Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
File: 4ccec03b-e500-3150-8eff-15de50817fe6.roa (raw, json)
Hash identifier: VXzMPkC6t7I5fYDOZwGwfZ3sZZ1Jv2jRPLwpXb63+Ok=
Subject key identifier: EB:41:EC:0A:91:88:63:CB:99:51:C9:B4:D3:E1:F7:18:3A:72:C2:26
Certificate issuer: /CN=cb01b28a-436d-42dd-8750-5361f2309297
Certificate serial: 010D0C9F432858473360988A629C578A379FDB20
Authority key identifier: A0:3F:D7:81:F7:6B:86:20:05:40:B3:B0:F1:5E:57:49:8A:88:1E:C4
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
Signing time: Fri 13 Sep 2024 13:00:41 +0000
ROA not before: Fri 13 Sep 2024 13:00:41 +0000
ROA not after: Thu 12 Dec 2024 14:00:41 +0000
asID: 25820
IP address blocks: 43.243.84.0/22 maxlen: 24
45.78.64.0/20 maxlen: 24
46.254.88.0/22 maxlen: 24
64.64.224.0/19 maxlen: 24
65.49.130.0/23 maxlen: 24
65.49.132.0/22 maxlen: 24
65.49.144.0/23 maxlen: 24
65.49.150.0/23 maxlen: 24
65.49.192.0/19 maxlen: 24
65.49.224.0/20 maxlen: 24
66.98.112.0/20 maxlen: 24
67.216.192.0/19 maxlen: 24
67.218.128.0/19 maxlen: 24
67.230.160.0/19 maxlen: 24
68.168.128.0/20 maxlen: 24
69.171.64.0/20 maxlen: 24
69.194.8.0/21 maxlen: 24
74.82.192.0/19 maxlen: 24
74.120.168.0/21 maxlen: 24
74.211.96.0/19 maxlen: 24
80.251.208.0/20 maxlen: 24
89.208.240.0/20 maxlen: 24
93.179.96.0/21 maxlen: 24
93.179.112.0/21 maxlen: 24
93.179.124.0/22 maxlen: 24
94.103.4.0/22 maxlen: 24
95.163.192.0/20 maxlen: 24
95.169.0.0/19 maxlen: 24
95.181.188.0/22 maxlen: 24
96.45.176.0/20 maxlen: 24
97.64.16.0/20 maxlen: 24
97.64.32.0/20 maxlen: 24
97.64.80.0/22 maxlen: 24
97.64.104.0/21 maxlen: 24
97.64.120.0/21 maxlen: 24
98.142.128.0/20 maxlen: 24
104.36.64.0/21 maxlen: 24
104.36.184.0/22 maxlen: 24
104.129.180.0/22 maxlen: 24
104.129.184.0/22 maxlen: 24
104.153.96.0/21 maxlen: 24
104.225.144.0/20 maxlen: 24
104.225.232.0/21 maxlen: 24
104.243.16.0/20 maxlen: 24
104.244.88.0/21 maxlen: 24
104.245.40.0/21 maxlen: 24
104.245.188.0/22 maxlen: 24
107.182.16.0/20 maxlen: 24
144.34.128.0/17 maxlen: 24
150.242.88.0/22 maxlen: 24
162.211.220.0/22 maxlen: 24
162.219.120.0/21 maxlen: 24
162.244.240.0/22 maxlen: 24
172.93.32.0/20 maxlen: 24
172.96.16.0/22 maxlen: 24
172.96.192.0/18 maxlen: 24
173.242.112.0/20 maxlen: 24
174.137.48.0/20 maxlen: 24
176.122.128.0/18 maxlen: 24
184.170.208.0/20 maxlen: 24
185.180.16.0/22 maxlen: 24
185.199.240.0/22 maxlen: 24
185.205.180.0/22 maxlen: 24
185.212.56.0/22 maxlen: 24
192.69.88.0/21 maxlen: 24
198.181.32.0/20 maxlen: 24
198.181.56.0/22 maxlen: 24
199.19.104.0/21 maxlen: 24
199.115.228.0/22 maxlen: 24
199.168.136.0/21 maxlen: 24
199.180.112.0/21 maxlen: 24
199.193.124.0/22 maxlen: 24
206.190.232.0/21 maxlen: 24
216.24.176.0/20 maxlen: 24
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Sat 23 Nov 2024 09:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:47:33:60:98:8a:62:9c:57:8a:37:9f:db:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb01b28a-436d-42dd-8750-5361f2309297
Validity
Not Before: Sep 13 13:00:41 2024 GMT
Not After : Dec 12 14:00:41 2024 GMT
Subject: CN=aa32d10f-4b5b-4bc7-bea2-21ec25e4ffce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6e:ad:4b:56:80:a6:22:cc:04:dc:82:e7:f9:
0d:c6:12:d9:f4:cb:7e:7e:d5:00:1c:82:fa:68:1a:
e0:0c:ad:2c:23:2c:95:0b:03:b7:c6:9b:b0:5b:b3:
