Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/bdaa1236-db49-323d-8634-b5c7b8224fda.roa
File: bdaa1236-db49-323d-8634-b5c7b8224fda.roa (raw, json)
Hash identifier: jmsvbOSwoW+Gfje33K+i9AajOOza7AY+uY6s5yyWIZQ=
Subject key identifier: 37:6B:F3:0B:29:7E:17:10:45:58:57:ED:1F:F3:8F:21:AB:32:60:67
Certificate issuer: /CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa
Certificate serial: 010D0C9F43285848573ACE2A3BB0E4AC6CED1200
Authority key identifier: C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/bdaa1236-db49-323d-8634-b5c7b8224fda.roa
Signing time: Fri 27 Dec 2024 02:00:40 +0000
ROA not before: Fri 27 Dec 2024 02:00:40 +0000
ROA not after: Thu 27 Mar 2025 01:00:40 +0000
asID: 398210
IP address blocks: 168.220.172.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:57:3a:ce:2a:3b:b0:e4:ac:6c:ed:12:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=daa8bdf2-31df-4e1e-bcf3-96d6c5800faa
Validity
Not Before: Dec 27 02:00:40 2024 GMT
Not After : Mar 27 01:00:40 2025 GMT
Subject: CN=7ac1186c-ce32-4631-af9f-d679a1bf0bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:68:20:c8:38:d5:4b:14:e4:e1:87:8f:49:71:
26:c3:53:30:01:72:81:86:f5:d2:d4:aa:87:b6:5f:
17:9f:ec:bf:78:93:95:96:4a:65:71:09:30:7f:04:
2e:d5:7c:1f:4a:64:07:0f:58:24:e2:c2:b4:93:34:
4f:ff:5e:89:10:01:c2:6f:24:a2:27:d0:e5:a7:4a:
9f:87:bf:5e:10:5b:4c:72:a4:f3:55:fc:f8:52:c3:
48:dc:4a:c5:62:61:4d:cc:f0:e4:91:09:13:44:17:
87:b0:bc:e2:d4:e4:1f:c6:a8:b3:4b:54:ed:45:ba:
17:f2:16:de:54:1d:c8:22:07:d0:2a:e6:52:9e:43:
d0:83:b4:cc:85:70:28:91:8f:73:9e:cb:57:a1:b1:
20:2d:a6:aa:3e:c7:8f:42:b3:b9:25:ec:80:b7:41:
06:11:d5:f6:e1:43:a2:0f:14:fb:87:04:30:bc:1f:
be:0f:f9:91:e6:08:ce:45:83:6d:fc:af:73:39:e5:
eb:43:5c:a0:43:04:0f:59:0d:76:41:b3:b9:c0:6b:
56:db:91:2e:72:25:17:a9:81:47:ec:5d:ba:36:6f:
80:d6:37:84:f1:a7:b4:2c:c2:28:60:4e:54:7a:ce:
00:fe:3f:43:c0:6c:13:23:6d:4a:c4:2e:05:fe:83:
b9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:6B:F3:0B:29:7E:17:10:45:58:57:ED:1F:F3:8F:21:AB:32:60:67
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/bdaa1236-db49-323d-8634-b5c7b8224fda.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.crl
X509v3 Authority Key Identifier:
keyid:C8:21:6A:53:54:33:76:13:DB:FB:F3:B4:60:95:5E:18:1E:6A:D3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/daa8bdf2-31df-4e1e-bcf3-96d6c5800faa.cer
sbgp-ipAddrBlock: critical
IPv4:
168.220.172.0/23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
79:2a:e7:7d:2d:13:8a:55:c2:bf:69:ec:9c:ef:78:41:aa:d7:
47:27:b1:6d:c8:58:95:b1:d0:7f:9a:ae:2f:0f:51:d0:f0:19:
8f:1f:a7:9f:26:e6:32:aa:d7:eb:8e:7d:22:30:00:12:27:5d:
a2:e5:be:26:87:e4:29:60:c7:1b:00:97:2d:ad:a2:1a:58:18:
a1:c7:9c:cd:83:6e:56:43:03:0f:d7:b0:1b:93:aa:87:6e:78:
d4:f3:db:74:7a:3b:9b:84:a0:e3:35:33:81:5e:73:39:df:c4:
d8:c6:47:bb:9c:1d:b4:e0:02:96:d8:59:5e:fd:2f:69:f6:c2:
5a:38:d1:b9:d2:7f:34:f4:22:ac:0a:54:ae:e2:f1:4a:a6:4d:
58:4d:69:6e:2b:7e:21:97:3c:c6:c1:b6:cb:22:f3:3c:aa:25:
8a:dc:cd:d7:56:ef:c9:2e:b7:69:10:f4:3e:f3:d1:50:e3:7f:
c3:98:cd:c7:11:49:8f:ae:38:54:ed:e4:83:f9:f0:fa:54:47:
0d:7d:ba:1b:13:83:0c:51:98:57:d5:50:91:ff:c4:6d:1c:c5:
86:73:35:7c:94:88:44:ca:79:27:d2:b3:1c:dc:52:c7:6e:59:
7c:a0:c7:e8:d7:33:10:90:e7:b5:5b:93:d4:f5:81:4a:bf:46:
88:98:32:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 16:44:05 2025 by rpki-client