Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/8a4779b2-744a-3450-a43d-bf2bf5dd7bf2.roa
File: 8a4779b2-744a-3450-a43d-bf2bf5dd7bf2.roa (raw, json)
Hash identifier: z9vREME5FaoggQeiWxxxGhFELAvQu7sDdmqMNqFOFww=
Subject key identifier: 40:C6:0F:C2:6E:D2:78:13:B2:BB:8E:F3:81:1E:93:E8:0E:55:99:82
Certificate issuer: /CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff
Certificate serial: 010D0C9F43285848504037AE8B11F2B243A98240
Authority key identifier: E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/8a4779b2-744a-3450-a43d-bf2bf5dd7bf2.roa
Signing time: Tue 24 Dec 2024 14:00:53 +0000
ROA not before: Tue 24 Dec 2024 14:00:53 +0000
ROA not after: Mon 24 Mar 2025 13:00:53 +0000
asID: 17378
IP address blocks: 40.133.32.0/21 maxlen: 24
40.138.220.0/22 maxlen: 24
40.142.8.0/22 maxlen: 24
40.142.16.0/20 maxlen: 24
40.142.32.0/19 maxlen: 24
40.142.64.0/18 maxlen: 24
40.143.0.0/18 maxlen: 24
40.143.72.0/21 maxlen: 24
40.143.80.0/20 maxlen: 24
40.143.96.0/19 maxlen: 24
40.143.128.0/17 maxlen: 24
63.131.224.0/20 maxlen: 24
63.246.0.0/19 maxlen: 24
63.254.152.0/21 maxlen: 24
65.61.96.0/19 maxlen: 24
65.99.192.0/18 maxlen: 24
66.36.16.0/20 maxlen: 24
66.45.160.0/19 maxlen: 24
66.203.64.0/19 maxlen: 24
66.206.192.0/20 maxlen: 24
67.212.128.0/20 maxlen: 24
67.216.64.0/20 maxlen: 24
67.221.224.0/20 maxlen: 24
68.168.80.0/20 maxlen: 24
68.171.128.0/19 maxlen: 24
69.7.224.0/20 maxlen: 24
69.26.96.0/19 maxlen: 24
69.40.208.0/20 maxlen: 24
69.147.160.0/19 maxlen: 24
69.166.128.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:50:40:37:ae:8b:11:f2:b2:43:a9:82:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dd8be8a-bead-4d5b-a818-4d1482f479ff
Validity
Not Before: Dec 24 14:00:53 2024 GMT
Not After : Mar 24 13:00:53 2025 GMT
Subject: CN=bb0a697f-5577-4deb-b6e3-ab622cab3d07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:04:e7:4c:78:c9:22:7b:de:47:1f:0d:5f:31:
22:88:c6:7d:39:37:77:23:d0:92:16:b5:45:02:aa:
11:76:8c:71:fd:24:f2:bb:f6:ff:f3:0a:00:88:57:
52:7a:e1:8e:ad:06:aa:bc:22:5a:c6:e1:f0:c9:03:
e1:2c:a3:9e:aa:2a:f9:86:23:fe:45:92:f3:8b:ba:
2f:54:3d:ea:f6:e2:e5:0f:bd:02:fe:7a:24:d0:a0:
2e:84:4e:6e:89:4c:c0:be:a6:00:56:f9:92:71:10:
d5:09:67:2f:9a:2b:d3:a4:20:7e:aa:20:45:da:29:
f5:52:c7:05:1c:b7:d4:3e:b6:23:4d:f0:c9:7f:6a:
6b:00:05:4a:3f:38:a8:94:58:b5:b9:f0:b8:f2:74:
ca:20:56:50:7a:51:f6:00:34:da:a1:a4:24:62:52:
6a:c0:e4:39:68:53:99:6e:de:b3:59:05:e6:f0:36:
78:8b:0e:7e:88:7b:84:74:7a:32:e6:e8:0f:82:3e:
4a:f7:81:30:7c:91:9b:fb:f7:6b:02:a2:d7:ab:f5:
63:8f:63:74:2d:c6:5b:85:f0:01:3c:1f:6d:89:be:
43:fd:a7:54:bf:61:cf:1a:74:df:f9:6f:b3:31:14:
3b:2b:41:10:2c:da:e6:b3:d4:f7:b6:c6:48:d9:dd:
8e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C6:0F:C2:6E:D2:78:13:B2:BB:8E:F3:81:1E:93:E8:0E:55:99:82
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/8a4779b2-744a-3450-a43d-bf2bf5dd7bf2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff/1dd8be8a-bead-4d5b-a818-4d1482f479ff.crl
X509v3 Authority Key Identifier:
keyid:E3:28:40:84:94:46:48:1D:6F:B2:BD:50:2C:4E:64:AF:32:56:B3:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5b7fb122-dfdf-4c0c-b90d-3bc7a5feb82b/1dd8be8a-bead-4d5b-a818-4d1482f479ff.cer
sbgp-ipAddrBlock: critical
IPv4:
40.133.32.0/21
40.138.220.0/22
40.142.8.0/22
40.142.16.0-40.142.127.255
40.143.0.0/18
40.143.72.0-40.143.255.255
63.131.224.0/20
63.246.0.0/19
63.254.152.0/21
65.61.96.0/19
65.99.192.0/18
66.36.16.0/20
66.45.160.0/19
66.203.64.0/19
66.206.192.0/20
67.212.128.0/20
67.216.64.0/20
67.221.224.0/20
68.168.80.0/20
68.171.128.0/19
69.7.224.0/20
69.26.96.0/19
69.40.208.0/20
69.147.160.0/19
69.166.128.0/19
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
07:09:af:75:66:2e:6f:d2:52:55:67:84:b5:3c:da:b4:8c:d0:
ff:9c:7e:e6:7d:7e:06:6a:2e:2c:05:50:6f:2c:28:a0:08:c8:
3a:3a:ea:46:50:d0:dc:f1:1e:95:41:23:d9:9f:37:b6:8b:6b:
aa:f2:23:19:08:de:fc:e9:85:95:92:c9:46:df:8f:89:10:79:
f7:27:6d:2c:ac:a4:12:94:f4:be:43:43:7e:7b:dd:f8:7c:c1:
4d:f2:34:27:de:12:0b:92:c4:4c:ce:3d:f4:a5:c1:8e:e2:77:
7e:9d:42:05:16:97:e1:8a:40:d7:6e:68:4f:a1:95:fa:75:d3:
3d:fe:83:ae:ee:69:ef:86:37:18:47:18:ce:d6:78:df:7f:f6:
3c:59:7f:8f:10:9f:38:1e:82:3e:55:08:8e:70:cb:52:4d:ff:
ce:aa:c3:39:98:95:ec:15:19:21:77:7b:55:2f:37:d0:c2:37:
4f:50:86:ab:85:ec:04:c4:ce:a2:86:1e:06:27:fa:ce:f7:34:
30:21:21:0d:d2:47:b8:8e:f1:0e:b4:fc:dd:85:e4:31:7a:e2:
d8:ae:65:7e:b1:22:cf:e2:e1:c7:74:64:63:ad:b1:91:c0:fa:
2b:49:b8:3b:e1:56:cd:79:62:57:33:79:87:35:07:13:c6:e8:
fc:d6:3c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:35:25 2025 by rpki-client