Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3e6eca20-984c-38bb-912e-539ca9ab80f4.roa
File: 3e6eca20-984c-38bb-912e-539ca9ab80f4.roa (raw, json)
Hash identifier: KwvycJjqWcMEdWKvYih6Lk/tLX7W5nsAUGkXNQ/iDgw=
Subject key identifier: 76:1A:7B:84:6C:04:0E:00:61:E2:67:B4:91:57:8C:4A:13:BB:5D:E0
Certificate issuer: /CN=d1f886df-6c58-4ea7-9d1f-0659e2324460
Certificate serial: 010D0C9F432858489075F63A092A7172FB458B40
Authority key identifier: DE:16:51:20:56:83:D6:08:13:E6:42:45:8E:FD:16:70:EE:87:6F:BB
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3e6eca20-984c-38bb-912e-539ca9ab80f4.roa
Signing time: Thu 16 Jan 2025 14:00:50 +0000
ROA not before: Thu 16 Jan 2025 14:00:50 +0000
ROA not after: Wed 16 Apr 2025 13:00:50 +0000
asID: 6621
IP address blocks: 72.168.0.0/19 maxlen: 19
72.168.80.0/21 maxlen: 21
72.168.87.0/24 maxlen: 24
72.168.88.0/21 maxlen: 21
72.168.94.0/24 maxlen: 24
72.168.95.0/24 maxlen: 24
72.168.96.0/19 maxlen: 19
72.168.96.0/21 maxlen: 21
72.168.128.0/22 maxlen: 22
72.168.132.0/22 maxlen: 22
72.168.136.0/22 maxlen: 22
72.168.140.0/22 maxlen: 22
72.168.142.0/23 maxlen: 23
72.168.144.0/22 maxlen: 22
72.168.148.0/22 maxlen: 22
72.168.152.0/22 maxlen: 22
72.168.156.0/22 maxlen: 22
72.168.160.0/22 maxlen: 22
72.168.164.0/22 maxlen: 22
72.168.168.0/22 maxlen: 22
72.168.172.0/22 maxlen: 22
72.168.176.0/22 maxlen: 22
72.168.180.0/22 maxlen: 22
72.168.184.0/22 maxlen: 22
72.168.188.0/22 maxlen: 22
72.168.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:90:75:f6:3a:09:2a:71:72:fb:45:8b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f886df-6c58-4ea7-9d1f-0659e2324460
Validity
Not Before: Jan 16 14:00:50 2025 GMT
Not After : Apr 16 13:00:50 2025 GMT
Subject: CN=530fa3af-b79e-4519-af50-e4323dd23ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3b:d1:f7:df:fd:c5:af:ea:e9:6a:9e:2d:97:
1b:c4:fc:a6:5c:a6:fe:5a:50:20:92:75:bf:6e:71:
98:1c:c9:63:f0:00:f1:33:8e:4c:89:e8:5e:17:50:
15:9d:58:49:ab:a9:65:b1:dc:97:6f:88:2c:e5:e7:
81:eb:9c:1a:2e:f4:92:18:45:ea:cb:0d:80:18:6e:
7f:6a:25:51:c4:0b:b8:93:cd:46:6f:dc:0b:71:be:
51:d0:ef:b9:00:16:ca:f6:3b:3b:07:84:ef:75:24:
81:ee:72:95:87:fc:5c:a2:f2:6a:0a:41:fc:a7:88:
c6:ae:a4:57:de:8f:9a:e2:37:69:f7:3f:c4:bc:43:
1a:aa:2b:f3:3a:22:3b:5d:5e:a0:2f:d4:01:83:93:
fd:05:62:4d:9d:d9:c3:eb:57:f5:e6:6b:4c:da:41:
a1:99:0d:33:2d:19:19:e2:09:22:ec:56:4b:21:a5:
01:58:6b:2c:e2:20:8a:2d:26:17:b7:9a:a2:3a:9c:
a8:4f:cd:5b:51:2b:87:ce:a3:3b:82:c3:8e:88:29:
97:ff:60:56:e7:f5:27:eb:23:d8:ec:9b:9b:13:1d:
d7:cb:52:36:56:91:0d:52:03:91:b8:8c:6a:10:2c:
2b:a2:2c:1f:41:f1:aa:5c:05:22:f0:80:13:d8:7e:
dc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1A:7B:84:6C:04:0E:00:61:E2:67:B4:91:57:8C:4A:13:BB:5D:E0
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/3e6eca20-984c-38bb-912e-539ca9ab80f4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460/d1f886df-6c58-4ea7-9d1f-0659e2324460.crl
X509v3 Authority Key Identifier:
keyid:DE:16:51:20:56:83:D6:08:13:E6:42:45:8E:FD:16:70:EE:87:6F:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d1f886df-6c58-4ea7-9d1f-0659e2324460.cer
