Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0ab2447c-9735-4548-ac30-fc578e8e36ba/28f16384-eb96-3fc5-961a-187be7f3b5a2.roa
File: 28f16384-eb96-3fc5-961a-187be7f3b5a2.roa (raw, json)
Hash identifier: xijVg/JDE7ZkPakUluEr8JBXNsROS+hUVE97b5Y6za8=
Subject key identifier: E5:48:59:EC:AD:79:64:B5:6D:4F:65:D6:0C:E7:2B:18:0F:59:DA:8B
Certificate issuer: /CN=0ab2447c-9735-4548-ac30-fc578e8e36ba
Certificate serial: 010D0C9F432858480BDA749EA9D7AE8FF0965400
Authority key identifier: 50:1A:13:32:60:6C:E8:3D:0D:71:EF:D8:32:F1:6F:1E:A4:73:DB:94
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0ab2447c-9735-4548-ac30-fc578e8e36ba.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0ab2447c-9735-4548-ac30-fc578e8e36ba/28f16384-eb96-3fc5-961a-187be7f3b5a2.roa
Signing time: Sat 30 Nov 2024 02:00:39 +0000
ROA not before: Sat 30 Nov 2024 02:00:39 +0000
ROA not after: Fri 28 Feb 2025 02:00:39 +0000
asID: 22781
IP address blocks: 216.131.64.0/22 maxlen: 22
216.131.69.0/24 maxlen: 24
216.131.70.0/23 maxlen: 23
216.131.90.0/23 maxlen: 23
216.131.92.0/22 maxlen: 22
216.131.96.0/21 maxlen: 21
216.131.113.0/24 maxlen: 24
216.131.115.0/24 maxlen: 24
216.131.119.0/24 maxlen: 24
216.131.122.0/23 maxlen: 23
216.131.124.0/22 maxlen: 22
216.169.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:0b:da:74:9e:a9:d7:ae:8f:f0:96:54:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ab2447c-9735-4548-ac30-fc578e8e36ba
Validity
Not Before: Nov 30 02:00:39 2024 GMT
Not After : Feb 28 02:00:39 2025 GMT
Subject: CN=373a0870-3ce1-4f6e-925d-94154d572346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:86:57:f8:3b:e3:f3:7d:a2:be:a6:96:37:7d:
26:3a:6e:9a:3f:17:e1:96:82:44:80:70:c5:00:0e:
8f:ae:48:b2:42:10:a4:6a:a5:57:90:1a:0e:72:bd:
86:bd:b8:86:4b:22:75:e3:68:32:27:e6:30:c0:f1:
95:f7:2c:18:2f:a8:86:6c:d8:75:e6:7a:49:c2:c4:
3f:0b:c9:df:94:e5:de:ad:9a:62:48:3f:f7:0e:3d:
6c:6a:48:ce:fc:4b:31:9b:6d:8f:55:8c:83:25:e5:
70:15:d5:4d:57:7f:fa:63:51:00:1c:00:07:98:1d:
a2:b4:be:d4:57:1e:3b:c8:47:f9:c9:84:5c:f8:38:
00:e3:90:de:8b:b4:81:59:d7:45:55:5a:02:68:6b:
38:a8:49:a4:28:2a:15:18:5e:69:68:11:85:61:82:
74:2c:dc:73:c7:54:ab:51:09:c1:45:81:cd:1a:79:
57:79:ad:e5:72:d1:9c:52:25:7a:b6:93:50:a3:99:
8b:59:f6:a7:58:9e:0d:38:90:2a:d0:db:0d:2b:a6:
58:d8:1c:5b:d1:7f:73:f5:03:50:bc:5d:b1:35:e1:
4b:49:00:88:e6:1b:a1:de:ab:1f:e4:e6:7f:70:bb:
d2:82:09:58:0d:04:0f:ba:22:65:03:8d:78:83:4d:
5e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:48:59:EC:AD:79:64:B5:6D:4F:65:D6:0C:E7:2B:18:0F:59:DA:8B
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0ab2447c-9735-4548-ac30-fc578e8e36ba/28f16384-eb96-3fc5-961a-187be7f3b5a2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0ab2447c-9735-4548-ac30-fc578e8e36ba/0ab2447c-9735-4548-ac30-fc578e8e36ba.crl
X509v3 Authority Key Identifier:
keyid:50:1A:13:32:60:6C:E8:3D:0D:71:EF:D8:32:F1:6F:1E:A4:73:DB:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/0ab2447c-9735-4548-ac30-fc578e8e36ba.cer
sbgp-ipAddrBlock: critical
IPv4:
216.131.64.0/22
216.131.69.0-216.131.71.255
216.131.90.0-216.131.103.255
216.131.113.0/24
216.131.115.0/24
216.131.119.0/24
216.131.122.0-216.131.127.255
216.169.128.0/22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
3c:65:79:fe:e9:2b:cf:cc:14:85:f7:4b:b4:c8:18:ba:88:94:
92:a9:b3:4d:78:b7:7a:70:65:30:98:4b:c9:61:54:d2:0f:b5:
f4:ab:e8:d6:34:d5:25:ff:78:fe:25:7b:0a:3a:5c:06:e2:0c:
b7:fc:1a:98:6d:cf:7c:4b:db:2d:43:92:09:08:e1:04:ea:1d:
28:da:a3:bc:46:a7:57:eb:c8:74:b4:60:66:cc:07:a8:28:38:
ae:87:83:ae:49:a7:bc:77:d8:32:3b:89:84:6b:84:e2:fc:97:
21:14:44:b1:df:4d:50:23:00:93:a6:f9:37:23:27:4b:e5:ec:
8c:fd:d4:00:3b:ce:ba:d1:3c:d3:c4:10:78:d6:f8:0d:c7:45:
ee:17:1a:b1:a7:2c:0a:5a:f7:06:57:de:47:8a:57:08:14:ee:
78:6c:23:13:f9:86:cb:07:91:b5:bb:63:c9:b3:a4:93:4c:2f:
19:df:f2:c0:d2:0f:ad:b1:fe:3d:38:d1:6f:98:8a:80:ee:86:
08:61:b6:c0:ff:14:4a:b9:68:23:0c:76:96:9a:30:8f:b3:78:
46:c5:5e:e5:e9:9f:e3:5d:6f:ad:22:4b:5c:e9:73:f2:a9:8b:
ca:bd:8c:25:53:f3:a1:b9:5b:ab:63:a9:44:9f:4a:b9:c5:c7:
84:56:ab:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:02:39 2025 by rpki-client