Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/afcb60bc-cadb-350f-8ae3-1ca7606a957d.roa
File: afcb60bc-cadb-350f-8ae3-1ca7606a957d.roa (raw, json)
Hash identifier: yimFpwkW60LjUJDhE53KwdCZq+LSG1AmzFhYME2RZd4=
Subject key identifier: 12:2C:D9:13:31:65:91:FD:A7:A3:6D:2D:7D:AC:CE:01:3B:52:B7:08
Certificate issuer: /CN=8e2f3353-82b9-432b-bd94-000bf5cef0c3
Certificate serial: 010D0C9F43285848159FF5D792E5F1D7D8E8F4C0
Authority key identifier: B4:B5:6C:64:46:3D:47:EB:DC:A5:0E:CB:D0:7B:9A:33:43:55:40:45
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/afcb60bc-cadb-350f-8ae3-1ca7606a957d.roa
Signing time: Tue 03 Dec 2024 14:00:52 +0000
ROA not before: Tue 03 Dec 2024 14:00:52 +0000
ROA not after: Mon 03 Mar 2025 14:00:52 +0000
asID: 21928
IP address blocks: 144.225.0.0/16 maxlen: 24
144.227.0.0/16 maxlen: 24
144.231.0.0/16 maxlen: 24
207.52.0.0/16 maxlen: 24
207.143.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:15:9f:f5:d7:92:e5:f1:d7:d8:e8:f4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e2f3353-82b9-432b-bd94-000bf5cef0c3
Validity
Not Before: Dec 3 14:00:52 2024 GMT
Not After : Mar 3 14:00:52 2025 GMT
Subject: CN=951e925b-535c-490d-ad53-f5f56582998f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:49:29:55:f1:3a:0f:f3:2c:e9:8c:00:11:b6:
1b:f6:ea:e2:60:be:34:9c:21:49:d2:bf:c2:8b:ea:
13:6b:00:b6:ee:4e:59:da:ef:a9:6f:37:da:01:75:
7c:3e:52:7f:29:b8:42:81:d4:ac:bb:8f:b5:f5:14:
46:31:0c:bb:0c:f0:43:06:67:51:0a:ab:55:c8:c7:
19:65:aa:6f:96:46:64:b5:ff:88:6a:47:6a:15:88:
9a:23:18:90:42:71:d2:01:70:6b:f7:44:7a:9d:8b:
9b:6a:32:c2:d2:4e:1c:9d:14:4a:32:4e:50:cd:6e:
4b:db:7c:13:f0:c4:5f:ce:3e:3f:37:cf:07:dc:3d:
26:a5:68:19:9f:8e:9c:41:9f:f2:c4:f6:df:e3:6c:
24:48:8c:ed:ee:05:0a:63:bd:8b:11:d6:3d:da:ed:
a9:53:81:14:48:73:13:f3:62:0a:57:cf:48:5c:d1:
91:a7:4c:8f:14:b8:67:08:d3:f7:57:96:ae:86:16:
98:8d:62:9a:80:27:a1:8c:d6:fb:29:ac:54:7e:17:
c8:63:64:d4:6d:89:23:92:b0:4e:90:92:1f:ca:4e:
ad:8f:be:b5:2d:e1:44:a9:3d:9d:49:ca:8b:75:3f:
a6:9a:09:08:4d:ce:48:0d:4a:b7:f3:99:ee:6f:13:
05:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:2C:D9:13:31:65:91:FD:A7:A3:6D:2D:7D:AC:CE:01:3B:52:B7:08
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/afcb60bc-cadb-350f-8ae3-1ca7606a957d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3/8e2f3353-82b9-432b-bd94-000bf5cef0c3.crl
X509v3 Authority Key Identifier:
keyid:B4:B5:6C:64:46:3D:47:EB:DC:A5:0E:CB:D0:7B:9A:33:43:55:40:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/8e2f3353-82b9-432b-bd94-000bf5cef0c3.cer
sbgp-ipAddrBlock: critical
IPv4:
144.225.0.0/16
144.227.0.0/16
144.231.0.0/16
207.52.0.0/16
207.143.0.0/16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
72:70:93:bd:92:86:14:1b:a1:e6:bf:38:0b:a9:85:4d:bd:92:
78:ea:9c:6b:f5:72:7e:17:bd:68:70:ef:37:49:67:94:9f:aa:
97:6e:2a:a4:e0:3d:28:62:69:3a:9f:22:20:fb:35:c3:1b:c2:
84:6e:65:69:68:91:81:db:d8:0d:ba:be:1a:bd:df:bc:5f:d6:
0e:b2:5c:a3:25:99:27:ab:b0:09:e8:69:84:1e:03:1b:30:0f:
9a:62:01:04:d0:18:a8:2b:e5:d9:da:6c:35:c7:28:a5:e9:4b:
bb:bb:b4:af:eb:64:b0:06:24:5a:8f:6d:3b:13:8d:d8:16:5b:
99:43:6d:71:87:d1:05:0a:ed:6e:3d:24:63:75:8e:47:06:fa:
dd:b9:99:56:08:5c:20:69:c9:3c:80:fa:41:51:c8:24:2b:b2:
ee:8b:a1:11:bb:ca:eb:97:4c:ba:d7:bb:61:50:e0:64:be:bb:
dc:71:e6:32:16:c6:95:34:7d:be:55:ae:c1:ab:27:87:12:3a:
66:27:0d:b3:a6:ce:21:69:da:1e:a0:4c:07:03:d5:e7:d0:cd:
3c:df:7a:88:8f:ba:78:93:76:5c:14:f8:f9:cb:24:49:41:36:
3a:1f:c6:70:00:d8:a6:85:9b:4d:dd:a2:b1:e0:d3:e9:ec:47:
aa:12:dc:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:40:22 2025 by rpki-client