Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/b00896ce-0362-3943-8ce0-12fe02c5e055.roa
File: b00896ce-0362-3943-8ce0-12fe02c5e055.roa (raw, json)
Hash identifier: HG2ZawoIRHZlqFpe9JMua/ny8F+L1wNWhoD/LkfcXoM=
Subject key identifier: C2:F0:39:E6:F9:59:C9:33:D5:70:BD:33:F4:57:EE:0C:7B:D6:70:52
Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial: 010D0C9F43285848F4F787003F5C46C2E78D4580
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/b00896ce-0362-3943-8ce0-12fe02c5e055.roa
Signing time: Fri 21 Feb 2025 14:00:50 +0000
ROA not before: Fri 21 Feb 2025 14:00:50 +0000
ROA not after: Thu 22 May 2025 13:00:50 +0000
asID: 33668
IP address blocks: 68.37.152.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Mon 14 Apr 2025 00:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:f4:f7:87:00:3f:5c:46:c2:e7:8d:45:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Validity
Not Before: Feb 21 14:00:50 2025 GMT
Not After : May 22 13:00:50 2025 GMT
Subject: CN=b29c2576-940a-4e5f-b9db-594ef331d28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:04:92:36:2c:06:6f:72:30:22:1b:cc:76:8b:
7a:04:08:9a:ed:96:63:4b:5c:d2:c1:5d:90:77:f8:
44:c0:48:e9:91:cf:bf:37:23:03:d2:7f:bc:99:24:
e3:d7:ed:7b:3f:f6:a9:c2:cd:96:f7:bd:4c:01:b5:
4f:63:d3:a3:62:c8:98:5a:16:a7:d2:cc:58:f8:f0:
5b:70:3c:c9:ec:14:91:13:5e:c3:81:bd:ca:03:be:
a4:2c:4d:f8:02:47:b2:13:a4:4d:f5:ce:fb:5c:33:
12:b9:8b:1b:5e:11:b7:f6:71:5e:b9:38:82:7b:d6:
a7:64:1b:4e:fa:13:bf:aa:09:88:26:41:97:dc:6f:
61:22:cb:6b:72:83:61:8b:82:a2:82:a0:4d:a2:47:
f3:0f:2d:50:d7:77:d3:8d:2e:62:a0:ce:7f:1e:e1:
2c:b9:3b:32:50:c9:b2:72:58:a1:8d:04:4b:07:2a:
9b:84:c1:20:e1:28:81:9b:ad:fc:8e:5c:9d:49:ed:
9b:0b:57:85:fb:e9:a7:fd:86:47:4a:d1:d2:fc:24:
f7:28:11:19:b9:c8:a3:e8:bf:9e:7e:32:03:b3:a6:
fa:10:1d:bd:15:69:66:63:56:83:bf:6c:43:42:47:
4e:7d:59:c2:4d:f6:f1:2f:19:f0:90:92:24:01:d4:
46:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F0:39:E6:F9:59:C9:33:D5:70:BD:33:F4:57:EE:0C:7B:D6:70:52
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/b00896ce-0362-3943-8ce0-12fe02c5e055.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
X509v3 Authority Key Identifier:
keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
sbgp-ipAddrBlock: critical
IPv4:
68.37.152.0/23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
31:ca:50:f6:93:a7:17:14:ad:bb:13:8d:21:c7:a3:f0:c6:c5:
7e:b4:1b:c4:59:15:89:cf:99:41:ee:4c:87:f9:a9:3c:fe:c3:
ea:77:56:0a:3d:71:ea:a8:0d:ad:8b:27:40:b9:a1:49:31:aa:
98:7d:dd:f8:5f:4c:c4:d5:c9:5a:e8:d0:a0:39:ae:68:2d:3a:
c3:26:dc:69:b0:05:4b:1c:3a:74:1b:da:16:12:8c:54:89:7c:
2b:c0:96:f6:da:bd:71:58:d4:e3:19:52:30:3c:79:a6:48:4f:
8b:f2:35:70:85:bc:c7:73:a5:cd:2c:c7:45:d9:6c:36:29:7d:
2b:2a:9a:b0:fa:e3:2c:32:61:3b:7e:a4:4f:8f:0d:8a:c9:8d:
b3:18:52:0f:af:49:2b:62:d7:7f:7d:c6:5a:40:61:40:9b:99:
11:01:df:4e:91:15:74:87:be:bc:70:a2:7f:34:14:cd:78:dd:
73:e2:a9:f3:88:a7:dc:c5:21:57:80:85:da:28:83:ed:e7:29:
40:2e:e2:5c:8a:8e:24:94:91:6c:e7:f3:80:1b:ca:51:ee:b7:
79:5b:3a:43:0c:2e:70:07:a7:71:6f:9e:2d:86:30:29:cb:b1:
60:b8:bb:f9:e8:ca:86:af:3d:2c:0d:7d:eb:6e:92:af:4f:b7:
f5:fd:98:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 00:45:56 2025 by rpki-client