sbgp-ipAddrBlock: critical
IPv4:
72.168.0.0/19
72.168.80.0-72.168.191.255
72.168.224.0/19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
70:e4:07:11:94:65:66:dc:ac:1b:74:5a:b8:4e:e6:5f:58:f1:
b6:d3:2d:37:a4:c8:b4:1b:d6:5d:d9:f9:b2:73:ea:b4:2b:7e:
a6:b7:c3:8e:3e:28:0e:5c:97:98:a6:7b:2b:66:4d:43:a2:2c:
c9:96:11:59:4a:ab:47:1f:4c:93:87:05:88:70:2c:ee:5b:66:
6c:6c:54:9c:70:12:6c:ee:9d:71:07:a9:53:77:fe:93:aa:18:
52:29:41:e1:33:a2:80:41:4d:fc:21:34:ed:98:15:8c:52:47:
f4:e1:a7:08:84:5c:55:f5:05:22:89:e4:90:3e:51:19:b2:e5:
65:d2:49:04:26:6a:cd:ef:b8:90:ee:b4:47:c8:b9:76:ab:52:
6c:bd:10:d3:2e:db:e8:df:15:c6:86:43:a8:15:f4:9b:31:eb:
5c:12:33:74:8c:48:0d:a6:72:df:f5:16:f9:31:24:a7:ec:3e:
83:7b:a8:50:7b:78:78:c3:82:ec:34:5c:9e:8f:d2:21:da:30:
c0:fa:99:17:50:7a:7f:bb:75:fb:83:ea:04:6c:81:d8:10:45:
3d:17:e0:26:bd:98:6b:c3:cb:7a:0c:73:82:96:7a:72:79:8b:
e3:94:58:c2:f5:50:83:42:6a:33:e5:99:9a:79:e9:2e:a1:f5:
74:bf:e1:8e
-----BEGIN CERTIFICATE-----
MIIGVzCCBT+gAwIBAgIUAQ0Mn0MoWEiQdfY6CSpxcvtFi0AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkZDFmODg2ZGYtNmM1OC00ZWE3LTlkMWYtMDY1OWUyMzI0
NDYwMB4XDTI1MDExNjE0MDA1MFoXDTI1MDQxNjEzMDA1MFowLzEtMCsGA1UEAxMk
NTMwZmEzYWYtYjc5ZS00NTE5LWFmNTAtZTQzMjNkZDIzZmZkMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTvR99/9xa/q6WqeLZcbxPymXKb+WlAgknW/
bnGYHMlj8ADxM45MieheF1AVnVhJq6llsdyXb4gs5eeB65waLvSSGEXqyw2AGG5/
aiVRxAu4k81Gb9wLcb5R0O+5ABbK9js7B4TvdSSB7nKVh/xcovJqCkH8p4jGrqRX
3o+a4jdp9z/EvEMaqivzOiI7XV6gL9QBg5P9BWJNndnD61f15mtM2kGhmQ0zLRkZ
4gki7FZLIaUBWGss4iCKLSYXt5qiOpyoT81bUSuHzqM7gsOOiCmX/2BW5/Un6yPY
7JubEx3Xy1I2VpENUgORuIxqECwroiwfQfGqXAUi8IAT2H7cHQIDAQABo4IDaTCC
A2UwHQYDVR0OBBYEFHYae4RsBA4AYeJntJFXjEoTu13gMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kMWY4
ODZkZi02YzU4LTRlYTctOWQxZi0wNjU5ZTIzMjQ0NjAvM2U2ZWNhMjAtOTg0Yy0z
OGJiLTkxMmUtNTM5Y2E5YWI4MGY0LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy8wMzU3MjcyYy1h
NzlhLTQ1YmYtOTU4Ni05MmRkNDllZjMyMjMvZDFmODg2ZGYtNmM1OC00ZWE3LTlk
MWYtMDY1OWUyMzI0NDYwL2QxZjg4NmRmLTZjNTgtNGVhNy05ZDFmLTA2NTllMjMy
NDQ2MC5jcmwwHwYDVR0jBBgwFoAU3hZRIFaD1ggT5kJFjv0WcO6Hb7swDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzAzNTcyNzJjLWE3OWEtNDVi
Zi05NTg2LTkyZGQ0OWVmMzIyMy9kMWY4ODZkZi02YzU4LTRlYTctOWQxZi0wNjU5
ZTIzMjQ0NjAuY2VyMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaAwQFSKgAMAwD
BARIqFADBAZIqIADBAVIqOAwVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgG
CCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9j
cHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEAcOQHEZRlZtysG3RauE7mX1jxttMt
N6TItBvWXdn5snPqtCt+prfDjj4oDlyXmKZ7K2ZNQ6IsyZYRWUqrRx9Mk4cFiHAs
7ltmbGxUnHASbO6dcQepU3f+k6oYUilB4TOigEFN/CE07ZgVjFJH9OGnCIRcVfUF
IonkkD5RGbLlZdJJBCZqze+4kO60R8i5dqtSbL0Q0y7b6N8VxoZDqBX0mzHrXBIz
dIxIDaZy3/UW+TEkp+w+g3uoUHt4eMOC7DRcno/SIdowwPqZF1B6f7t1+4PqBGyB
2BBFPRfgJr2Ya8PLegxzgpZ6cnmL45RYwvVQg0JqM+WZmnnpLqH1dL/hjg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 15:48:42 2025 by rpki-client