Route Origin Authorization

$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/a99aa0f4-f68b-3bd9-9cad-6c391a100b4e.roa
File:                     a99aa0f4-f68b-3bd9-9cad-6c391a100b4e.roa (raw, json)
Hash identifier:          K06u15yR5Su67cIeh5E2l6S1YdNkAu3u37CNPOpn4G4=
Subject key identifier:   CD:9D:E7:89:78:9B:AC:FC:32:97:63:BF:4E:3B:35:9C:52:AB:96:27
Certificate issuer:       /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial:       010D0C9F432858489E6D5C6CA16B2ED895ABAFD0
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access:      rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/a99aa0f4-f68b-3bd9-9cad-6c391a100b4e.roa
Signing time:             Tue 21 Jan 2025 14:00:53 +0000
ROA not before:           Tue 21 Jan 2025 14:00:53 +0000
ROA not after:            Mon 21 Apr 2025 13:00:53 +0000
asID:                     33650
IP address blocks:        73.157.0.0/17 maxlen: 17
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:0d:0c:9f:43:28:58:48:9e:6d:5c:6c:a1:6b:2e:d8:95:ab:af:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
        Validity
            Not Before: Jan 21 14:00:53 2025 GMT
            Not After : Apr 21 13:00:53 2025 GMT
        Subject: CN=9f1a6f10-3f8b-4bcd-8d75-b24a055f1846
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:2f:e3:74:fe:bd:ce:42:cc:90:bc:3b:7e:8c:
                    1c:aa:ea:88:e5:db:0e:05:f3:f8:ff:56:d7:a4:66:
                    28:9a:04:63:16:6e:89:09:81:4c:06:dc:89:15:73:
                    62:8d:d1:2a:d8:8d:3a:36:1a:37:7d:31:68:0a:9a:
                    4c:33:da:73:e8:ed:1c:d0:51:11:11:cc:a6:4b:53:
                    72:f1:3f:a0:b4:b6:ca:b2:91:89:d9:ac:c7:78:35:
                    5a:2b:5f:1c:a6:7d:b0:b7:05:cc:ca:03:44:86:8f:
                    d4:4a:03:74:cc:2f:42:20:24:c6:59:99:85:84:2e:
                    69:d9:43:9a:7a:d7:ae:ef:b2:4c:61:b4:3d:50:9f:
                    32:4f:bd:6e:f4:4b:55:b3:f9:1b:67:a3:e2:a9:9e:
                    5e:c1:ba:6f:4c:c8:dd:ad:d4:0f:8d:f6:be:a3:6d:
                    ab:5a:b6:31:25:84:7c:73:fe:16:4e:48:1d:df:b7:
                    be:a5:a9:07:07:23:68:ec:0f:46:d0:8e:db:2d:96:
                    cc:74:3c:da:52:b8:87:17:61:9d:8d:a6:3d:4b:d8:
                    88:eb:7f:28:3d:31:c5:fd:e8:18:35:da:cd:0f:35:
                    97:4e:cf:43:8a:94:02:62:39:3a:0b:c5:78:bb:2d:
                    7a:53:15:64:76:17:86:94:6e:2e:0d:ea:ac:9c:bc:
                    87:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:9D:E7:89:78:9B:AC:FC:32:97:63:BF:4E:3B:35:9C:52:AB:96:27
            Subject Information Access:
                Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/a99aa0f4-f68b-3bd9-9cad-6c391a100b4e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl

            X509v3 Authority Key Identifier:
                keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer

            sbgp-ipAddrBlock: critical
                IPv4:
                  73.157.0.0/17

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.arin.net/resources/rpki/cps.html

    Signature Algorithm: sha256WithRSAEncryption
         83:52:94:91:18:ea:e6:a9:e8:0d:9b:8c:d5:1d:c5:71:f9:32:
         dd:31:3a:78:be:c3:5b:75:42:ef:bf:2b:ec:e5:65:be:83:e6:
         f6:1e:4f:88:fd:c4:98:19:b6:af:86:df:19:18:bd:36:cc:b4:
         4d:14:af:36:e0:c9:6d:43:6f:c5:e8:f0:82:09:f0:e3:96:41:
         ec:ea:3e:bc:9d:7a:b8:e5:7c:be:f3:23:1b:0a:54:65:b3:14:
         95:c6:fa:ca:db:10:34:11:2e:56:eb:d4:df:d3:e2:34:72:43:
         1b:04:b9:99:8b:12:30:49:7e:da:b2:82:c3:ac:68:1b:57:fa:
         cd:f3:70:ff:b8:11:ad:42:9a:26:b9:be:d9:23:c9:23:07:72:
         0e:c7:a5:1d:a2:52:12:f7:89:0d:db:ff:7b:36:ac:3d:be:87:
         f2:b2:a6:86:3e:76:38:5e:db:bd:27:51:d9:1e:60:28:6d:85:
         a2:94:79:47:b8:45:4b:2d:16:df:f6:33:f0:4a:15:c1:f5:38:
         2c:b5:e1:9f:0d:37:03:96:c4:c6:b6:e5:37:09:67:3e:2b:37:
         c5:08:ee:40:ef:41:f0:97:7e:d4:17:68:e7:8a:6e:4b:38:5d:
         dc:83:67:f4:c3:80:19:b2:b0:44:5d:0b:f1:b4:b7:3a:24:36:
         82:f7:0e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 22:45:07 2025 by rpki-client