Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
File: 4ccec03b-e500-3150-8eff-15de50817fe6.roa (raw, json)
Hash identifier: K95qajHzr2ZyFTlWLG1uSwro5PJCsNFHEZwsQxJJITM=
Subject key identifier: C2:BD:10:96:E2:22:FA:05:CC:C6:78:37:6B:AE:C1:F2:D0:8B:64:D7
Certificate issuer: /CN=cb01b28a-436d-42dd-8750-5361f2309297
Certificate serial: 010D0C9F43285848F22C66884BAEEEE3876C9C80
Authority key identifier: A0:3F:D7:81:F7:6B:86:20:05:40:B3:B0:F1:5E:57:49:8A:88:1E:C4
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
Signing time: Thu 20 Feb 2025 14:00:52 +0000
ROA not before: Thu 20 Feb 2025 14:00:52 +0000
ROA not after: Wed 21 May 2025 13:00:52 +0000
asID: 25820
IP address blocks: 43.243.84.0/22 maxlen: 24
45.78.64.0/20 maxlen: 24
46.254.88.0/22 maxlen: 24
64.64.224.0/19 maxlen: 24
65.49.130.0/23 maxlen: 24
65.49.132.0/22 maxlen: 24
65.49.144.0/23 maxlen: 24
65.49.150.0/23 maxlen: 24
65.49.192.0/19 maxlen: 24
65.49.224.0/20 maxlen: 24
66.98.112.0/20 maxlen: 24
67.216.192.0/19 maxlen: 24
67.218.128.0/19 maxlen: 24
67.230.160.0/19 maxlen: 24
68.168.128.0/20 maxlen: 24
69.171.64.0/20 maxlen: 24
69.194.8.0/21 maxlen: 24
74.82.192.0/19 maxlen: 24
74.120.168.0/21 maxlen: 24
74.211.96.0/19 maxlen: 24
80.251.208.0/20 maxlen: 24
89.208.240.0/20 maxlen: 24
93.179.96.0/21 maxlen: 24
93.179.112.0/21 maxlen: 24
93.179.124.0/22 maxlen: 24
94.103.4.0/22 maxlen: 24
95.163.192.0/20 maxlen: 24
95.169.0.0/19 maxlen: 24
95.181.188.0/22 maxlen: 24
96.45.176.0/20 maxlen: 24
97.64.16.0/20 maxlen: 24
97.64.32.0/20 maxlen: 24
97.64.80.0/22 maxlen: 24
97.64.104.0/21 maxlen: 24
97.64.120.0/21 maxlen: 24
98.142.128.0/20 maxlen: 24
104.36.64.0/21 maxlen: 24
104.36.184.0/22 maxlen: 24
104.129.180.0/22 maxlen: 24
104.129.184.0/22 maxlen: 24
104.153.96.0/21 maxlen: 24
104.225.144.0/20 maxlen: 24
104.225.232.0/21 maxlen: 24
104.243.16.0/20 maxlen: 24
104.244.88.0/21 maxlen: 24
104.245.40.0/21 maxlen: 24
104.245.188.0/22 maxlen: 24
107.182.16.0/20 maxlen: 24
144.34.128.0/17 maxlen: 24
150.242.88.0/22 maxlen: 24
162.211.220.0/22 maxlen: 24
162.219.120.0/21 maxlen: 24
162.244.240.0/22 maxlen: 24
172.93.32.0/20 maxlen: 24
172.96.16.0/22 maxlen: 24
172.96.192.0/18 maxlen: 24
173.242.112.0/20 maxlen: 24
174.137.48.0/20 maxlen: 24
176.122.128.0/18 maxlen: 24
184.170.208.0/20 maxlen: 24
185.180.16.0/22 maxlen: 24
185.199.240.0/22 maxlen: 24
185.205.180.0/22 maxlen: 24
185.212.56.0/22 maxlen: 24
192.69.88.0/21 maxlen: 24
198.181.32.0/20 maxlen: 24
198.181.56.0/22 maxlen: 24
199.19.104.0/21 maxlen: 24
199.115.228.0/22 maxlen: 24
199.168.136.0/21 maxlen: 24
199.180.112.0/21 maxlen: 24
199.193.124.0/22 maxlen: 24
206.190.232.0/21 maxlen: 24
216.24.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Tue 08 Apr 2025 14:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:f2:2c:66:88:4b:ae:ee:e3:87:6c:9c:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb01b28a-436d-42dd-8750-5361f2309297
Validity
