Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/8c902da3-488d-44d9-9833-f1295a9fd887/10a59856-f71a-35fa-aa0d-3c293faa8ca8.roa
File: 10a59856-f71a-35fa-aa0d-3c293faa8ca8.roa (raw, json)
Hash identifier: H3cNNVIWP4Wvs4aFUs1EepHSY2Wv5s5VK/kQZ/SAkm8=
Subject key identifier: 6C:D6:70:17:67:18:4B:5D:E1:C7:32:A7:F2:CA:ED:1A:34:0A:C7:CA
Certificate issuer: /CN=8c902da3-488d-44d9-9833-f1295a9fd887
Certificate serial: 010D0C9F432858488AE09B20A60B4F054011CEC0
Authority key identifier: 1A:3F:BD:48:B8:18:D6:2E:89:17:81:D2:0A:54:B5:D9:4C:F6:36:F2
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/8c902da3-488d-44d9-9833-f1295a9fd887.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/8c902da3-488d-44d9-9833-f1295a9fd887/10a59856-f71a-35fa-aa0d-3c293faa8ca8.roa
Signing time: Tue 14 Jan 2025 14:00:51 +0000
ROA not before: Tue 14 Jan 2025 14:00:51 +0000
ROA not after: Mon 14 Apr 2025 13:00:51 +0000
asID: 3925
IP address blocks: 209.165.201.0/24 maxlen: 24
209.165.202.0/24 maxlen: 24
209.165.209.0/24 maxlen: 24
209.165.211.0/24 maxlen: 24
209.165.212.0/24 maxlen: 24
209.165.213.0/24 maxlen: 24
209.165.214.0/24 maxlen: 24
209.165.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:8a:e0:9b:20:a6:0b:4f:05:40:11:ce:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c902da3-488d-44d9-9833-f1295a9fd887
Validity
Not Before: Jan 14 14:00:51 2025 GMT
Not After : Apr 14 13:00:51 2025 GMT
Subject: CN=916809f8-2d13-47f7-9b6f-127094b74a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:59:47:4c:2b:f8:10:c1:65:b5:7a:78:4f:d4:
14:e9:77:aa:e9:ae:5c:a2:68:4c:1b:8e:13:ae:3d:
c6:80:9f:69:10:06:39:77:bf:89:3e:91:74:55:43:
ce:f9:72:7a:67:3a:34:bb:a1:ec:a2:a9:a1:cd:e1:
f7:ee:46:1c:57:e6:48:c3:41:84:5f:58:a4:ed:9f:
1c:f1:46:b4:3f:39:7f:04:c1:71:ff:b9:bb:5f:47:
79:2c:ac:bb:93:16:d0:bc:cf:25:01:60:3e:38:a4:
12:fa:bd:e5:2a:7a:6b:c0:5a:7b:8d:99:c7:6b:fe:
4f:b2:1b:f1:00:a7:25:31:16:cf:ea:25:6e:d0:5c:
fe:22:05:d2:81:9c:fb:58:8e:bb:4f:cc:82:b7:c2:
d0:8d:ca:37:83:df:43:53:bb:2f:a3:c7:94:a4:28:
75:6e:b4:e6:9f:d5:c3:1a:66:1d:da:16:49:15:42:
0d:d5:2c:01:80:3d:f9:28:15:78:ab:fe:8f:66:27:
8d:16:32:5a:c3:8f:f4:66:4c:79:3a:08:b7:da:2f:
81:1b:5d:2a:7d:5c:fa:2f:af:41:62:ea:04:85:e4:
cd:03:a6:e5:47:07:ff:73:45:85:1a:f0:14:83:58:
c2:50:4d:d4:64:c1:91:49:8d:53:3f:09:9c:cb:0d:
24:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D6:70:17:67:18:4B:5D:E1:C7:32:A7:F2:CA:ED:1A:34:0A:C7:CA
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/8c902da3-488d-44d9-9833-f1295a9fd887/10a59856-f71a-35fa-aa0d-3c293faa8ca8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/8c902da3-488d-44d9-9833-f1295a9fd887/8c902da3-488d-44d9-9833-f1295a9fd887.crl
X509v3 Authority Key Identifier:
keyid:1A:3F:BD:48:B8:18:D6:2E:89:17:81:D2:0A:54:B5:D9:4C:F6:36:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/8c902da3-488d-44d9-9833-f1295a9fd887.cer
sbgp-ipAddrBlock: critical
IPv4:
209.165.201.0-209.165.202.255
209.165.209.0/24
209.165.211.0-209.165.215.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
30:03:0c:7b:16:a9:39:e3:ee:52:bb:b5:0d:f3:82:f5:f4:84:
b2:6d:ae:87:9b:91:06:8b:6e:1a:c2:61:42:3b:fe:76:e3:4f:
5f:0f:b1:b4:d5:87:c4:08:ea:48:56:68:3b:fa:1d:89:f9:1d:
fb:5b:47:ae:cb:e9:0b:f6:d4:75:78:8b:fd:87:21:4d:70:41:
b1:90:c3:e1:72:e1:f3:0c:fd:31:10:09:53:a2:86:c4:92:2b:
bd:a1:c6:52:62:48:31:5f:db:36:42:ec:39:99:82:e8:ed:92:
88:9d:1c:28:71:ef:8a:ac:e1:e2:d8:4e:00:e7:10:7c:d3:ed:
6d:76:b0:b5:35:6b:b0:30:a3:19:eb:e5:ac:de:66:99:5e:fc:
19:9f:1f:06:5f:ee:8a:c1:30:ee:22:22:c8:28:90:b0:9c:37:
8c:36:20:0e:80:5a:cf:9a:ae:f5:33:d0:50:3f:90:6f:e0:0d:
be:29:5e:a4:d0:36:9a:c2:84:32:32:7a:f9:84:18:4e:82:32:
0f:63:2c:e5:a8:44:68:bb:54:9a:0c:4d:1e:b4:a1:3d:91:c5:
7a:00:a7:30:0a:37:9d:c5:57:4a:f5:d6:5e:2d:48:80:ed:6d:
2b:4f:8c:bc:43:93:c5:98:03:28:7c:51:e6:6d:ba:71:3f:c6:
96:9e:19:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 16:48:51 2025 by rpki-client