Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
File: cb90c805-a9ab-3bdd-afdc-0a026851da93.roa (raw, json)
Hash identifier: AUjABMdzL29/Jgkc1jHtg/1bg9fVkC0M7PjrUfmhQaw=
Subject key identifier: 4A:67:FE:95:6D:A0:1A:2D:5E:A9:5E:2C:26:FF:69:6C:AD:A4:A1:45
Certificate issuer: /CN=2aa438c9-0cbb-4364-946d-9714249a8222
Certificate serial: 010D0C9F43285846EC301018786E4A401B422700
Authority key identifier: 05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
Signing time: Mon 19 Aug 2024 01:00:31 +0000
ROA not before: Mon 19 Aug 2024 01:00:31 +0000
ROA not after: Sun 17 Nov 2024 02:00:31 +0000
asID: 32934
IP address blocks: 69.171.239.0/24 maxlen: 24
69.171.250.0/24 maxlen: 24
69.171.255.0/24 maxlen: 24
129.134.25.0/24 maxlen: 24
129.134.26.0/24 maxlen: 24
129.134.27.0/24 maxlen: 24
129.134.28.0/24 maxlen: 24
129.134.29.0/24 maxlen: 24
129.134.127.0/24 maxlen: 24
157.240.0.0/24 maxlen: 24
157.240.1.0/24 maxlen: 24
157.240.3.0/24 maxlen: 24
157.240.5.0/24 maxlen: 24
157.240.7.0/24 maxlen: 24
157.240.8.0/24 maxlen: 24
157.240.9.0/24 maxlen: 24
157.240.11.0/24 maxlen: 24
157.240.12.0/24 maxlen: 24
157.240.13.0/24 maxlen: 24
157.240.14.0/24 maxlen: 24
157.240.15.0/24 maxlen: 24
157.240.16.0/24 maxlen: 24
157.240.17.0/24 maxlen: 24
157.240.19.0/24 maxlen: 24
157.240.22.0/24 maxlen: 24
157.240.23.0/24 maxlen: 24
157.240.24.0/24 maxlen: 24
157.240.25.0/24 maxlen: 24
157.240.26.0/24 maxlen: 24
157.240.27.0/24 maxlen: 24
157.240.29.0/24 maxlen: 24
157.240.30.0/24 maxlen: 24
157.240.31.0/24 maxlen: 24
157.240.192.0/24 maxlen: 24
157.240.195.0/24 maxlen: 24
157.240.196.0/24 maxlen: 24
157.240.197.0/24 maxlen: 24
157.240.198.0/24 maxlen: 24
157.240.199.0/24 maxlen: 24
157.240.200.0/24 maxlen: 24
157.240.201.0/24 maxlen: 24
157.240.202.0/24 maxlen: 24
157.240.203.0/24 maxlen: 24
157.240.204.0/24 maxlen: 24
157.240.205.0/24 maxlen: 24
157.240.207.0/24 maxlen: 24
157.240.208.0/24 maxlen: 24
157.240.209.0/24 maxlen: 24
157.240.210.0/24 maxlen: 24
157.240.211.0/24 maxlen: 24
157.240.212.0/24 maxlen: 24
157.240.214.0/24 maxlen: 24
157.240.215.0/24 maxlen: 24
157.240.216.0/24 maxlen: 24
157.240.217.0/24 maxlen: 24
157.240.218.0/24 maxlen: 24
157.240.221.0/24 maxlen: 24
157.240.222.0/24 maxlen: 24
157.240.223.0/24 maxlen: 24
157.240.224.0/24 maxlen: 24
157.240.225.0/24 maxlen: 24
157.240.226.0/24 maxlen: 24
157.240.227.0/24 maxlen: 24
157.240.229.0/24 maxlen: 24
157.240.231.0/24 maxlen: 24
157.240.233.0/24 maxlen: 24
157.240.234.0/24 maxlen: 24
157.240.235.0/24 maxlen: 24
157.240.236.0/24 maxlen: 24
157.240.237.0/24 maxlen: 24
157.240.238.0/24 maxlen: 24
157.240.239.0/24 maxlen: 24
157.240.241.0/24 maxlen: 24
157.240.242.0/24 maxlen: 24
157.240.243.0/24 maxlen: 24
157.240.244.0/24 maxlen: 24
157.240.245.0/24 maxlen: 24
157.240.247.0/24 maxlen: 24
157.240.249.0/24 maxlen: 24
157.240.251.0/24 maxlen: 24
157.240.252.0/24 maxlen: 24
157.240.253.0/24 maxlen: 24
157.240.254.0/24 maxlen: 24
2620:0:1cfa::/48 maxlen: 48
2620:0:1cff::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Sun 27 Oct 2024 21:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:46:ec:30:10:18:78:6e:4a:40:1b:42:27:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa438c9-0cbb-4364-946d-9714249a8222
