Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa
File: 820be15f-1ab0-3e6c-8554-951d99d18e99.roa (raw, json)
Hash identifier: 9wgEXH7Cctr4jNdTnduC/rt4DH+bkfXwNVii1aRcbPI=
Subject key identifier: 13:DB:78:8B:A7:65:1C:0C:6B:81:A5:E7:14:D8:2B:75:04:C1:68:08
Certificate issuer: /CN=32bcf38b-c46d-4bf1-8705-88aeec19abf1
Certificate serial: 010D0C9F432858491ED6EA610EB2417B2C69CF00
Authority key identifier: 67:89:04:5D:7A:3F:46:31:8E:1C:3C:F8:17:C3:56:F2:E3:86:F8:9B
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa
Signing time: Sat 08 Mar 2025 14:00:52 +0000
ROA not before: Sat 08 Mar 2025 14:00:52 +0000
ROA not after: Fri 06 Jun 2025 13:00:52 +0000
asID: 3555
IP address blocks: 192.31.9.0/24 maxlen: 24
198.17.99.0/24 maxlen: 24
198.22.152.0/24 maxlen: 24
198.137.234.0/23 maxlen: 23
199.74.244.0/24 maxlen: 24
199.79.216.0/24 maxlen: 24
199.89.132.0/23 maxlen: 23
199.89.158.0/23 maxlen: 23
199.89.160.0/24 maxlen: 24
204.89.153.0/24 maxlen: 24
204.89.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:1e:d6:ea:61:0e:b2:41:7b:2c:69:cf:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32bcf38b-c46d-4bf1-8705-88aeec19abf1
Validity
Not Before: Mar 8 14:00:52 2025 GMT
Not After : Jun 6 13:00:52 2025 GMT
Subject: CN=97b15ab4-4317-4f0e-bb42-de1e9812d511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:87:67:21:d8:82:8f:9a:3d:85:42:be:70:1f:
29:1e:66:44:b2:98:0e:5d:d9:ac:1c:03:59:3a:cb:
75:b6:65:be:59:98:9b:a0:f7:9e:dd:ca:20:e3:8d:
99:93:7b:cf:a9:73:cc:6d:ed:d8:fc:9d:e2:95:9e:
37:21:3d:e1:06:55:66:ce:cd:c9:97:2a:17:af:ad:
7e:82:09:dc:d9:72:9d:df:3b:fc:fb:2b:08:24:8c:
3f:03:67:02:a6:6e:89:a4:70:f0:cb:48:51:0e:fd:
6f:c6:22:81:b8:2d:14:15:fd:0e:90:63:1f:1e:98:
69:92:8b:6c:91:84:45:4d:7d:b9:3e:cc:b6:e0:e8:
90:0c:d0:b0:f6:c4:19:3d:0b:2e:26:ff:65:7c:ed:
9e:d1:c5:55:57:07:d1:7f:fe:1a:13:19:89:f8:76:
0d:56:12:e8:cf:3d:31:d2:b7:62:6d:67:9b:0d:1c:
cf:e9:34:c1:8f:be:08:f7:a2:d1:98:53:fc:66:c5:
f2:56:b7:cf:d6:6c:f2:7a:44:0e:aa:60:47:2d:a0:
53:7e:33:43:4d:38:af:aa:fa:71:23:b4:76:f7:35:
15:6d:a1:dd:ef:61:29:22:8a:6a:f4:a8:2b:c4:06:
3f:ef:13:2b:d5:08:ce:9f:69:26:f8:d4:23:e8:f6:
1d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:DB:78:8B:A7:65:1C:0C:6B:81:A5:E7:14:D8:2B:75:04:C1:68:08
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/820be15f-1ab0-3e6c-8554-951d99d18e99.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1/32bcf38b-c46d-4bf1-8705-88aeec19abf1.crl
X509v3 Authority Key Identifier:
keyid:67:89:04:5D:7A:3F:46:31:8E:1C:3C:F8:17:C3:56:F2:E3:86:F8:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/32bcf38b-c46d-4bf1-8705-88aeec19abf1.cer
sbgp-ipAddrBlock: critical
IPv4:
192.31.9.0/24
198.17.99.0/24
198.22.152.0/24
198.137.234.0/23
199.74.244.0/24
199.79.216.0/24
199.89.132.0/23
199.89.158.0-199.89.160.255
204.89.153.0-204.89.154.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
