Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
File: cb90c805-a9ab-3bdd-afdc-0a026851da93.roa (raw, json)
Hash identifier: 3Ezut9hqQqEF5XbiRv0P0blGuXE794zQsP5cQ/Cklqs=
Subject key identifier: E7:D6:B3:CC:38:3A:F1:81:4D:AD:E2:61:42:B7:5F:46:29:55:15:1D
Certificate issuer: /CN=2aa438c9-0cbb-4364-946d-9714249a8222
Certificate serial: 010D0C9F432858452CF988EA9E196607D1703B80
Authority key identifier: 05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
Signing time: Mon 11 Mar 2024 20:24:25 +0000
ROA not before: Mon 11 Mar 2024 20:24:25 +0000
ROA not after: Sun 09 Jun 2024 20:24:25 +0000
asID: 32934
IP address blocks: 157.240.215.0/24 maxlen: 24
157.240.15.0/24 maxlen: 24
157.240.253.0/24 maxlen: 24
157.240.254.0/24 maxlen: 24
157.240.251.0/24 maxlen: 24
157.240.249.0/24 maxlen: 24
157.240.243.0/24 maxlen: 24
157.240.244.0/24 maxlen: 24
157.240.245.0/24 maxlen: 24
157.240.247.0/24 maxlen: 24
157.240.252.0/24 maxlen: 24
157.240.11.0/24 maxlen: 24
157.240.9.0/24 maxlen: 24
157.240.8.0/24 maxlen: 24
157.240.14.0/24 maxlen: 24
157.240.13.0/24 maxlen: 24
157.240.12.0/24 maxlen: 24
157.240.7.0/24 maxlen: 24
157.240.199.0/24 maxlen: 24
157.240.198.0/24 maxlen: 24
157.240.197.0/24 maxlen: 24
157.240.196.0/24 maxlen: 24
157.240.31.0/24 maxlen: 24
157.240.195.0/24 maxlen: 24
157.240.192.0/24 maxlen: 24
157.240.203.0/24 maxlen: 24
157.240.200.0/24 maxlen: 24
157.240.201.0/24 maxlen: 24
157.240.202.0/24 maxlen: 24
157.240.204.0/24 maxlen: 24
157.240.205.0/24 maxlen: 24
157.240.207.0/24 maxlen: 24
157.240.209.0/24 maxlen: 24
157.240.208.0/24 maxlen: 24
157.240.24.0/24 maxlen: 24
157.240.26.0/24 maxlen: 24
157.240.25.0/24 maxlen: 24
157.240.29.0/24 maxlen: 24
157.240.27.0/24 maxlen: 24
157.240.23.0/24 maxlen: 24
157.240.16.0/24 maxlen: 24
157.240.17.0/24 maxlen: 24
157.240.19.0/24 maxlen: 24
157.240.22.0/24 maxlen: 24
157.240.30.0/24 maxlen: 24
129.134.27.0/24 maxlen: 24
157.240.3.0/24 maxlen: 24
157.240.0.0/24 maxlen: 24
157.240.1.0/24 maxlen: 24
157.240.5.0/24 maxlen: 24
129.134.29.0/24 maxlen: 24
129.134.28.0/24 maxlen: 24
129.134.127.0/24 maxlen: 24
157.240.210.0/24 maxlen: 24
157.240.224.0/24 maxlen: 24
157.240.238.0/24 maxlen: 24
157.240.241.0/24 maxlen: 24
157.240.239.0/24 maxlen: 24
157.240.237.0/24 maxlen: 24
157.240.236.0/24 maxlen: 24
157.240.233.0/24 maxlen: 24
157.240.234.0/24 maxlen: 24
157.240.235.0/24 maxlen: 24
157.240.225.0/24 maxlen: 24
157.240.227.0/24 maxlen: 24
157.240.226.0/24 maxlen: 24
157.240.231.0/24 maxlen: 24
157.240.229.0/24 maxlen: 24
157.240.216.0/24 maxlen: 24
157.240.217.0/24 maxlen: 24
157.240.218.0/24 maxlen: 24
157.240.223.0/24 maxlen: 24
157.240.222.0/24 maxlen: 24
157.240.221.0/24 maxlen: 24
157.240.242.0/24 maxlen: 24
157.240.211.0/24 maxlen: 24