Not Before: Feb 20 14:00:52 2025 GMT
Not After : May 21 13:00:52 2025 GMT
Subject: CN=eb8f6e78-cb25-4066-ae1a-9e4497a2898d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2b:da:cc:ca:61:e8:1f:ea:6d:76:31:19:53:
05:38:08:f8:f3:d5:47:02:73:63:6a:f1:3d:74:3e:
eb:76:98:e6:67:a8:2f:74:73:ae:d3:14:da:33:dc:
a6:e8:45:a7:ef:00:bf:ef:35:95:10:af:9b:ea:cf:
ef:ca:30:ad:e4:48:8a:cc:30:ce:83:e0:ec:24:63:
ac:93:4f:37:16:4c:1f:57:26:ef:9f:ab:4c:ff:40:
02:6a:99:5f:0f:b9:37:fb:87:61:29:63:34:3f:b6:
d7:38:ae:de:40:94:bc:a1:ee:d0:a7:91:1f:ba:b4:
bc:e8:c1:25:7a:2c:d5:6a:9a:31:ee:d2:31:4f:77:
e6:26:09:a8:4d:fd:b4:13:e7:f3:65:57:bd:c6:49:
c9:27:1c:f7:c6:d4:41:ab:19:15:d4:52:9b:e6:29:
70:d5:bf:78:a5:38:de:5f:aa:5f:d1:fc:38:c3:05:
36:41:6c:aa:14:d6:14:52:78:c6:76:2b:24:3e:55:
ec:23:f4:11:2f:1c:89:86:95:9b:01:d6:38:30:d4:
1b:98:3d:46:b6:4e:3b:96:de:ca:d7:03:a3:3d:19:
f5:76:88:25:f5:da:15:ab:ff:96:f8:a2:84:be:03:
fb:f0:6f:5c:5c:42:1b:e8:cd:d4:36:8d:85:6a:18:
55:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:BD:10:96:E2:22:FA:05:CC:C6:78:37:6B:AE:C1:F2:D0:8B:64:D7
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.crl
X509v3 Authority Key Identifier:
keyid:A0:3F:D7:81:F7:6B:86:20:05:40:B3:B0:F1:5E:57:49:8A:88:1E:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
sbgp-ipAddrBlock: critical
IPv4:
43.243.84.0/22
45.78.64.0/20
46.254.88.0/22
64.64.224.0/19
65.49.130.0-65.49.135.255
65.49.144.0/23
65.49.150.0/23
65.49.192.0-65.49.239.255
66.98.112.0/20
67.216.192.0/19
67.218.128.0/19
67.230.160.0/19
68.168.128.0/20
69.171.64.0/20
69.194.8.0/21
74.82.192.0/19
74.120.168.0/21
74.211.96.0/19
80.251.208.0/20
89.208.240.0/20
93.179.96.0/21
93.179.112.0/21
93.179.124.0/22
94.103.4.0/22
95.163.192.0/20
95.169.0.0/19
95.181.188.0/22
96.45.176.0/20
97.64.16.0-97.64.47.255
97.64.80.0/22
97.64.104.0/21
97.64.120.0/21
98.142.128.0/20
104.36.64.0/21
104.36.184.0/22
104.129.180.0-104.129.187.255
104.153.96.0/21
104.225.144.0/20
104.225.232.0/21
104.243.16.0/20
104.244.88.0/21
104.245.40.0/21
104.245.188.0/22
107.182.16.0/20
144.34.128.0/17
150.242.88.0/22
162.211.220.0/22
162.219.120.0/21
162.244.240.0/22
172.93.32.0/20
172.96.16.0/22
172.96.192.0/18
173.242.112.0/20
174.137.48.0/20
176.122.128.0/18
184.170.208.0/20
185.180.16.0/22
185.199.240.0/22
185.205.180.0/22
185.212.56.0/22
192.69.88.0/21
198.181.32.0/20
198.181.56.0/22
199.19.104.0/21
199.115.228.0/22
199.168.136.0/21
199.180.112.0/21
199.193.124.0/22
206.190.232.0/21
216.24.176.0/20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
5c:01:82:79:b9:a3:ee:09:b5:1d:b5:69:bb:ca:80:14:08:b7:
7b:28:20:7f:67:99:bd:f7:66:e1:fc:c3:7b:b8:d2:8d:e5:e0:
6e:39:39:cb:b2:62:62:27:81:bd:a5:92:a3:d0:c4:d7:34:16:
3f:89:03:97:ed:1f:fb:e5:d8:3d:b4:de:ba:c9:13:9c:c5:99:
39:d6:9d:d3:58:37:d0:83:9f:a1:74:73:98:aa:2f:91:76:9b:
a8:b7:d3:a4:24:9a:fa:b8:b6:61:aa:b4:85:ee:be:59:2a:af:
e5:a0:28:9f:14:ce:a3:3a:5f:68:70:dc:d5:95:c4:c9:d8:90:
d6:2d:97:f5:b1:23:bd:b4:1c:68:c5:32:91:68:bb:d4:7c:a3:
