9:3c:7f:d4:48:7e:3a:9f:9a:0b:90:c8:44:fd:
e8:65:b6:31:1a:80:8f:c6:96:1f:ad:dd:25:b0:a6:5d:ee:ca:
73:e3:ea:3d:33:cd:da:58:a4:90:ff:6f:bd:af:44:c5:31:96:
25:33:06:75:eb:c9:a3:f0:64:7f:3f:da:93:19:ae:2f:5d:86:
c6:a9:93:b8:cc:c3:bf:3c:66:57:2f:de:01:d3:c2:09:33:82:
a7:85:da:d8:7b:83:c9:80:d9:8a:b8:ef:15:bc:eb:11:02:b7:
7b:77:fa:5e:0b:61:da:91:a2:fc:58:69:b8:d4:86:f4:9f:b7:
de:da:e3:df:05:57:d9:20:98:7f:a4:79:02:1b:20:13:38:ac:
5d:55:d2:00:f9:66:a8:ec:3a:eb:47:fd:fb:16:37:c9:19:4a:
9b:96:ce:56:71:72:2c:21:d5:c1:03:fb:b1:69:fc:28:f5:d6:
44:f5:21:ca:57:ab:dd:b1:75:86:58:05:5b:43:ef:8d:19:b7:
a0:31:3a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:48:36 2025 by rpki-client