Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/0c18872e-4e90-4862-8069-3a53159075c1/cfcb808e-c69f-3cb0-ba67-a080cf94a73e.roa
File: cfcb808e-c69f-3cb0-ba67-a080cf94a73e.roa (raw, json)
Hash identifier: EbPjJaLmqALhXRG29j4Xe9HwensvlwX2aT7C5b8Wl8M=
Subject key identifier: D2:21:96:10:72:86:97:8B:14:5E:EF:FB:86:58:52:E1:2B:91:1A:E7
Certificate issuer: /CN=0c18872e-4e90-4862-8069-3a53159075c1
Certificate serial: 010D0C9F43285848222FE3EAE49A535877A8DC20
Authority key identifier: B5:1B:2D:E9:54:09:D8:DB:7B:E4:4D:5C:6B:B9:7A:8F:B5:2A:16:CF
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/0c18872e-4e90-4862-8069-3a53159075c1.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/0c18872e-4e90-4862-8069-3a53159075c1/cfcb808e-c69f-3cb0-ba67-a080cf94a73e.roa
Signing time: Sun 08 Dec 2024 02:00:39 +0000
ROA not before: Sun 08 Dec 2024 02:00:39 +0000
ROA not after: Sat 08 Mar 2025 02:00:39 +0000
asID: 31875
IP address blocks: 64.112.232.0/21 maxlen: 24
66.33.40.0/21 maxlen: 24
169.136.192.0/19 maxlen: 24
174.137.16.0/20 maxlen: 24
2606:2140::/32 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:22:2f:e3:ea:e4:9a:53:58:77:a8:dc:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c18872e-4e90-4862-8069-3a53159075c1
Validity
Not Before: Dec 8 02:00:39 2024 GMT
Not After : Mar 8 02:00:39 2025 GMT
Subject: CN=916054ed-9155-43bd-8347-5252ab6c998c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f0:34:39:85:6b:e0:8a:e7:f2:57:76:b8:9f:
4e:37:3c:6c:54:93:4c:1e:05:78:72:ac:ef:c6:77:
8c:b2:74:86:9a:08:55:f5:2c:61:45:24:da:aa:40:
15:3b:7b:b8:67:d1:84:ac:7d:96:5e:33:bc:1c:99:
45:11:71:4a:c8:ea:2c:23:bb:7b:e1:3b:70:eb:68:
f9:9a:aa:ac:ee:65:5a:10:88:c0:77:79:4e:ff:77:
da:a7:95:2e:6e:22:e0:11:89:a1:43:58:ef:7e:8a:
45:94:ca:a1:19:2a:23:a7:51:f8:f8:3e:b6:b8:7b:
50:a9:87:56:53:e1:72:14:4d:0b:58:4f:63:0f:64:
cb:1d:0a:c5:e6:b8:69:a0:9c:e4:d0:0a:3c:6a:63:
12:69:ad:cb:1a:b3:ba:1e:76:01:06:b8:78:ca:c6:
46:d7:f0:f4:ff:01:ef:d6:8f:ed:25:08:07:65:f0:
e6:5b:3d:20:d1:c2:de:72:b4:f3:f7:4f:21:e6:9e:
57:5f:4e:4b:8d:55:c5:7f:36:a5:3a:92:fa:c8:2b:
e0:48:cc:db:8c:e3:2c:08:8a:98:8e:13:d6:62:11:
ca:81:29:af:8d:4f:d4:7c:d2:df:3d:86:b0:70:ee:
36:9f:2e:b1:21:97:94:a6:99:4f:3a:35:34:d2:70:
7e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:21:96:10:72:86:97:8B:14:5E:EF:FB:86:58:52:E1:2B:91:1A:E7
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/0c18872e-4e90-4862-8069-3a53159075c1/cfcb808e-c69f-3cb0-ba67-a080cf94a73e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/0c18872e-4e90-4862-8069-3a53159075c1/0c18872e-4e90-4862-8069-3a53159075c1.crl
X509v3 Authority Key Identifier:
keyid:B5:1B:2D:E9:54:09:D8:DB:7B:E4:4D:5C:6B:B9:7A:8F:B5:2A:16:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/0c18872e-4e90-4862-8069-3a53159075c1.cer
sbgp-ipAddrBlock: critical
IPv4:
64.112.232.0/21
66.33.40.0/21
169.136.192.0/19
174.137.16.0/20
IPv6:
2606:2140::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
aa:ce:bc:2d:3c:03:20:be:78:1d:79:d4:b1:44:2c:5f:55:21:
50:56:82:e0:d9:ff:8d:19:56:8c:fe:b8:1f:df:01:6e:77:e4:
1c:26:79:e2:2d:d8:cc:15:26:b3:0f:ca:5a:0f:72:13:92:c2:
8d:78:85:b4:c9:cd:ea:10:61:63:8f:e0:5b:dd:54:52:c9:38:
f7:c1:34:70:37:45:b2:51:ad:d9:29:26:2e:93:20:df:dd:ba:
f4:7c:b5:a6:f0:c9:d4:81:44:4a:c9:a7:66:70:3c:ba:c2:77:
63:47:b9:0b:b4:e2:ea:ca:c0:15:64:be:85:d4:ef:91:f6:22:
1b:5d:e1:6f:3d:0a:d8:7d:01:4d:66:88:43:b6:12:6a:cb:a3:
d5:99:15:42:b3:04:fa:3c:16:90:d9:9a:ab:eb:7a:6e:a6:2a:
cd:32:18:74:27:c2:87:30:09:40:5b:df:35:5b:39:bf:60:a0:
d0:d9:55:8e:aa:d7:29:13:1b:7c:68:10:51:83:10:60:99:ed:
39:14:77:5e:54:80:10:7b:92:ee:7f:e2:c3:ce:7a:00:61:b9:
16:29:1c:d6:53:c5:30:a2:4a:6a:36:ac:01:9b:6b:fc:1c:25:
b3:b0:4e:12:1d:06:5a:1a:59:b9:ff:04:6a:c8:10:19:01:5c:
0d:ab:67:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 05:53:48 2025 by rpki-client