1f:1a:a0:5f:f7:30:8b:0d:93:a7:eb:6d:15:39:a2:f4:0d:15:
4d:a3:46:55:56:05:25:7a:2a:aa:08:3e:76:7e:f6:b0:ed:04:
5d:c6:f5:71:9f:92:95:70:b1:6b:4d:d4:15:9b:c3:97:49:d9:
7f:a0:87:d9:5e:e0:81:0e:10:3c:a2:7d:95:79:a6:9f:25:82:
89:e6:70:bd:31:90:17:04:01:73:7a:38:b6:18:d2:f2:80:f6:
69:a7:ff:a1:6d:d3:9b:c0:58:49:ac:89:23:ec:ca:61:23:4c:
b3:55:e3:c9
-----BEGIN CERTIFICATE-----
MIIICzCCBvOgAwIBAgIUAQ0Mn0MoWEjyLGaIS67u44dsnIAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkY2IwMWIyOGEtNDM2ZC00MmRkLTg3NTAtNTM2MWYyMzA5
Mjk3MB4XDTI1MDIyMDE0MDA1MloXDTI1MDUyMTEzMDA1MlowLzEtMCsGA1UEAxMk
ZWI4ZjZlNzgtY2IyNS00MDY2LWFlMWEtOWU0NDk3YTI4OThkMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEArivazMph6B/qbXYxGVMFOAj489VHAnNjavE9
dD7rdpjmZ6gvdHOu0xTaM9ym6EWn7wC/7zWVEK+b6s/vyjCt5EiKzDDOg+DsJGOs
k083FkwfVybvn6tM/0ACaplfD7k3+4dhKWM0P7bXOK7eQJS8oe7Qp5EfurS86MEl
eizVapox7tIxT3fmJgmoTf20E+fzZVe9xknJJxz3xtRBqxkV1FKb5ilw1b94pTje
X6pf0fw4wwU2QWyqFNYUUnjGdiskPlXsI/QRLxyJhpWbAdY4MNQbmD1Gtk47lt7K
1wOjPRn1dogl9doVq/+W+KKEvgP78G9cXEIb6M3UNo2FahhVtQIDAQABo4IFHTCC
BRkwHQYDVR0OBBYEFMK9EJbiIvoFzMZ4N2uuwfLQi2TXMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS9jYjAx
YjI4YS00MzZkLTQyZGQtODc1MC01MzYxZjIzMDkyOTcvNGNjZWMwM2ItZTUwMC0z
MTUwLThlZmYtMTVkZTUwODE3ZmU2LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k
MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvY2IwMWIyOGEtNDM2ZC00MmRkLTg3
NTAtNTM2MWYyMzA5Mjk3L2NiMDFiMjhhLTQzNmQtNDJkZC04NzUwLTUzNjFmMjMw
OTI5Ny5jcmwwHwYDVR0jBBgwFoAUoD/XgfdrhiAFQLOw8V5XSYqIHsQwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5
NC04ZjZjLWQ2YzkxYjBiODQxNS9jYjAxYjI4YS00MzZkLTQyZGQtODc1MC01MzYx
ZjIzMDkyOTcuY2VyMIIB5QYIKwYBBQUHAQcBAf8EggHUMIIB0DCCAcwEAgABMIIB
xAMEAivzVAMEBC1OQAMEAi7+WAMEBUBA4DAMAwQBQTGCAwQDQTGAAwQBQTGQAwQB
QTGWMAwDBAZBMcADBARBMeADBARCYnADBAVD2MADBAVD2oADBAVD5qADBAREqIAD
BARFq0ADBANFwggDBAVKUsADBANKeKgDBAVK02ADBARQ+9ADBARZ0PADBANds2AD
BANds3ADBAJds3wDBAJeZwQDBARfo8ADBAVfqQADBAJftbwDBARgLbAwDAMEBGFA
EAMEBGFAIAMEAmFAUAMEA2FAaAMEA2FAeAMEBGKOgAMEA2gkQAMEAmgkuDAMAwQC
aIG0AwQCaIG4AwQDaJlgAwQEaOGQAwQDaOHoAwQEaPMQAwQDaPRYAwQDaPUoAwQC
aPW8AwQEa7YQAwQHkCKAAwQClvJYAwQCotPcAwQDott4AwQCovTwAwQErF0gAwQC
rGAQAwQGrGDAAwQErfJwAwQErokwAwQGsHqAAwQEuKrQAwQCubQQAwQCucfwAwQC
uc20AwQCudQ4AwQDwEVYAwQExrUgAwQCxrU4AwQDxxNoAwQCx3PkAwQDx6iIAwQD
x7RwAwQCx8F8AwQDzr7oAwQE2BiwMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIw
OjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jw
a2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBAFwBgnm5o+4JtR21abvKgBQI
t3soIH9nmb33ZuH8w3u40o3l4G45OcuyYmIngb2lkqPQxNc0Fj+JA5ftH/vl2D20
3rrJE5zFmTnWndNYN9CDn6F0c5iqL5F2m6i306Qkmvq4tmGqtIXuvlkqr+WgKJ8U
zqM6X2hw3NWVxMnYkNYtl/WxI720HGjFMpFou9R8ox8aoF/3MIsNk6frbRU5ovQN
FU2jRlVWBSV6KqoIPnZ+9rDtBF3G9XGfkpVwsWtN1BWbw5dJ2X+gh9le4IEOEDyi
fZV5pp8lgonmcL0xkBcEAXN6OLYY0vKA9mmn/6Ft05vAWEmsiSPsymEjTLNV48k=
-----END CERTIFICATE-----
Generated at Mon Apr 7 12:25:02 2025 by rpki-client