Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5b71e83d-2828-4f34-ba3e-648d01ef173a/6b7ad6a2-e3c3-3bbb-8039-72c2043011a0.roa
File: 6b7ad6a2-e3c3-3bbb-8039-72c2043011a0.roa (raw, json)
Hash identifier: nLQcr+xIAO7l0N6EN9YqdxhKjYGy2FnJXUcqstLquuY=
Subject key identifier: 7E:B7:3E:23:DA:58:16:C7:28:30:07:38:45:D8:30:61:15:0E:D7:C2
Certificate issuer: /CN=5b71e83d-2828-4f34-ba3e-648d01ef173a
Certificate serial: 010D0C9F43285848E00659916601E431AF7133A0
Authority key identifier: 0A:B2:B2:C1:81:24:D9:53:89:B1:0C:7A:4C:20:C6:28:78:53:BF:9E
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5b71e83d-2828-4f34-ba3e-648d01ef173a.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5b71e83d-2828-4f34-ba3e-648d01ef173a/6b7ad6a2-e3c3-3bbb-8039-72c2043011a0.roa
Signing time: Fri 14 Feb 2025 02:00:39 +0000
ROA not before: Fri 14 Feb 2025 02:00:39 +0000
ROA not after: Thu 15 May 2025 01:00:39 +0000
asID: 64286
IP address blocks: 64.64.102.0/24 maxlen: 24
64.64.110.0/24 maxlen: 24
64.64.111.0/24 maxlen: 24
64.64.115.0/24 maxlen: 24
64.64.118.0/24 maxlen: 24
64.64.122.0/24 maxlen: 24
64.64.125.0/24 maxlen: 24
64.64.127.0/24 maxlen: 24
98.159.38.0/24 maxlen: 24
98.159.45.0/24 maxlen: 24
98.159.47.0/24 maxlen: 24
98.159.225.0/24 maxlen: 24
98.159.227.0/24 maxlen: 24
98.159.228.0/24 maxlen: 24
98.159.229.0/24 maxlen: 24
98.159.231.0/24 maxlen: 24
98.159.235.0/24 maxlen: 24
98.159.238.0/24 maxlen: 24
173.239.208.0/24 maxlen: 24
173.239.219.0/24 maxlen: 24
173.239.237.0/24 maxlen: 24
173.239.251.0/24 maxlen: 24
173.244.35.0/24 maxlen: 24
173.244.37.0/24 maxlen: 24
173.244.39.0/24 maxlen: 24
173.244.41.0/24 maxlen: 24
173.244.57.0/24 maxlen: 24
173.244.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:e0:06:59:91:66:01:e4:31:af:71:33:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b71e83d-2828-4f34-ba3e-648d01ef173a
Validity
Not Before: Feb 14 02:00:39 2025 GMT
Not After : May 15 01:00:39 2025 GMT
Subject: CN=d7da5f5b-0274-4e62-b161-0f4d68041e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:86:e9:6d:af:e3:6b:0f:45:a9:71:c6:73:c2:
d4:03:e0:30:53:f4:22:cc:c0:38:5e:49:33:df:c1:
f3:fc:74:a0:4f:eb:9a:de:61:46:09:34:99:6e:76:
4c:a9:cc:71:fd:85:19:07:17:86:f6:93:d1:4d:90:
59:c2:ff:c9:01:0e:38:94:9e:85:77:5a:2c:a7:9e:
6f:de:23:35:e0:19:c8:45:a7:56:ca:10:56:ee:b1:
f6:ec:73:a4:0e:3c:bb:16:fe:ba:12:12:8a:ad:c8:
df:7f:3f:03:9c:09:f3:66:c8:30:b9:97:73:86:63:
eb:b6:70:05:d7:14:d5:b4:5d:ae:2a:ae:39:6c:d4:
6c:5d:81:66:23:3b:3c:09:69:1c:de:56:5d:8f:53:
ca:5e:4a:67:98:51:29:9c:8d:42:06:68:7f:e4:11:
e2:d3:1d:eb:c4:d4:3a:71:e5:b8:c2:fd:e4:f1:db:
d1:89:2a:60:0e:9c:8b:7c:db:68:e1:20:e7:00:ec:
f6:9e:6c:8a:f0:77:7f:83:e3:bb:12:c8:93:16:68:
84:93:bb:61:fa:80:80:df:1c:68:91:aa:f6:b1:59:
99:94:e5:93:26:2e:ad:0b:d6:cd:ff:65:26:59:c8:
98:88:71:75:15:20:d8:6f:9d:af:d5:8a:6c:4f:47:
fa:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:B7:3E:23:DA:58:16:C7:28:30:07:38:45:D8:30:61:15:0E:D7:C2
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5b71e83d-2828-4f34-ba3e-648d01ef173a/6b7ad6a2-e3c3-3bbb-8039-72c2043011a0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5b71e83d-2828-4f34-ba3e-648d01ef173a/5b71e83d-2828-4f34-ba3e-648d01ef173a.crl
X509v3 Authority Key Identifier:
keyid:0A:B2:B2:C1:81:24:D9:53:89:B1:0C:7A:4C:20:C6:28:78:53:BF:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/5b71e83d-2828-4f34-ba3e-648d01ef173a.cer
sbgp-ipAddrBlock: critical
IPv4:
64.64.102.0/24
64.64.110.0/23
64.64.115.0/24
64.64.118.0/24
64.64.122.0/24
64.64.125.0/24
64.64.127.0/24
98.159.38.0/24
98.159.45.0/24
98.159.47.0/24
98.159.225.0/24
98.159.227.0-98.159.229.255
98.159.231.0/24
98.159.235.0/24
98.159.238.0/24
173.239.208.0/24
173.239.219.0/24
173.239.237.0/24
173.239.251.0/24
173.244.35.0/24
173.244.37.0/24
173.244.39.0/24
173.244.41.0/24
173.244.57.0/24
173.244.59.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
ac:09:61:0b:02:9f:fb:1c:d8:dd:4e:2e:15:0e:51:70:3d:70:
c6:8d:ec:ee:ea:fc:41:96:15:0e:b2:6e:33:0b:d5:06:8d:a1:
66:f3:ed:2f:0e:44:d5:5d:5c:fe:ec:b0:52:28:9d:0c:6d:72:
7d:8e:02:67:b7:05:a5:44:1c:86:1d:c3:fb:80:8a:18:08:fb:
e2:cd:1b:1a:f7:54:45:fb:96:7d:e8:83:ef:87:cf:42:89:98:
ff:dd:d5:ee:05:ce:ad:2a:26:d9:4f:af:bb:ca:f4:3b:c5:72:
72:eb:1c:c2:12:6e:d8:11:da:80:1c:c7:8a:93:8e:5b:7e:01:
1b:4e:0a:9a:16:b5:20:aa:e6:38:6f:03:aa:a8:c1:d3:e8:e7:
ea:ff:97:8f:8a:fd:49:98:91:ca:40:b5:f7:a9:e4:00:d9:1d:
2d:47:d3:11:37:17:7a:60:8f:17:2d:67:d0:c1:7d:a0:05:d4:
77:f5:9c:11:5b:bc:77:cc:f9:b4:c1:d0:c6:c6:e6:50:bf:a0:
f5:c9:ca:02:05:23:4b:9f:80:01:20:4e:d4:c7:73:37:55:2f:
09:09:6d:6c:7c:57:c0:af:65:56:5f:9c:bd:93:33:2a:be:a0:
b2:bf:24:a9:c8:98:dd:3f:64:4b:c3:62:4f:9f:8e:68:ca:6e:
5f:12:1b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:34:36 2025 by rpki-client