Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3/3c84d7d7-8ac1-3ab2-ae77-eecff47be976.roa
File: 3c84d7d7-8ac1-3ab2-ae77-eecff47be976.roa (raw, json)
Hash identifier: 6ySHPv4VFXtSvEJa++/Kemt4PxUvlB0DIUUTI67jGd0=
Subject key identifier: 23:5E:9E:86:DC:A6:76:BA:E5:9A:A9:6A:F4:EB:70:79:0F:13:51:E0
Certificate issuer: /CN=8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3
Certificate serial: 010D0C9F43285848345569802720218DE69D2220
Authority key identifier: 33:48:4D:D7:F3:1C:85:0F:19:5D:51:25:B7:79:10:C1:DA:AF:F0:A6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3/3c84d7d7-8ac1-3ab2-ae77-eecff47be976.roa
Signing time: Sat 14 Dec 2024 14:00:52 +0000
ROA not before: Sat 14 Dec 2024 14:00:52 +0000
ROA not after: Fri 14 Mar 2025 13:00:52 +0000
asID: 19504
IP address blocks: 64.6.112.0/20 maxlen: 24
66.109.112.0/21 maxlen: 24
68.171.176.0/20 maxlen: 24
104.200.208.0/21 maxlen: 24
216.147.224.0/20 maxlen: 24
2604:1c0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:34:55:69:80:27:20:21:8d:e6:9d:22:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3
Validity
Not Before: Dec 14 14:00:52 2024 GMT
Not After : Mar 14 13:00:52 2025 GMT
Subject: CN=2b256267-facb-43f7-b468-c14bd95b9d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3f:39:83:da:0f:64:c2:72:1e:2f:39:1f:30:
5b:ae:b7:99:a9:ff:11:56:c2:bb:38:92:79:95:0d:
1c:b7:6b:3d:f4:23:2c:b5:53:55:5b:2a:7b:9c:ef:
58:37:5e:61:9b:0a:a1:56:97:55:55:a3:1d:99:b7:
78:46:df:80:d2:41:e2:4f:fe:b2:b2:2b:66:86:3c:
fc:ef:1f:56:b6:b3:33:84:e2:02:e5:79:98:f1:40:
1e:c1:5d:13:19:9b:32:f7:94:26:c2:f4:be:e4:36:
a4:4c:6e:2e:fa:a0:40:1a:b8:3f:df:96:df:05:89:
ca:7c:95:52:ce:63:ae:c1:b5:5e:66:e6:8f:5a:7d:
74:aa:3b:3f:d7:d2:45:91:d2:7c:52:b2:3a:c6:be:
a3:a1:5c:57:04:8c:78:d9:6a:46:1d:5a:06:7c:46:
01:52:3b:4d:02:a8:5c:2c:d3:20:8b:9a:8f:98:76:
b1:29:01:10:01:13:a5:3e:05:00:eb:59:71:eb:5c:
b2:06:4b:a5:ea:89:3e:9d:e2:85:01:9d:87:9b:54:
fc:dd:04:af:d5:6f:fa:35:fa:69:98:54:87:34:41:
85:9e:0b:6f:67:b6:cd:81:6a:3c:6a:35:ce:59:20:
4e:05:87:03:9e:75:4c:ef:41:8e:fb:f9:a3:da:2b:
35:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5E:9E:86:DC:A6:76:BA:E5:9A:A9:6A:F4:EB:70:79:0F:13:51:E0
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3/3c84d7d7-8ac1-3ab2-ae77-eecff47be976.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3/8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3.crl
X509v3 Authority Key Identifier:
keyid:33:48:4D:D7:F3:1C:85:0F:19:5D:51:25:B7:79:10:C1:DA:AF:F0:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8d77e3a4-ab1b-40c3-ae54-9e50a2134cd3.cer
sbgp-ipAddrBlock: critical
IPv4:
64.6.112.0/20
66.109.112.0/21
68.171.176.0/20
104.200.208.0/21
216.147.224.0/20
IPv6:
2604:1c0::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1a:32:6d:d4:c7:66:98:fd:69:d6:ea:32:80:87:cb:d8:a1:54:
2f:eb:30:38:e1:7a:09:83:30:55:5a:e9:b7:ae:a5:86:c9:a9:
69:3f:15:9b:bf:b3:e8:16:9d:14:11:67:c4:37:c4:d3:75:6b:
05:9d:8a:66:d0:a0:0f:8f:d9:32:6b:e9:fc:20:ba:b5:67:f1:
74:e4:56:27:50:12:62:78:14:1b:4e:61:82:2c:11:e9:9f:66:
76:1e:04:a0:d1:be:23:7c:fb:6c:7f:d1:10:0c:47:de:d3:51:
2e:30:01:11:a9:b8:9d:ae:da:87:c4:6a:83:ef:3d:c3:c0:a9:
4b:dc:51:07:5b:b9:43:c0:f2:bd:00:d2:d1:ac:a6:cd:bf:ee:
be:f1:9a:99:ae:8e:1e:53:d1:40:0a:79:05:2b:c6:d3:0f:53:
87:f8:ba:f6:ea:4b:32:4e:0e:fc:38:c1:74:d6:3c:56:a7:73:
e7:1b:00:71:c6:4a:fb:73:f8:33:d1:51:69:09:b7:7d:1d:a4:
b6:53:0e:4e:f0:74:e0:76:e8:de:dc:e8:9b:6c:6d:19:ad:ed:
09:2f:83:33:8d:92:05:99:fc:f2:20:ad:e9:f4:5a:1d:ac:f1:
44:23:a5:3a:46:8b:0b:7e:56:3b:42:58:cb:a7:c5:5a:c0:dc:
47:30:8a:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:22:56 2025 by rpki-client