Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/95dc9741-559d-4d9b-9f8d-be3560754ffd/d3fbdcd8-72b0-324d-ad1b-1b0496e7cdb1.roa
File: d3fbdcd8-72b0-324d-ad1b-1b0496e7cdb1.roa (raw, json)
Hash identifier: s628Tg+M7LeK1kAZLovLWTIWael75LTpxpzwNv6qVS4=
Subject key identifier: E0:58:5F:69:2A:FA:46:22:A6:0B:9A:C4:BD:6E:A6:2A:29:B0:08:29
Certificate issuer: /CN=95dc9741-559d-4d9b-9f8d-be3560754ffd
Certificate serial: 010D0C9F432858489A3B476B958B274064773800
Authority key identifier: E8:F5:7F:89:EA:04:0A:03:1E:61:6E:DF:99:14:CC:5B:16:38:B0:94
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/95dc9741-559d-4d9b-9f8d-be3560754ffd.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/95dc9741-559d-4d9b-9f8d-be3560754ffd/d3fbdcd8-72b0-324d-ad1b-1b0496e7cdb1.roa
Signing time: Mon 20 Jan 2025 02:00:40 +0000
ROA not before: Mon 20 Jan 2025 02:00:40 +0000
ROA not after: Sun 20 Apr 2025 01:00:40 +0000
asID: 396949
IP address blocks: 43.231.235.0/24 maxlen: 24
78.138.46.0/24 maxlen: 24
78.138.51.0/24 maxlen: 24
83.229.5.0/24 maxlen: 24
83.229.35.0/24 maxlen: 24
104.129.130.0/24 maxlen: 24
104.129.131.0/24 maxlen: 24
104.225.140.0/24 maxlen: 24
104.225.141.0/24 maxlen: 24
138.128.242.0/24 maxlen: 24
138.128.243.0/24 maxlen: 24
138.128.244.0/24 maxlen: 24
162.251.146.0/24 maxlen: 24
162.251.147.0/24 maxlen: 24
199.19.74.0/24 maxlen: 24
213.255.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:9a:3b:47:6b:95:8b:27:40:64:77:38:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95dc9741-559d-4d9b-9f8d-be3560754ffd
Validity
Not Before: Jan 20 02:00:40 2025 GMT
Not After : Apr 20 01:00:40 2025 GMT
Subject: CN=5fec9ae5-58fa-4330-ac88-7a55fa62d3a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:60:cd:5c:70:81:a8:5c:49:91:5b:cf:3e:f1:
de:f8:d2:d8:32:90:6c:ff:73:99:13:bf:e0:b3:6c:
3c:86:1d:78:90:29:19:95:83:61:e8:10:29:fb:5d:
6a:8b:9d:3c:52:62:04:44:0b:04:d8:7c:1c:b2:cb:
ff:ef:f9:e7:65:b4:f5:9e:5e:e3:90:0b:1c:f4:61:
96:0a:af:50:25:08:e0:2c:64:06:95:33:1f:bb:66:
4b:df:84:0b:dd:28:ed:90:2f:bf:4e:7b:b1:a9:fe:
39:c7:08:7f:4f:33:3a:8d:c0:ae:ef:bb:70:4a:6f:
ae:b5:1f:2a:b8:10:09:98:6d:00:9f:5d:7d:77:81:
28:ca:df:e4:ca:92:b2:1b:c2:d9:0c:bc:a7:14:53:
9c:b5:d9:4e:d7:79:ca:b4:e0:34:40:24:72:0a:bf:
26:0e:91:a8:22:da:7e:d1:11:0c:9c:ec:a1:9d:54:
36:f3:9c:75:30:94:ed:84:ab:54:ca:5c:8f:63:b1:
79:ab:f0:ed:9a:e0:30:79:3b:10:0c:c7:55:41:e8:
88:66:dd:3f:a6:13:93:0f:f9:7e:e7:36:8b:a0:66:
a8:1c:7d:51:bd:7c:04:e9:cc:c5:26:20:25:fd:87:
b2:7d:02:d8:31:47:b9:12:b1:73:38:72:13:5c:71:
e3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:58:5F:69:2A:FA:46:22:A6:0B:9A:C4:BD:6E:A6:2A:29:B0:08:29
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/95dc9741-559d-4d9b-9f8d-be3560754ffd/d3fbdcd8-72b0-324d-ad1b-1b0496e7cdb1.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/95dc9741-559d-4d9b-9f8d-be3560754ffd/95dc9741-559d-4d9b-9f8d-be3560754ffd.crl
X509v3 Authority Key Identifier:
keyid:E8:F5:7F:89:EA:04:0A:03:1E:61:6E:DF:99:14:CC:5B:16:38:B0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/95dc9741-559d-4d9b-9f8d-be3560754ffd.cer
sbgp-ipAddrBlock: critical
IPv4:
43.231.235.0/24
78.138.46.0/24
78.138.51.0/24
83.229.5.0/24
83.229.35.0/24
104.129.130.0/23
104.225.140.0/23
138.128.242.0-138.128.244.255
162.251.146.0/23
199.19.74.0/24
213.255.227.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
0e:b6:4c:e9:05:e7:40:99:68:82:01:aa:b4:e5:8f:e8:5c:d1:
a4:1c:23:3f:b5:cb:ff:03:77:25:ae:09:9b:57:2a:a1:f2:89:
a2:6b:7a:99:9f:26:b9:85:84:5d:11:d5:6f:da:a3:09:c9:b5:
6c:aa:02:10:1e:f7:24:4a:71:3f:7d:52:12:20:31:28:e3:11:
e8:bf:a6:01:92:a2:a8:d5:5e:0b:f2:02:ed:b4:1e:a2:c6:9a:
f8:9e:11:4d:b0:3f:4c:80:5c:70:ab:18:f9:16:c1:06:ff:63:
97:aa:ef:49:4c:2e:78:45:6c:83:35:fc:26:a4:0b:80:89:3c:
b7:3f:28:83:57:7a:0c:a1:9a:41:50:ac:3f:8a:35:ac:0d:0a:
7d:5b:e3:9b:98:83:bc:2e:6a:db:fd:26:07:e9:5a:15:9d:a0:
7b:9d:9e:9b:16:37:c2:b3:c4:75:d4:f3:10:ba:5b:e0:8c:7e:
9b:0c:69:ef:1e:91:60:93:0d:f5:cf:b3:ca:bd:55:36:1e:e4:
a8:54:92:8a:13:6a:9f:6c:bd:26:d0:b7:08:15:de:50:5d:3c:
b7:f6:ca:9f:c2:82:e3:57:4b:6d:f4:38:b6:84:e0:91:82:8e:
0f:f9:12:4a:11:f9:32:09:23:15:75:fb:12:e6:58:c5:a5:13:
a9:fb:59:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:10:34 2025 by rpki-client