157.240.212.0/24 maxlen: 24
157.240.214.0/24 maxlen: 24
69.171.239.0/24 maxlen: 24
69.171.250.0/24 maxlen: 24
69.171.255.0/24 maxlen: 24
129.134.26.0/24 maxlen: 24
129.134.25.0/24 maxlen: 24
2620:0:1cfa::/48 maxlen: 48
2620:0:1cff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Fri 10 May 2024 21:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:45:2c:f9:88:ea:9e:19:66:07:d1:70:3b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa438c9-0cbb-4364-946d-9714249a8222
Validity
Not Before: Mar 11 20:24:25 2024 GMT
Not After : Jun 9 20:24:25 2024 GMT
Subject: CN=c4b04f62-c73e-4e72-a94d-7eadda126baa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:36:72:67:a3:1b:8d:bf:73:c2:02:c7:07:01:
b3:d2:40:34:30:3f:78:ba:ed:d5:f1:fa:9c:26:7b:
cd:71:26:65:3d:d9:c3:2d:66:d2:57:3d:6a:be:8a:
2c:4a:1b:57:06:e7:24:1e:7c:3f:15:7a:60:e5:6e:
c5:2a:c3:2b:e2:02:f6:4f:f0:96:bb:2a:2c:4c:6f:
21:92:fe:b9:04:4e:60:6d:62:f6:e8:c5:cf:24:91:
c9:85:b5:fb:9e:dc:f8:4f:66:8c:eb:9c:c7:2d:a3:
fb:d9:6d:a9:e4:f1:4e:ea:51:c5:f7:83:b3:62:26:
8a:89:01:7b:6e:8f:68:16:39:65:92:2e:82:ab:f5:
9e:e2:f6:bf:54:67:7a:eb:9a:e2:ec:0f:98:d4:18:
2d:35:fc:f0:e0:92:c5:af:8c:f1:ba:c9:e0:0f:23:
4e:e0:48:37:ac:95:41:cc:cc:d0:d8:6d:2b:5a:5b:
64:6f:90:cc:c7:73:5e:73:f9:62:06:b6:7c:ad:5c:
1c:c2:fa:c2:a6:57:08:f1:0b:8f:3e:0f:fb:06:46:
ae:be:2c:f6:1e:89:f4:08:45:b6:ef:b8:08:8a:2a:
d3:5f:9c:56:47:f7:6a:49:74:b0:94:95:b6:6b:19:
bf:52:98:bf:a9:a9:8d:91:69:bb:fd:1c:4f:2c:a7:
12:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D6:B3:CC:38:3A:F1:81:4D:AD:E2:61:42:B7:5F:46:29:55:15:1D
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
X509v3 Authority Key Identifier:
keyid:05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
sbgp-ipAddrBlock: critical
IPv4:
69.171.239.0/24
69.171.250.0/24
69.171.255.0/24
129.134.25.0-129.134.29.255
129.134.127.0/24
157.240.0.0/23
157.240.3.0/24
157.240.5.0/24
157.240.7.0-157.240.9.255
157.240.11.0-157.240.17.255
157.240.19.0/24
157.240.22.0-157.240.27.255
157.240.29.0-157.240.31.255
157.240.192.0/24
157.240.195.0-157.240.205.255
157.240.207.0-157.240.212.255
157.240.214.0-157.240.218.255
157.240.221.0-157.240.227.255
157.240.229.0/24
157.240.231.0/24
157.240.233.0-157.240.239.255
157.240.241.0-157.240.245.255
157.240.247.0/24
157.240.249.0/24
157.240.251.0-157.240.254.255
IPv6:
2620:0:1cfa::/48
2620:0:1cff::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
93:a0:c0:36:43:c8:dd:17:89:f5:2f:53:79:89:f1:11:53:74:
89:0e:b4:bb:9d:ae:41:95:bf:b4:d2:94:9f:e3:1c:6f:82:47:
c9:da:4a:95:7c:f1:78:b0:8f:42:d3:c0:17:d8:41:07:11:16:
b0:66:c9:4a:c9:db:c1:7b:9d:22:b8:cb:66:42:1d:5f:68:21:
da:c7:01:48:7e:a7:17:7f:ef:9e:2e:7b:7b:1e:65:a8:58:c6:
03:9f:74:0c:96:e9:b8:19:bb:7c:ef:f4:24:28:2d:98:1c:76:
4e:d1:8e:fa:c8:00:61:14:0f:0c:d3:65:f2:c9:d6:8e:dc:d5:
96:3c:f4:bf:48:47:5d:84:07:67:e7:b1:fb:3a:fb:b9:2e:cb:
32:8a:ea:44:c4:01:7a:75:2b:7d:36:4f:d4:38:ac:ed:bc:ca:
03:02:1d:b2:42:02:e5:78:b7:d7:5b:b8:69:3e:0a:8b:c9:51:
4f:ab:8b:5d:77:ed:29:12:7c:d2:34:02:15:91:45:1e:9c:ba:
9a:54:aa:0a:f1:97:a4:3d:3d:1e:98:e7:08:c1:c8:61:36:e1:
31:52:bb:43:e9:bc:6c:93:20:6c:24:91:54:82:b8:78:7e:5f:
76:a2:52:8d:23:a1:26:49:58:ef:64:8a:ec:98:17:a4:05:13:
d1:0c:19:a1
-----BEGIN CERTIFICATE-----
MIIHVTCCBj2gAwIBAgIUAQ0Mn0MoWEUs+YjqnhlmB9FwO4AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMmFhNDM4YzktMGNiYi00MzY0LTk0NmQtOTcxNDI0OWE4
MjIyMB4XDTI0MDMxMTIwMjQyNVoXDTI0MDYwOTIwMjQyNVowLzEtMCsGA1UEAxMk
YzRiMDRmNjItYzczZS00ZTcyLWE5NGQtN2VhZGRhMTI2YmFhMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1DZyZ6Mbjb9zwgLHBwGz0kA0MD94uu3V8fqc
JnvNcSZlPdnDLWbSVz1qvoosShtXBuckHnw/FXpg5W7FKsMr4gL2T/CWuyosTG8h
kv65BE5gbWL26MXPJJHJhbX7ntz4T2aM65zHLaP72W2p5PFO6lHF94OzYiaKiQF7
bo9oFjllki6Cq/We4va/VGd665ri7A+Y1BgtNfzw4JLFr4zxusngDyNO4Eg3rJVB
zMzQ2G0rWltkb5DMx3Nec/liBrZ8rVwcwvrCplcI8QuPPg/7Bkauviz2Hon0CEW2
77gIiirTX5xWR/dqSXSwlJW2axm/Upi/qamNkWm7/RxPLKcS+wIDAQABo4IEZzCC
BGMwHQYDVR0OBBYEFOfWs8w4OvGBTa3iYUK3X0YpVRUdMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0
MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0MjQ5YTgyMjIvY2I5MGM4MDUtYTlhYi0z
YmRkLWFmZGMtMGEwMjY4NTFkYTkzLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h
ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMmFhNDM4YzktMGNiYi00MzY0LTk0
NmQtOTcxNDI0OWE4MjIyLzJhYTQzOGM5LTBjYmItNDM2NC05NDZkLTk3MTQyNDlh
ODIyMi5jcmwwHwYDVR0jBBgwFoAUBSPfkxv/OUKcKv57/3pLM1boXrAwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz
OS1hMmYzLTYyOTlhM2IwMmUyOS8yYWE0MzhjOS0wY2JiLTQzNjQtOTQ2ZC05NzE0
MjQ5YTgyMjIuY2VyMIIBLwYIKwYBBQUHAQcBAf8EggEeMIIBGjCB/QQCAAEwgfYD
BABFq+8DBABFq/oDBABFq/8wDAMEAIGGGQMEAYGGHAMEAIGGfwMEAZ3wAAMEAJ3w
AwMEAJ3wBTAMAwQAnfAHAwQBnfAIMAwDBACd8AsDBAGd8BADBACd8BMwDAMEAZ3w
FgMEAp3wGDAMAwQAnfAdAwQFnfAAAwQAnfDAMAwDBACd8MMDBAGd8MwwDAMEAJ3w
zwMEAJ3w1DAMAwQBnfDWAwQAnfDaMAwDBACd8N0DBAKd8OADBACd8OUDBACd8Ocw
DAMEAJ3w6QMEBJ3w4DAMAwQAnfDxAwQBnfD0AwQAnfD3AwQAnfD5MAwDBACd8PsD
BACd8P4wGAQCAAIwEgMHACYgAAAc+gMHACYgAAAc/zBUBgNVHSABAf8ESjBIMEYG
CCsGAQUFBw4CMDowOAYIKwYBBQUHAgEWLGh0dHBzOi8vd3d3LmFyaW4ubmV0L3Jl
c291cmNlcy9ycGtpL2Nwcy5odG1sMA0GCSqGSIb3DQEBCwUAA4IBAQCToMA2Q8jd
F4n1L1N5ifERU3SJDrS7na5Blb+00pSf4xxvgkfJ2kqVfPF4sI9C08AX2EEHERaw
ZslKydvBe50iuMtmQh1faCHaxwFIfqcXf++eLnt7HmWoWMYDn3QMlum4Gbt87/Qk
KC2YHHZO0Y76yABhFA8M02XyydaO3NWWPPS/SEddhAdn57H7Ovu5LssyiupExAF6
dSt9Nk/UOKztvMoDAh2yQgLleLfXW7hpPgqLyVFPq4tdd+0pEnzSNAIVkUUenLqa
VKoK8ZekPT0emOcIwchhNuExUrtD6bxskyBsJJFUgrh4fl92olKNI6EmSVjvZIrs
mBekBRPRDBmh
-----END CERTIFICATE-----
Generated at Thu May 9 07:46:46 2024 by rpki-client on console-ams.rpki-client.org