Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/32e3a3ad-b1ac-413d-8f98-a69429a6ca98/28664a9a-e120-3701-b0b7-b5858658be81.roa
File: 28664a9a-e120-3701-b0b7-b5858658be81.roa (raw, json)
Hash identifier: tjqndvzbnU2GK+2EY7aPKkunz5CYqBXrs3fJz6+OAOE=
Subject key identifier: 70:50:95:D4:1F:A0:A1:CB:85:2C:5D:CF:24:50:08:8A:AD:D1:C8:96
Certificate issuer: /CN=32e3a3ad-b1ac-413d-8f98-a69429a6ca98
Certificate serial: 010D0C9F43285848345560E3FC237A70F0960C40
Authority key identifier: C9:95:54:7B:39:F5:77:ED:0B:E3:8A:70:7B:F6:77:43:FA:AC:C9:7D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/32e3a3ad-b1ac-413d-8f98-a69429a6ca98.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/32e3a3ad-b1ac-413d-8f98-a69429a6ca98/28664a9a-e120-3701-b0b7-b5858658be81.roa
Signing time: Sat 14 Dec 2024 14:00:52 +0000
ROA not before: Sat 14 Dec 2024 14:00:52 +0000
ROA not after: Fri 14 Mar 2025 13:00:52 +0000
asID: 14618
IP address blocks: 52.144.58.0/24 maxlen: 24
168.245.151.0/24 maxlen: 24
192.139.134.0/24 maxlen: 24
199.19.89.0/24 maxlen: 24
199.19.90.0/24 maxlen: 24
199.19.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:34:55:60:e3:fc:23:7a:70:f0:96:0c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32e3a3ad-b1ac-413d-8f98-a69429a6ca98
Validity
Not Before: Dec 14 14:00:52 2024 GMT
Not After : Mar 14 13:00:52 2025 GMT
Subject: CN=47c1217d-26ba-4686-9b6e-84a6451a74fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6c:4b:5e:e7:2c:c7:35:22:1d:fd:56:e6:b9:
66:c8:56:47:a0:25:a8:b7:27:c9:62:94:c0:c8:9e:
3e:07:b9:4c:f7:79:39:e0:e1:d2:c5:d3:08:81:99:
a8:0f:9c:d6:b1:6c:13:31:20:30:73:81:29:b9:b1:
d3:f1:07:6c:51:e5:a7:80:72:89:c7:8d:56:0d:f5:
30:47:0f:21:7d:d3:78:99:c7:72:02:bb:8b:6e:dc:
29:0e:40:c0:36:08:72:d8:00:e1:79:39:3b:7c:0e:
6b:08:c4:d0:7d:b9:4f:89:14:fc:66:58:a9:e4:63:
6c:d7:b5:bd:6a:f6:a9:13:ca:7d:c4:f7:19:5d:e5:
8b:e9:01:c9:05:e4:cd:89:a3:70:cc:1d:44:8f:fd:
3d:0b:e3:91:53:ae:5e:7b:0e:6a:b2:82:79:89:e1:
0b:27:0f:f0:3f:2a:26:70:4a:2b:82:30:30:0b:16:
88:84:f8:5e:15:bb:09:e7:6f:9a:16:d6:73:06:9f:
be:11:6c:42:a9:ff:14:a1:46:13:35:f6:c0:00:85:
fe:37:11:26:f1:d8:6b:ae:b3:80:a1:88:04:c6:43:
b3:ea:76:1c:a3:bc:e0:45:8a:9f:9e:f7:24:50:9b:
bc:70:a0:a1:c9:10:ef:ce:cd:80:e0:23:ed:fd:a7:
53:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:50:95:D4:1F:A0:A1:CB:85:2C:5D:CF:24:50:08:8A:AD:D1:C8:96
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/32e3a3ad-b1ac-413d-8f98-a69429a6ca98/28664a9a-e120-3701-b0b7-b5858658be81.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/32e3a3ad-b1ac-413d-8f98-a69429a6ca98/32e3a3ad-b1ac-413d-8f98-a69429a6ca98.crl
X509v3 Authority Key Identifier:
keyid:C9:95:54:7B:39:F5:77:ED:0B:E3:8A:70:7B:F6:77:43:FA:AC:C9:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/32e3a3ad-b1ac-413d-8f98-a69429a6ca98.cer
sbgp-ipAddrBlock: critical
IPv4:
52.144.58.0/24
168.245.151.0/24
192.139.134.0/24
199.19.89.0-199.19.91.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
04:88:5c:cc:a9:13:6e:a0:a6:f8:2a:10:ab:1c:2a:f9:45:0d:
86:4e:a6:c1:63:be:50:46:29:19:2a:b4:e9:67:65:a7:44:4a:
4f:6c:44:ea:95:c0:3d:73:5e:0c:3f:e1:5d:7a:7b:97:5a:d3:
b5:35:0c:0a:18:3b:b0:28:83:31:9b:b6:c5:bb:96:4d:cc:7b:
bd:9f:65:d7:8f:b5:7a:0f:2b:25:98:54:5c:25:01:d0:d8:d9:
c3:ae:d7:cd:95:4d:24:c2:e2:00:7d:30:51:53:5c:4a:1a:3b:
cc:3b:2b:2e:df:e9:69:20:81:77:fe:8c:3d:0b:12:2d:dd:b0:
5b:a9:9d:8d:10:19:49:83:e0:37:b9:4e:93:69:72:e0:bb:08:
af:ed:f2:24:6d:bb:df:89:c8:29:bc:51:78:d6:35:75:71:bc:
69:13:2f:3b:13:b0:26:dd:03:da:42:35:be:64:86:38:68:97:
e8:24:0b:e9:bb:c3:aa:33:b4:fd:5f:2b:9e:ce:22:6f:7f:94:
68:13:4d:f7:3c:9c:b4:90:c3:84:0c:23:c1:aa:db:70:01:32:
17:ef:0b:00:e0:0a:98:a7:db:06:2b:07:ca:0d:44:17:61:3f:
ad:d6:d2:3b:cb:72:f5:f2:1b:09:3f:5c:ca:75:e0:dc:b3:4d:
06:95:5f:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:30:07 2025 by rpki-client