Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa
File: 91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa (raw, json)
Hash identifier: J7VSwy3/l808Mxk1BIF69BL5/tocac90rJVrOdNns+c=
Subject key identifier: CD:0D:77:BF:B6:68:8D:6D:2C:03:B3:FC:D9:E3:30:82:F2:CB:4D:9C
Certificate issuer: /CN=3aeb4dac-8911-4f44-9f24-1f5081193043
Certificate serial: 010D0C9F43285848F4F6A091624463F269258D80
Authority key identifier: 96:FF:31:79:24:B5:E1:3A:74:B0:00:4D:50:56:C3:6D:12:47:5E:9D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa
Signing time: Fri 21 Feb 2025 14:00:50 +0000
ROA not before: Fri 21 Feb 2025 14:00:50 +0000
ROA not after: Thu 22 May 2025 13:00:50 +0000
asID: 55077
IP address blocks: 23.128.208.0/24 maxlen: 24
103.25.230.0/24 maxlen: 24
104.36.4.0/22 maxlen: 22
198.44.204.0/22 maxlen: 22
2602:ff31::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:f4:f6:a0:91:62:44:63:f2:69:25:8d:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aeb4dac-8911-4f44-9f24-1f5081193043
Validity
Not Before: Feb 21 14:00:50 2025 GMT
Not After : May 22 13:00:50 2025 GMT
Subject: CN=6a5ceac7-74a9-4cfb-aefc-1577778a0dfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c1:8f:c3:e9:26:12:52:92:c7:4e:6d:82:8c:
2d:a9:f8:ff:ad:66:01:1f:9a:90:1f:6c:6b:78:f3:
e2:bb:d4:91:50:91:0f:1b:94:c7:42:29:b9:c3:80:
0a:5b:ee:6c:ff:0c:71:0d:d9:88:cd:bf:c1:23:70:
8d:55:a8:03:77:43:79:f2:09:98:0e:af:e6:e6:1e:
78:0c:e8:f5:23:75:8c:ed:6a:4c:9f:ad:4d:1f:77:
6b:af:fd:dd:d4:f0:9d:e9:fc:fd:c7:be:6b:07:bb:
90:56:b1:93:bf:42:ab:c4:23:df:96:5c:86:83:e6:
09:5c:8d:93:c8:c8:0b:05:0d:4b:da:90:21:77:70:
aa:3e:61:38:f0:5c:ab:14:3c:0a:4f:a6:ef:43:68:
b8:ea:6f:eb:18:ec:7b:88:22:71:78:d2:1f:2d:6b:
58:65:54:65:74:33:6d:9d:ef:84:28:b7:51:98:1f:
9a:a9:33:a3:e4:04:cd:85:59:79:16:43:05:4e:c6:
bb:7d:56:9e:d6:77:13:4a:61:4f:ab:08:59:ce:88:
db:68:85:5c:43:78:51:61:a7:45:8a:62:36:d0:12:
32:16:48:5e:9a:7c:2f:19:23:23:41:a9:0a:1e:a6:
d9:f4:28:9d:a9:79:81:e3:c2:b0:3e:2a:19:3f:10:
10:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0D:77:BF:B6:68:8D:6D:2C:03:B3:FC:D9:E3:30:82:F2:CB:4D:9C
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/91ec1b9a-5318-3b0b-8d0d-18183e71e924.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043/3aeb4dac-8911-4f44-9f24-1f5081193043.crl
X509v3 Authority Key Identifier:
keyid:96:FF:31:79:24:B5:E1:3A:74:B0:00:4D:50:56:C3:6D:12:47:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/3aeb4dac-8911-4f44-9f24-1f5081193043.cer
sbgp-ipAddrBlock: critical
IPv4:
23.128.208.0/24
103.25.230.0/24
104.36.4.0/22
198.44.204.0/22
IPv6:
2602:ff31::/36
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1b:93:02:1f:c5:26:4f:0f:7d:9c:50:73:2a:89:a1:65:11:5f:
f1:54:01:cc:cf:24:14:b0:a2:10:9d:5a:d2:7f:8c:86:90:f1:
e9:2e:67:88:70:b6:6f:8a:5d:2c:0e:60:1a:ed:45:ed:94:5b:
6a:46:4c:85:41:33:b6:10:78:32:4f:a3:11:09:7e:04:3b:95:
6a:81:58:79:0a:ac:a2:f3:30:e8:c8:d4:e3:55:fe:b0:df:e7:
0a:6f:b5:58:37:cb:db:6c:ac:74:19:26:43:c1:09:b5:10:07:
7a:81:0e:2a:4f:ab:9b:95:44:02:02:af:15:5f:54:b7:f4:68:
9d:d5:6d:6d:7f:25:24:fa:27:86:7a:b0:c9:63:38:a7:0f:c8:
6e:29:54:45:4f:be:8b:ec:c4:c5:cb:10:b4:11:26:77:be:d7:
c3:c4:0f:5d:ac:e0:39:5f:04:67:93:97:13:08:26:7a:77:69:
be:20:3f:7a:fb:de:0f:30:d0:ea:12:16:d1:59:37:6b:a8:4b:
05:30:cc:f8:17:69:8c:1c:5a:91:02:5b:da:c6:cc:fd:a0:3a:
a0:4e:f2:e7:16:02:c9:fc:36:82:dd:f5:2a:a5:8c:d9:8f:6a:
90:6b:aa:a6:e3:8c:fe:7f:c0:92:94:89:c6:e5:c3:3f:1b:64:
ab:16:fc:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:29:04 2025 by rpki-client