3d:7e:f6:e7:00:2c:e0:d0:16:bc:4b:69:d5:35:43:69:ea:c6:
6e:17:6a:dc:36:66:5c:75:77:fb:80:1b:0e:97:83:83:57:4a:
e3:0e:25:f9:4c:54:a1:84:39:63:a8:08:51:2b:74:fc:a7:df:
4f:a8:e3:04:31:de:89:1c:7f:e4:ed:c4:70:c9:d6:6d:8f:71:
a0:ff:5b:75:81:d8:11:cb:fb:f0:08:60:b5:33:7d:eb:6a:9c:
44:71:42:71:7d:93:e3:35:96:65:eb:3a:23:1e:3c:4f:3d:88:
5d:5e:74:72:d4:de:bd:01:ab:ef:d8:b0:31:08:4e:e2:5e:29:
f2:10:07:3f:c0:ee:90:bc:83:50:f4:a0:29:82:99:59:57:d8:
26:54:0b:87:1f:c6:83:cf:18:30:88:1b:75:79:d4:53:6c:0c:
bb:b0:50:e9:c2:43:9c:e8:e5:b3:2a:94:69:00:4c:dc:e9:fd:
49:24:f1:22:ea:fb:41:c0:71:a5:1b:03:98:8d:1a:57:bb:e7:
ae:d6:c6:44:2a:f8:bc:41:86:78:82:1e:89:2b:ea:f5:7e:12:
c0:c0:91:6d:a3:58:e2:a1:df:4b:1d:da:17:65:c2:50:92:53:
a9:51:24:37:10:fc:e3:6e:16:b8:d1:1f:6b:79:b4:6d:f6:74:
ec:a3:eb:23
-----BEGIN CERTIFICATE-----
MIIGgzCCBWugAwIBAgIUAQ0Mn0MoWEke1uphDrJBeyxpzwAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMzJiY2YzOGItYzQ2ZC00YmYxLTg3MDUtODhhZWVjMTlh
YmYxMB4XDTI1MDMwODE0MDA1MloXDTI1MDYwNjEzMDA1MlowLzEtMCsGA1UEAxMk
OTdiMTVhYjQtNDMxNy00ZjBlLWJiNDItZGUxZTk4MTJkNTExMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYdnIdiCj5o9hUK+cB8pHmZEspgOXdmsHANZ
Ost1tmW+WZiboPee3cog442Zk3vPqXPMbe3Y/J3ilZ43IT3hBlVmzs3JlyoXr61+
ggnc2XKd3zv8+ysIJIw/A2cCpm6JpHDwy0hRDv1vxiKBuC0UFf0OkGMfHphpkots
kYRFTX25Psy24OiQDNCw9sQZPQsuJv9lfO2e0cVVVwfRf/4aExmJ+HYNVhLozz0x
0rdibWebDRzP6TTBj74I96LRmFP8ZsXyVrfP1mzyekQOqmBHLaBTfjNDTTivqvpx
I7R29zUVbaHd72EpIopq9KgrxAY/7xMr1QjOn2km+NQj6PYdLwIDAQABo4IDlTCC
A5EwHQYDVR0OBBYEFBPbeIunZRwMa4Gl5xTYK3UEwWgIMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzg3MWRhNDBmLTc5M2EtNGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8zMmJj
ZjM4Yi1jNDZkLTRiZjEtODcwNS04OGFlZWMxOWFiZjEvODIwYmUxNWYtMWFiMC0z
ZTZjLTg1NTQtOTUxZDk5ZDE4ZTk5LnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy84NzFkYTQwZi03
OTNhLTRhNDUtYTBhOS05NzgxNDgzMjFhMDcvMzJiY2YzOGItYzQ2ZC00YmYxLTg3
MDUtODhhZWVjMTlhYmYxLzMyYmNmMzhiLWM0NmQtNGJmMS04NzA1LTg4YWVlYzE5
YWJmMS5jcmwwHwYDVR0jBBgwFoAUZ4kEXXo/RjGOHDz4F8NW8uOG+JswDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2EtNGE0
NS1hMGE5LTk3ODE0ODMyMWEwNy8zMmJjZjM4Yi1jNDZkLTRiZjEtODcwNS04OGFl
ZWMxOWFiZjEuY2VyMF8GCCsGAQUFBwEHAQH/BFAwTjBMBAIAATBGAwQAwB8JAwQA
xhFjAwQAxhaYAwQBxonqAwQAx0r0AwQAx0/YAwQBx1mEMAwDBAHHWZ4DBADHWaAw
DAMEAMxZmQMEAMxZmjBUBgNVHSABAf8ESjBIMEYGCCsGAQUFBw4CMDowOAYIKwYB
BQUHAgEWLGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jlc291cmNlcy9ycGtpL2Nwcy5o
dG1sMA0GCSqGSIb3DQEBCwUAA4IBAQA9fvbnACzg0Ba8S2nVNUNp6sZuF2rcNmZc
dXf7gBsOl4ODV0rjDiX5TFShhDljqAhRK3T8p99PqOMEMd6JHH/k7cRwydZtj3Gg
/1t1gdgRy/vwCGC1M33rapxEcUJxfZPjNZZl6zojHjxPPYhdXnRy1N69Aavv2LAx
CE7iXinyEAc/wO6QvINQ9KApgplZV9gmVAuHH8aDzxgwiBt1edRTbAy7sFDpwkOc
6OWzKpRpAEzc6f1JJPEi6vtBwHGlGwOYjRpXu+eu1sZEKvi8QYZ4gh6JK+r1fhLA
wJFto1jiod9LHdoXZcJQklOpUSQ3EPzjbha40R9rebRt9nTso+sj
-----END CERTIFICATE-----
Generated at Fri Apr 4 15:59:37 2025 by rpki-client