d6:cf:ba:80:5d:78:3c:a6:95:7c:4a:ca:f9:61:35:
e9:54:1c:45:67:62:69:1a:a1:73:e9:16:89:7f:29:
6f:ff:89:55:d8:c9:8e:da:39:22:e1:00:cc:60:e8:
41:bc:88:4b:f5:fd:5f:5f:01:33:4f:78:8a:aa:84:
8e:a0:11:2e:65:99:06:fb:ff:c8:66:9f:11:2b:0d:
cf:86:a5:e8:10:35:43:1f:ec:53:6e:ff:ea:1b:b7:
c6:bc:e4:6d:bf:f7:b4:85:3c:bc:b4:c4:0e:40:3e:
4c:1e:2e:7c:e4:4f:16:09:84:5f:9d:88:cc:0a:ff:
7c:05:a6:0d:3e:6e:df:01:43:52:23:16:c3:8b:58:
ea:c1:a1:74:a5:04:60:59:0a:e6:ef:0d:b1:51:fd:
f3:2b:cf:01:e4:6c:14:08:79:72:94:b6:47:e1:6e:
9c:ae:53:c4:ab:6b:bd:5c:92:fa:e2:3b:7c:3a:cf:
23:aa:17:cd:0f:48:66:2b:cf:3e:f1:d1:21:c8:0f:
45:d2:a8:d8:33:52:c3:3f:dd:78:89:6c:6b:79:1f:
fe:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:41:EC:0A:91:88:63:CB:99:51:C9:B4:D3:E1:F7:18:3A:72:C2:26
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/4ccec03b-e500-3150-8eff-15de50817fe6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297/cb01b28a-436d-42dd-8750-5361f2309297.crl
X509v3 Authority Key Identifier:
keyid:A0:3F:D7:81:F7:6B:86:20:05:40:B3:B0:F1:5E:57:49:8A:88:1E:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/cb01b28a-436d-42dd-8750-5361f2309297.cer
sbgp-ipAddrBlock: critical
IPv4:
43.243.84.0/22
45.78.64.0/20
46.254.88.0/22
64.64.224.0/19
65.49.130.0-65.49.135.255
65.49.144.0/23
65.49.150.0/23
65.49.192.0-65.49.239.255
66.98.112.0/20
67.216.192.0/19
67.218.128.0/19
67.230.160.0/19
68.168.128.0/20
69.171.64.0/20
69.194.8.0/21
74.82.192.0/19
74.120.168.0/21
74.211.96.0/19
80.251.208.0/20
89.208.240.0/20
93.179.96.0/21
93.179.112.0/21
93.179.124.0/22
94.103.4.0/22
95.163.192.0/20
95.169.0.0/19
95.181.188.0/22
96.45.176.0/20
97.64.16.0-97.64.47.255
97.64.80.0/22
97.64.104.0/21
97.64.120.0/21
98.142.128.0/20
104.36.64.0/21
104.36.184.0/22
104.129.180.0-104.129.187.255
104.153.96.0/21
104.225.144.0/20
104.225.232.0/21
104.243.16.0/20
104.244.88.0/21
104.245.40.0/21
104.245.188.0/22
107.182.16.0/20
144.34.128.0/17
150.242.88.0/22
162.211.220.0/22
162.219.120.0/21
162.244.240.0/22
172.93.32.0/20
172.96.16.0/22
172.96.192.0/18
173.242.112.0/20
174.137.48.0/20
176.122.128.0/18
184.170.208.0/20
185.180.16.0/22
185.199.240.0/22
185.205.180.0/22
185.212.56.0/22
192.69.88.0/21
198.181.32.0/20
198.181.56.0/22
199.19.104.0/21
199.115.228.0/22
199.168.136.0/21
199.180.112.0/21
199.193.124.0/22
206.190.232.0/21
216.24.176.0/20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
18:8e:04:01:1e:f6:de:b0:06:f6:65:33:40:7f:eb:42:aa:47:
70:07:35:54:93:4e:82:ba:0e:8c:e3:a6:45:98:4d:e0:3c:eb:
c6:a8:8a:6e:d5:65:b8:39:d6:d7:93:e3:d7:d3:c1:2a:88:b2:
d9:0e:5f:ab:d9:20:53:02:38:a1:03:17:a2:80:c3:a8:c8:24:
5f:39:6b:ef:ad:7f:84:85:d2:6b:f8:28:c5:70:55:04:d6:2f:
d9:4c:c7:e6:41:7c:54:f9:fd:53:32:2e:d7:88:d8:b6:9e:e1:
ab:a7:be:62:e4:45:b3:ad:c7:65:ac:5f:23:ec:ec:4b:d8:b1:
19:54:a8:80:f5:c2:af:c8:79:b9:49:69:90:e8:f9:82:18:4c:
b0:3a:5f:72:21:6c:64:83:b5:eb:64:53:05:ac:7a:d3:f2:41:
51:c7:5b:6d:91:f3:1c:5f:e1:b9:3a:aa:ab:27:dc:64:76:9d:
45:d2:10:8c:8f:66:47:85:ae:93:8c:4c:f4:0f:16:19:9a:1b:
f5:07:62:a8:d4:94:a8:15:63:49:75:48:1b:ce:35:70:7f:c2:
c6:41:4b:30:ac:25:87:ba:e6:36:2b:72:03:e9:d0:75:1f:14:
1a:7d:26:40:9e:67:5d:f0:9c:b6:d4:da:c6:af:86:64:b0:09:
7f:fa:62:66
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Nov 21 21:48:59 2024 by rpki-client on console-ams.rpki-client.org