Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/3a1c34c8-0e59-4e61-80cf-17a185f2789b/cfa4f32e-c53a-3acb-998b-283e18217244.roa
File: cfa4f32e-c53a-3acb-998b-283e18217244.roa (raw, json)
Hash identifier: SPzNchM6vfiNPemaZep1ullM2qh5EZfdkBxmCVwFSPs=
Subject key identifier: B5:C9:5A:EA:88:A6:1F:C7:C9:18:73:1A:EF:85:62:14:3C:01:F9:AD
Certificate issuer: /CN=3a1c34c8-0e59-4e61-80cf-17a185f2789b
Certificate serial: 010D0C9F4328584819CFC08AFE3ED74C3117B180
Authority key identifier: 59:54:09:0A:63:5E:F8:58:65:1B:58:C6:1E:C4:50:15:2F:0B:5A:1C
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/3a1c34c8-0e59-4e61-80cf-17a185f2789b.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/3a1c34c8-0e59-4e61-80cf-17a185f2789b/cfa4f32e-c53a-3acb-998b-283e18217244.roa
Signing time: Thu 05 Dec 2024 02:00:39 +0000
ROA not before: Thu 05 Dec 2024 02:00:39 +0000
ROA not after: Wed 05 Mar 2025 02:00:39 +0000
asID: 14618
IP address blocks: 143.220.128.0/23 maxlen: 23
143.220.130.0/23 maxlen: 23
143.220.132.0/23 maxlen: 23
143.220.134.0/23 maxlen: 23
143.220.136.0/23 maxlen: 23
143.220.138.0/23 maxlen: 23
143.220.140.0/23 maxlen: 23
143.220.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:19:cf:c0:8a:fe:3e:d7:4c:31:17:b1:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a1c34c8-0e59-4e61-80cf-17a185f2789b
Validity
Not Before: Dec 5 02:00:39 2024 GMT
Not After : Mar 5 02:00:39 2025 GMT
Subject: CN=4401a9b0-5555-491f-9a45-c3d21d068c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:75:80:31:e8:a4:ec:10:44:5d:14:70:38:20:
59:21:11:9b:ec:47:2e:c1:6a:ca:8a:bb:30:9d:03:
b3:c6:95:be:65:4b:bb:40:2c:2f:1d:87:7d:fd:3d:
1b:5b:4b:54:6d:52:9a:84:f8:cb:c7:45:00:5b:66:
19:85:28:dc:a2:3d:aa:72:44:d3:0a:41:d4:73:b1:
41:bb:fe:7e:40:cc:1f:d1:c5:a4:bc:95:62:84:c6:
05:45:54:8c:5d:98:79:31:b6:6c:aa:0e:7a:92:f2:
6f:1f:5f:16:b7:f0:f8:71:05:65:a7:88:d2:16:af:
6d:76:4f:97:d9:27:51:7d:71:6f:ee:9b:41:b3:65:
2e:1d:3a:b3:03:3b:d2:77:9a:26:67:63:2f:88:45:
16:1c:b7:41:b2:ed:8c:53:af:c8:7d:c6:8c:d8:c8:
0a:e1:d9:6a:a6:cb:7a:f5:d3:c5:bf:ee:0c:60:1c:
58:47:0c:87:b9:98:f3:c3:88:be:3e:b2:48:95:10:
71:b4:42:fc:42:f8:5e:f8:bf:53:13:13:2d:d3:3e:
31:cc:91:67:0a:ea:a6:cb:5f:22:d5:82:6d:7e:21:
63:ec:95:81:1e:d6:63:5d:fe:67:47:cc:b4:65:ef:
ff:39:82:99:cd:d1:c7:8c:4d:84:fc:4a:a3:3e:6a:
a6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:C9:5A:EA:88:A6:1F:C7:C9:18:73:1A:EF:85:62:14:3C:01:F9:AD
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/3a1c34c8-0e59-4e61-80cf-17a185f2789b/cfa4f32e-c53a-3acb-998b-283e18217244.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/3a1c34c8-0e59-4e61-80cf-17a185f2789b/3a1c34c8-0e59-4e61-80cf-17a185f2789b.crl
X509v3 Authority Key Identifier:
keyid:59:54:09:0A:63:5E:F8:58:65:1B:58:C6:1E:C4:50:15:2F:0B:5A:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/3a1c34c8-0e59-4e61-80cf-17a185f2789b.cer
sbgp-ipAddrBlock: critical
IPv4:
143.220.128.0-143.220.142.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
32:9e:ba:13:54:3b:fc:e9:b3:44:07:d6:65:b5:00:eb:ec:cd:
f5:e5:61:23:35:b2:a7:ae:39:b0:54:40:43:09:f3:0e:12:4d:
aa:00:23:58:a2:2d:6f:a5:e9:fc:c3:b3:75:5a:1a:0d:9c:c0:
d9:c3:cb:6e:0e:0f:2b:aa:1d:ea:cb:52:22:f7:db:c9:8e:c7:
ee:28:e1:61:df:f0:c2:7c:5b:0e:14:4f:2a:de:2c:a8:98:6e:
d8:74:34:1c:03:f1:d8:05:fc:e6:9d:6a:f4:d9:d8:af:cd:18:
5d:d4:4e:87:c8:d6:74:76:97:61:e3:8d:42:d8:e6:29:85:3a:
13:c6:51:07:36:08:89:5c:a1:a8:9f:2a:1e:10:f3:36:6e:2f:
80:47:37:4b:ca:fc:d0:95:82:b0:ea:af:12:b3:c6:08:3b:28:
ee:d5:52:32:43:2b:ed:7b:ce:c1:e9:96:a4:ff:3c:49:29:2f:
9f:d6:a5:e4:61:99:8c:89:d8:78:e9:84:d7:02:c4:06:a6:47:
16:44:38:9a:bd:df:29:f2:88:17:c7:72:21:f2:18:98:f9:fb:
94:5c:3a:dc:23:dc:2d:f9:ff:8a:da:54:d2:09:37:cd:32:ce:
98:7e:70:92:f2:08:35:6d:9c:a2:94:f8:93:23:42:b4:60:6e:
43:91:70:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:30:24 2025 by rpki-client