Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa
File: 0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa (raw, json)
Hash identifier: NkVwohJOY5Pkyf+ggORNmWWshF8VN+cjz0FJoi1hkw0=
Subject key identifier: 37:8B:92:66:CA:BD:ED:F8:21:4B:C8:07:51:89:79:EF:BA:A6:DC:C8
Certificate issuer: /CN=20defc99-73f1-4ccf-93ff-ac08b7301a18
Certificate serial: 010D0C9F4328584909E6A3CF2BB6D545D8787A80
Authority key identifier: 19:52:F4:3C:BD:DA:D0:41:D8:6F:9A:EA:9A:E8:5C:4C:55:4D:78:63
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa
Signing time: Sat 01 Mar 2025 02:00:39 +0000
ROA not before: Sat 01 Mar 2025 02:00:39 +0000
ROA not after: Fri 30 May 2025 01:00:39 +0000
asID: 29757
IP address blocks: 23.168.193.0/24 maxlen: 24
104.153.44.0/24 maxlen: 24
104.153.45.0/24 maxlen: 24
104.153.46.0/24 maxlen: 24
104.153.47.0/24 maxlen: 24
162.217.144.0/24 maxlen: 24
162.217.145.0/24 maxlen: 24
162.217.146.0/24 maxlen: 24
162.217.147.0/24 maxlen: 24
192.231.255.0/24 maxlen: 24
199.231.92.0/24 maxlen: 24
199.231.93.0/24 maxlen: 24
199.231.94.0/24 maxlen: 24
199.231.95.0/24 maxlen: 24
208.72.20.0/22 maxlen: 22
208.93.216.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:09:e6:a3:cf:2b:b6:d5:45:d8:78:7a:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20defc99-73f1-4ccf-93ff-ac08b7301a18
Validity
Not Before: Mar 1 02:00:39 2025 GMT
Not After : May 30 01:00:39 2025 GMT
Subject: CN=4752d5a6-5aa6-489a-8fb2-857fed07555f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:35:19:4e:1b:c2:bf:54:99:18:96:c4:68:c0:
df:b6:e6:47:c9:2d:95:f2:0f:7f:57:9d:7d:57:07:
13:f7:9f:7e:4e:ea:5d:76:08:74:7b:c1:63:6f:30:
f2:63:a9:a0:70:71:77:43:1c:8d:dc:26:fb:27:e5:
13:63:af:0c:13:fa:29:69:12:e6:26:e9:df:ce:ef:
f0:e0:e7:c3:a2:ed:2c:52:6c:54:ce:04:bc:cf:33:
ef:ac:17:20:af:c3:16:3b:bb:03:e0:74:65:a1:d1:
75:84:04:cd:61:38:d6:34:62:e7:24:e6:b0:24:e6:
98:40:d8:96:b4:e6:de:e5:0f:37:91:ca:31:b3:68:
6d:b4:43:dc:8e:4a:b5:ca:37:76:9e:d5:c9:5d:f3:
4f:cd:27:44:58:fb:55:2c:c5:3f:9c:5e:5f:01:53:
d8:d1:63:ea:4f:9e:2c:83:20:bd:75:a4:c8:36:00:
8d:6e:0e:1e:6c:f4:f4:c1:c1:cf:6b:a9:42:59:f7:
5a:b5:e2:d0:b2:e9:8d:92:ac:a0:5c:2f:6f:ca:8e:
ca:58:1d:e6:21:81:62:2b:86:c1:5e:76:b9:41:4b:
32:00:10:ab:94:15:5f:b0:63:8d:29:8a:24:12:ce:
38:fe:6b:8f:c8:6c:6f:3c:d2:08:91:67:56:4a:9d:
5d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8B:92:66:CA:BD:ED:F8:21:4B:C8:07:51:89:79:EF:BA:A6:DC:C8
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/0be9c008-0b81-3981-bdaa-c2c0d0ec1e7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18/20defc99-73f1-4ccf-93ff-ac08b7301a18.crl
X509v3 Authority Key Identifier:
keyid:19:52:F4:3C:BD:DA:D0:41:D8:6F:9A:EA:9A:E8:5C:4C:55:4D:78:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/20defc99-73f1-4ccf-93ff-ac08b7301a18.cer
sbgp-ipAddrBlock: critical
IPv4:
23.168.193.0/24
104.153.44.0/22
162.217.144.0/22
192.231.255.0/24
199.231.92.0/22
208.72.20.0/22
208.93.216.0/22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
6b:d5:96:1e:29:3f:55:eb:f3:61:78:90:41:cf:e9:06:6d:47:
7d:f9:38:eb:0b:dd:f2:5e:ff:b5:15:79:58:53:1d:0e:62:26:
30:9b:11:4f:3b:cc:b6:60:d1:86:ef:40:1a:ec:6a:01:04:a9:
26:fe:ea:ea:f4:94:f6:dc:3f:90:f9:7f:a3:f1:11:6e:98:28:
a9:13:08:13:dc:49:c8:67:02:30:fc:ed:3a:b8:c4:b2:5c:fe:
97:71:0f:f7:88:aa:1b:d2:5b:14:bd:02:ed:b9:de:2a:ca:78:
04:b3:6d:fb:45:3b:78:b2:99:36:c8:32:a3:a0:07:a6:6b:dc:
ed:c6:cb:d1:ba:d2:0f:8f:a7:2c:78:6d:7b:e1:cf:0d:c1:c5:
2a:96:be:a7:20:19:9b:66:20:68:69:bd:ac:1a:2f:d8:5f:96:
d0:cd:e6:d5:b1:12:d2:45:51:ea:ff:99:15:0b:e6:be:99:fd:
38:a8:eb:70:ac:c5:2a:13:d3:b9:47:3b:6f:06:bd:62:7d:7f:
b2:2d:ec:c9:1f:98:bd:e3:11:c7:52:78:f8:42:1b:e9:d2:5c:
c4:36:27:0d:c6:e0:a0:0d:db:fb:58:37:fa:0d:0e:b0:98:9a:
08:93:35:51:e8:53:95:c5:31:58:26:f2:da:70:7a:80:f3:62:
34:1e:a3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:18:57 2025 by rpki-client