Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/28d0c262-8ea2-444a-ab1e-6d07c3483e45/be870cf7-5d45-3116-afeb-edc5f5b3ae8d.roa
File: be870cf7-5d45-3116-afeb-edc5f5b3ae8d.roa (raw, json)
Hash identifier: Ab38Ws+MiFqxacuP0FJO4OlmATUVQsAKW92SOTMmA9M=
Subject key identifier: D5:43:7A:96:F9:4B:28:9A:51:1E:F0:B5:FC:D5:D6:F8:97:07:60:3D
Certificate issuer: /CN=28d0c262-8ea2-444a-ab1e-6d07c3483e45
Certificate serial: 010D0C9F432858483885585E15CECA8D6DC831A0
Authority key identifier: 7B:FD:21:C3:F3:A0:5F:FC:74:CB:DE:A6:8F:D9:34:04:EC:8B:08:EE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/28d0c262-8ea2-444a-ab1e-6d07c3483e45.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/28d0c262-8ea2-444a-ab1e-6d07c3483e45/be870cf7-5d45-3116-afeb-edc5f5b3ae8d.roa
Signing time: Mon 16 Dec 2024 02:00:39 +0000
ROA not before: Mon 16 Dec 2024 02:00:39 +0000
ROA not after: Sun 16 Mar 2025 01:00:39 +0000
asID: 7018
IP address blocks: 216.150.72.0/24 maxlen: 24
216.150.74.0/24 maxlen: 24
216.150.75.0/24 maxlen: 24
216.150.77.0/24 maxlen: 24
216.150.78.0/24 maxlen: 24
216.150.79.0/24 maxlen: 24
216.150.80.0/24 maxlen: 24
216.150.81.0/24 maxlen: 24
216.150.82.0/24 maxlen: 24
216.150.83.0/24 maxlen: 24
216.150.84.0/24 maxlen: 24
216.150.85.0/24 maxlen: 24
216.150.86.0/24 maxlen: 24
216.150.87.0/24 maxlen: 24
216.150.88.0/24 maxlen: 24
216.150.89.0/24 maxlen: 24
216.150.90.0/24 maxlen: 24
216.150.91.0/24 maxlen: 24
216.150.92.0/24 maxlen: 24
216.150.93.0/24 maxlen: 24
216.150.94.0/24 maxlen: 24
216.150.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:38:85:58:5e:15:ce:ca:8d:6d:c8:31:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28d0c262-8ea2-444a-ab1e-6d07c3483e45
Validity
Not Before: Dec 16 02:00:39 2024 GMT
Not After : Mar 16 01:00:39 2025 GMT
Subject: CN=0c9311d8-94b4-43c9-8115-04b541015f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f7:58:21:94:49:aa:fe:b7:a3:a7:1f:c9:fc:
ea:8d:80:ef:48:17:b9:e0:be:05:0f:a5:1b:d3:36:
a8:54:b0:be:36:22:7c:b7:6d:7f:65:6e:18:6f:16:
f8:fc:f6:bf:43:5f:66:ac:96:44:d1:cc:90:fe:f9:
da:af:e5:ea:e7:ef:fc:24:32:66:4d:11:6d:50:a6:
54:2f:97:ce:32:fe:22:60:09:f8:d1:8f:3e:d6:f1:
9f:53:b9:32:04:6c:bb:12:f6:2f:4b:2d:32:58:da:
1d:72:cb:9d:f7:a3:0a:c8:c5:a7:53:44:99:73:ab:
51:d3:cb:53:ea:4a:d8:33:53:20:03:5e:df:fb:1a:
01:c7:1a:e5:8f:d2:6f:db:09:ca:f5:41:25:bf:c4:
c3:cb:30:5f:f9:b1:63:03:61:8c:4f:2a:84:86:07:
91:8f:e6:2a:f0:3f:2a:45:50:ef:be:28:9b:9b:86:
15:65:f2:13:9f:c3:c5:a4:9f:e9:39:35:f5:39:7b:
ec:9b:19:ee:47:28:19:86:06:95:bb:25:69:e5:77:
21:ec:e1:c5:9e:0b:b2:38:ae:5a:2c:31:ed:e7:15:
be:ef:4d:13:16:31:0a:41:d1:c4:c2:6d:5f:17:93:
4a:a2:34:19:7d:fd:1f:3f:1e:3a:30:00:fd:98:4f:
c5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:43:7A:96:F9:4B:28:9A:51:1E:F0:B5:FC:D5:D6:F8:97:07:60:3D
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/28d0c262-8ea2-444a-ab1e-6d07c3483e45/be870cf7-5d45-3116-afeb-edc5f5b3ae8d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/28d0c262-8ea2-444a-ab1e-6d07c3483e45/28d0c262-8ea2-444a-ab1e-6d07c3483e45.crl
X509v3 Authority Key Identifier:
keyid:7B:FD:21:C3:F3:A0:5F:FC:74:CB:DE:A6:8F:D9:34:04:EC:8B:08:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/28d0c262-8ea2-444a-ab1e-6d07c3483e45.cer
sbgp-ipAddrBlock: critical
IPv4:
216.150.72.0/24
216.150.74.0/23
216.150.77.0-216.150.95.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
04:82:38:23:64:57:ba:f2:d8:4d:12:35:76:fd:06:f0:1b:b5:
dd:4b:8d:7e:b5:c6:6c:d5:f3:d6:3d:93:56:e6:c8:ef:01:7e:
64:cc:19:cc:48:a7:74:37:7f:97:27:bd:0d:d7:91:e1:01:dd:
74:ed:e0:fd:ca:cb:54:23:b7:d8:ea:eb:d2:81:67:10:8e:28:
b2:21:d1:bb:3e:b5:3a:2d:52:c5:93:da:6d:28:32:c1:5d:bd:
35:34:0a:52:17:f7:fd:4e:6d:cd:9f:df:f3:df:03:67:ea:97:
ee:a2:7d:9c:28:50:ba:0c:13:df:2c:0a:04:0e:df:36:b3:50:
71:84:1a:92:dc:89:33:1e:0d:a3:f8:96:f5:c6:56:2c:f7:4e:
99:3f:54:86:62:d7:66:9f:61:e6:04:de:3e:88:a5:5c:54:29:
78:c2:f2:f6:a2:d1:f0:d4:8a:9e:39:4f:86:a4:67:5a:b8:08:
26:20:e1:ab:39:17:df:3f:5d:bd:a7:bd:ca:38:7e:7c:b2:e7:
09:76:87:54:cd:6a:c5:7a:c0:df:10:fb:51:b6:6c:66:b0:37:
a2:2c:fa:76:66:1c:32:cc:35:51:70:06:df:63:9d:42:4c:62:
72:7a:67:13:37:b8:42:aa:c1:16:89:a6:d5:83:be:fd:1d:bd:
37:53:5b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 19:53:07 2025 by rpki-client