Validity
Not Before: Aug 19 01:00:31 2024 GMT
Not After : Nov 17 02:00:31 2024 GMT
Subject: CN=94ea8219-308b-4371-8cb0-8bc1d4777d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:20:ac:48:ff:da:56:9d:e1:7c:b2:1a:9f:9d:
b8:5f:a1:0f:87:44:d4:9f:e3:d5:3c:0f:6d:eb:46:
fd:9b:60:24:79:1a:52:6c:8e:25:35:39:8d:cc:b6:
be:d2:4f:0a:16:9d:be:e7:62:6a:cd:0d:68:2f:7b:
9a:b3:5a:60:48:15:de:35:ca:f1:5d:ef:3f:50:a5:
d6:c2:4f:e8:a1:f1:18:5a:17:4b:cf:45:43:0f:70:
e7:cd:4c:55:ec:4d:e7:df:b8:52:3d:88:21:ea:73:
f2:c9:25:bb:5a:6f:2d:a0:42:dd:b1:2a:48:a1:e0:
ea:fc:0e:60:71:03:12:4f:9e:de:f5:a5:84:85:38:
b0:90:70:91:c1:a8:d8:53:db:48:f0:8e:97:44:08:
db:48:45:77:59:ab:74:38:17:1f:1e:92:48:16:8a:
b3:91:87:20:15:c1:cd:4b:64:23:6e:02:ab:23:40:
d6:0b:d5:31:44:55:9c:b5:38:17:66:6d:e3:4b:54:
06:07:43:4b:9c:8c:03:75:4d:ab:d1:a1:1a:57:c9:
da:eb:9b:9b:9b:ce:b9:b0:dc:59:e2:e7:8d:52:80:
20:cb:b2:0a:3e:7b:64:fc:77:a2:c4:8b:93:7f:3e:
e6:fb:f8:13:5a:e6:f1:8e:26:0c:f5:ee:da:94:ef:
74:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:67:FE:95:6D:A0:1A:2D:5E:A9:5E:2C:26:FF:69:6C:AD:A4:A1:45
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/cb90c805-a9ab-3bdd-afdc-0a026851da93.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222/2aa438c9-0cbb-4364-946d-9714249a8222.crl
X509v3 Authority Key Identifier:
keyid:05:23:DF:93:1B:FF:39:42:9C:2A:FE:7B:FF:7A:4B:33:56:E8:5E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2aa438c9-0cbb-4364-946d-9714249a8222.cer
sbgp-ipAddrBlock: critical
IPv4:
69.171.239.0/24
69.171.250.0/24
69.171.255.0/24
129.134.25.0-129.134.29.255
129.134.127.0/24
157.240.0.0/23
157.240.3.0/24
157.240.5.0/24
157.240.7.0-157.240.9.255
157.240.11.0-157.240.17.255
157.240.19.0/24
157.240.22.0-157.240.27.255
157.240.29.0-157.240.31.255
157.240.192.0/24
157.240.195.0-157.240.205.255
157.240.207.0-157.240.212.255
157.240.214.0-157.240.218.255
157.240.221.0-157.240.227.255
157.240.229.0/24
157.240.231.0/24
157.240.233.0-157.240.239.255
157.240.241.0-157.240.245.255
157.240.247.0/24
157.240.249.0/24
157.240.251.0-157.240.254.255
IPv6:
2620:0:1cfa::/48
2620:0:1cff::/48
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
13:ac:22:36:c7:dd:7c:56:38:8e:a9:0b:f7:2c:7a:9c:56:02:
38:45:08:26:49:73:45:f3:ec:79:13:fb:2a:3d:79:f7:bd:64:
cb:95:06:5b:36:7f:a3:bb:08:59:9f:bf:93:ca:b0:56:2e:29:
21:94:21:c2:f6:c0:d9:5f:0d:09:da:c8:b6:58:95:2a:a8:05:
a9:7c:d8:78:b0:ec:53:42:3a:de:16:e0:66:9c:c0:77:6b:26:
1d:65:c6:a8:3b:49:16:7f:d0:c1:2d:bd:33:b8:76:39:21:41:
b9:5f:6e:79:e0:d4:7b:2d:a2:a7:e7:29:19:4a:84:0e:e5:a0:
74:97:d8:e0:be:82:2c:8a:e0:d5:e6:2e:54:fb:f3:52:c7:b4:
6f:63:7b:e0:ba:00:ac:b8:1b:0d:42:38:a2:db:ef:27:37:00:
f4:c9:46:2b:4d:91:16:08:69:5e:7e:c2:89:0f:04:e0:71:0d:
6a:7d:a4:20:6d:ca:98:c7:bc:ea:a2:e2:31:62:2a:89:a8:0d:
aa:30:ba:2a:42:6a:c5:de:ae:5c:6a:ad:41:be:3b:f5:8d:17:
fc:6b:ad:a2:02:5f:0c:cd:ed:9b:36:80:55:c6:b4:cd:1b:53:
f1:31:55:c3:64:a2:b5:35:eb:84:34:27:3c:b1:de:88:fe:bb:
bc:99:f2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 25 17:29:35 2024 by rpki-client on console-ams.rpki-client.org