Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/3b65e538-7eac-399f-a285-565152afd8f6.roa
File: 3b65e538-7eac-399f-a285-565152afd8f6.roa (raw, json)
Hash identifier: e+NvQfVsKCQxp3t0kvtwpUHFtIYCoa9wRaMU1DGKpwg=
Subject key identifier: C5:49:E8:1A:59:74:BF:5F:85:E8:AE:EF:04:DF:98:67:45:DD:DA:E8
Certificate issuer: /CN=8b7074c2-7c8f-41ac-8307-74ece44a460c
Certificate serial: 010D0C9F43285848B1F6306377C392D4D534D080
Authority key identifier: C1:CC:88:BC:4A:C0:09:D7:61:48:C3:D1:C3:B2:52:40:69:D5:9F:01
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/3b65e538-7eac-399f-a285-565152afd8f6.roa
Signing time: Tue 28 Jan 2025 14:00:52 +0000
ROA not before: Tue 28 Jan 2025 14:00:52 +0000
ROA not after: Mon 28 Apr 2025 13:00:52 +0000
asID: 33234
IP address blocks: 64.77.213.0/24 maxlen: 24
64.77.216.0/23 maxlen: 24
64.77.218.0/24 maxlen: 24
72.14.97.0/24 maxlen: 24
72.14.119.0/24 maxlen: 24
72.14.126.0/24 maxlen: 24
97.75.255.0/24 maxlen: 24
208.101.227.0/24 maxlen: 24
208.101.234.0/23 maxlen: 24
208.101.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:b1:f6:30:63:77:c3:92:d4:d5:34:d0:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b7074c2-7c8f-41ac-8307-74ece44a460c
Validity
Not Before: Jan 28 14:00:52 2025 GMT
Not After : Apr 28 13:00:52 2025 GMT
Subject: CN=39c0cd04-1d5c-45c1-80aa-e6724fca22c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:d3:7d:95:03:31:e1:7e:b3:65:66:70:20:48:
6b:5a:e9:d9:c2:2e:50:57:6f:e7:63:02:40:7e:27:
ea:8a:f5:10:f5:31:a6:dd:4f:c5:c0:d2:9e:b9:1f:
51:01:c4:eb:11:bc:d0:e0:fd:a5:3b:e1:1a:fe:52:
0e:c0:5d:87:72:bb:c5:fe:3f:7e:cb:fb:13:0f:f1:
30:45:45:cc:4d:ba:bc:48:43:e3:98:98:28:86:f2:
01:6e:c5:02:81:40:8c:7f:95:61:8c:fa:97:f1:f7:
46:55:de:28:99:75:86:5f:91:54:f9:fc:08:a5:e0:
fc:8a:7f:45:46:62:c3:0f:29:bc:12:90:13:11:b1:
01:77:0c:1c:97:c2:32:aa:db:95:40:d2:4c:d4:06:
ba:94:29:ce:00:e6:a8:5e:d8:f9:b5:a9:eb:37:f2:
c9:66:a3:19:1b:9c:5b:62:1c:d7:df:b5:e6:c0:f2:
78:e1:04:88:55:d5:c2:e6:6a:79:74:65:f7:ab:9a:
ac:e6:3b:da:46:f6:da:95:f6:8e:69:6a:ee:19:ca:
47:37:ce:36:32:f6:37:d1:50:ac:bc:cd:79:e4:6e:
41:24:2e:13:93:76:d4:2d:50:9c:f8:b6:d9:63:0b:
6a:34:15:00:a6:3f:36:cd:7e:ca:98:97:33:cc:7e:
02:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:49:E8:1A:59:74:BF:5F:85:E8:AE:EF:04:DF:98:67:45:DD:DA:E8
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/3b65e538-7eac-399f-a285-565152afd8f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c/8b7074c2-7c8f-41ac-8307-74ece44a460c.crl
X509v3 Authority Key Identifier:
keyid:C1:CC:88:BC:4A:C0:09:D7:61:48:C3:D1:C3:B2:52:40:69:D5:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/8b7074c2-7c8f-41ac-8307-74ece44a460c.cer
sbgp-ipAddrBlock: critical
IPv4:
64.77.213.0/24
64.77.216.0-64.77.218.255
72.14.97.0/24
72.14.119.0/24
72.14.126.0/24
97.75.255.0/24
208.101.227.0/24
208.101.234.0-208.101.236.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
30:ba:f7:6b:bf:ad:fc:8c:55:2f:9b:8f:8f:93:a8:3e:15:5d:
2f:3e:ea:67:3b:fc:0f:d8:c9:3c:cb:a1:03:d4:59:f9:80:b5:
e9:f8:e1:04:5f:81:13:27:ed:11:56:ca:59:7a:4d:77:1b:a3:
ac:df:28:ff:7b:ae:fc:96:e8:76:52:31:a4:1d:7b:f4:36:a6:
dd:44:a1:0a:49:b1:13:74:e7:a6:30:ff:79:00:30:e5:e7:da:
87:74:b2:39:79:a5:d4:3d:e6:31:9a:2c:5e:42:a5:74:c9:92:
95:7e:1d:a5:f7:3b:1c:62:5b:37:d4:c0:26:af:d9:d5:d9:5c:
13:6a:c2:08:3f:01:49:31:80:a8:34:c6:b0:62:44:a8:f7:1b:
2d:2f:d0:17:1a:79:a8:40:fc:47:05:91:ac:65:62:cd:31:99:
58:81:67:57:23:59:73:31:4a:26:da:f7:1a:ef:ea:d0:40:33:
c0:78:e3:2c:66:9e:b9:8d:a7:bb:4c:1c:6e:c2:86:58:fb:6a:
f0:dd:fe:22:a4:32:1b:9f:bf:22:6c:5a:f0:63:a1:4f:55:12:
9e:93:ea:0a:29:c8:62:10:5d:0e:bb:7b:89:a1:07:08:ab:b4:
d1:d3:f0:6b:08:a1:8a:e5:03:21:54:58:f7:49:f9:c8:c5:40:
21:31:0b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:40:00 2025 by rpki-client