Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/8a4c70a4-33da-4843-a3c7-c8f8d88d8035/8e538e64-2bf8-3da1-9438-625e450840da.roa
File: 8e538e64-2bf8-3da1-9438-625e450840da.roa (raw, json)
Hash identifier: VbVaqbRC+g09MKOygl+KY18BIkdAqJM79xFdxXMlfPQ=
Subject key identifier: EF:23:44:03:B2:58:6E:B0:3D:4D:0B:B3:89:69:2F:26:87:F4:C1:FC
Certificate issuer: /CN=8a4c70a4-33da-4843-a3c7-c8f8d88d8035
Certificate serial: 010D0C9F432858485CD02ABF12480939CA2FD480
Authority key identifier: 95:77:6A:09:B0:68:BA:99:B1:1C:E2:0C:CE:E3:00:FE:B6:52:AD:46
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/8a4c70a4-33da-4843-a3c7-c8f8d88d8035.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/8a4c70a4-33da-4843-a3c7-c8f8d88d8035/8e538e64-2bf8-3da1-9438-625e450840da.roa
Signing time: Sun 29 Dec 2024 02:00:39 +0000
ROA not before: Sun 29 Dec 2024 02:00:39 +0000
ROA not after: Sat 29 Mar 2025 01:00:39 +0000
asID: 15204
IP address blocks: 66.6.0.0/20 maxlen: 20
66.6.0.0/21 maxlen: 21
66.6.0.0/24 maxlen: 24
66.6.1.0/24 maxlen: 24
66.6.2.0/24 maxlen: 24
66.6.3.0/24 maxlen: 24
66.6.4.0/24 maxlen: 24
66.6.5.0/24 maxlen: 24
66.6.6.0/24 maxlen: 24
66.6.7.0/24 maxlen: 24
66.6.8.0/21 maxlen: 21
66.6.8.0/24 maxlen: 24
66.6.9.0/24 maxlen: 24
66.6.10.0/24 maxlen: 24
66.6.11.0/24 maxlen: 24
66.6.12.0/24 maxlen: 24
66.6.13.0/24 maxlen: 24
66.6.14.0/24 maxlen: 24
66.6.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:5c:d0:2a:bf:12:48:09:39:ca:2f:d4:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a4c70a4-33da-4843-a3c7-c8f8d88d8035
Validity
Not Before: Dec 29 02:00:39 2024 GMT
Not After : Mar 29 01:00:39 2025 GMT
Subject: CN=ce6238c1-b07e-4c43-8175-03a4cf43f88c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:95:ec:65:0e:e7:b4:23:93:d3:ba:3c:59:
7d:08:5b:2e:7c:4c:6d:11:e0:64:19:52:ff:e8:a6:
ae:ed:48:d9:99:64:60:d6:f0:2d:04:71:7a:64:40:
a1:0b:c3:6b:f1:56:53:eb:bc:29:53:9d:2c:17:ed:
95:a5:a0:95:25:f9:30:3d:ac:7e:7e:e4:29:c1:53:
bd:f9:23:2b:eb:5e:1b:ff:9d:85:e5:e3:19:25:91:
ef:05:c9:51:42:8c:06:ec:dd:61:ed:16:c7:b8:81:
45:d6:4c:8b:d0:df:4c:0c:0b:05:59:f5:dd:27:b6:
5d:62:5c:63:07:8a:2b:63:62:f0:28:1f:60:5d:b1:
b8:f2:a5:bb:a9:1e:13:df:e7:3f:75:37:b3:3e:27:
72:e1:ee:a7:f7:fa:68:5e:bb:68:a9:06:5e:7f:88:
75:e5:a3:31:60:0b:29:98:30:cf:1a:90:e3:e6:97:
6a:70:cb:6a:20:03:bd:6a:91:69:03:c4:12:a6:54:
57:40:9b:21:5c:53:b1:6d:84:ba:f4:6e:f3:29:21:
ee:18:2f:14:cd:5a:ca:12:fe:55:4c:5b:90:e9:bc:
40:1c:3e:b0:3e:76:f7:6e:ee:3f:d2:0f:94:cb:bb:
a9:97:28:e6:84:ba:eb:e7:f8:c7:ec:a0:75:ff:91:
2c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:23:44:03:B2:58:6E:B0:3D:4D:0B:B3:89:69:2F:26:87:F4:C1:FC
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/8a4c70a4-33da-4843-a3c7-c8f8d88d8035/8e538e64-2bf8-3da1-9438-625e450840da.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/8a4c70a4-33da-4843-a3c7-c8f8d88d8035/8a4c70a4-33da-4843-a3c7-c8f8d88d8035.crl
X509v3 Authority Key Identifier:
keyid:95:77:6A:09:B0:68:BA:99:B1:1C:E2:0C:CE:E3:00:FE:B6:52:AD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/69fd0156-bb1f-48b6-bf32-c9492286f195/8a4c70a4-33da-4843-a3c7-c8f8d88d8035.cer
sbgp-ipAddrBlock: critical
IPv4:
66.6.0.0/20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
44:56:6e:fe:95:e0:d8:32:11:a8:04:a2:7a:61:b6:9a:08:5d:
d3:e3:53:51:c6:94:08:9a:bb:b7:bc:6c:30:c9:58:f0:44:bb:
da:cd:2d:ec:94:c5:d9:22:d5:0f:96:b1:f1:99:7d:1a:94:45:
0f:7b:8c:ff:2d:af:12:5c:f1:f5:d1:f8:ee:e1:dd:5a:73:97:
36:05:1c:7c:ff:e9:91:9d:e8:99:29:f2:d8:f8:60:50:0b:af:
ca:b0:6a:72:d1:fa:3c:a8:de:5f:c0:b7:16:c0:3b:fb:85:a3:
28:cf:9f:af:6e:a6:e3:62:b8:b6:7a:44:08:da:9c:98:be:56:
cb:1f:39:9c:e5:42:72:45:8b:1d:91:c7:87:e4:23:ff:e2:8b:
97:88:86:61:f3:25:90:a0:6c:18:79:cd:84:41:92:ba:04:d2:
2e:38:c3:83:1a:3e:c7:3c:59:b8:19:6b:f4:d7:17:44:f7:c6:
8e:29:27:7e:29:4c:51:f8:dc:e9:c0:e0:db:5b:d6:f0:6e:2b:
34:f5:df:d9:40:25:07:d8:f3:89:62:4f:a3:03:ea:9f:6f:7a:
21:9b:f4:8c:1a:66:d2:e2:25:f1:b5:fd:9b:30:0c:46:b3:5b:
13:a1:73:72:d3:e1:e8:35:fc:40:38:56:58:b2:cc:24:cf:70:
6a:b5:01:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 18:02:40 2025 by rpki-client