Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/a521f5ee-89d2-4088-abb9-f69291655e39/b0ac23b0-5f3a-365d-9af6-27021a9154c7.roa
File: b0ac23b0-5f3a-365d-9af6-27021a9154c7.roa (raw, json)
Hash identifier: 0HGOmC+Sg4QeuAnAsLsrtF2mcvzmCrwnRU1ZJG2qLUk=
Subject key identifier: 71:12:2E:6C:93:B8:A2:CF:66:53:1C:14:90:69:68:F6:ED:F1:3B:BF
Certificate issuer: /CN=a521f5ee-89d2-4088-abb9-f69291655e39
Certificate serial: 010D0C9F4328584832F040596906A77E29BF8200
Authority key identifier: 14:EE:0D:BC:78:58:6F:49:6A:4F:7C:2E:30:4A:4E:11:A9:FE:9B:73
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/a521f5ee-89d2-4088-abb9-f69291655e39.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/a521f5ee-89d2-4088-abb9-f69291655e39/b0ac23b0-5f3a-365d-9af6-27021a9154c7.roa
Signing time: Sat 14 Dec 2024 02:00:39 +0000
ROA not before: Sat 14 Dec 2024 02:00:39 +0000
ROA not after: Fri 14 Mar 2025 01:00:39 +0000
asID: 21887
IP address blocks: 23.105.192.0/19 maxlen: 24
23.106.128.0/19 maxlen: 24
23.252.96.0/20 maxlen: 24
45.62.96.0/19 maxlen: 24
45.78.0.0/18 maxlen: 24
66.112.208.0/20 maxlen: 24
67.209.176.0/20 maxlen: 24
74.121.148.0/22 maxlen: 24
104.128.80.0/20 maxlen: 24
104.160.32.0/20 maxlen: 24
104.194.64.0/19 maxlen: 24
104.224.128.0/18 maxlen: 24
107.182.176.0/20 maxlen: 24
138.128.192.0/19 maxlen: 24
144.168.56.0/21 maxlen: 24
162.211.224.0/21 maxlen: 24
192.243.112.0/20 maxlen: 24
198.35.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:32:f0:40:59:69:06:a7:7e:29:bf:82:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a521f5ee-89d2-4088-abb9-f69291655e39
Validity
Not Before: Dec 14 02:00:39 2024 GMT
Not After : Mar 14 01:00:39 2025 GMT
Subject: CN=66cb58fb-1f3a-4d16-8e20-41f1a8594649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:62:2b:0c:d5:f4:8d:8d:d7:bf:e4:f9:7d:
c5:5d:e5:41:20:8f:88:89:d4:8c:52:cd:f6:56:06:
f3:d4:6c:a3:46:3b:f5:aa:3e:c3:90:af:a0:5e:1c:
ef:f2:65:fe:e7:69:d4:57:43:fb:6b:de:ff:63:46:
bb:ff:0b:44:d0:95:22:53:a0:6d:9e:14:83:bc:0b:
5b:9b:be:1f:ea:9e:39:ec:b5:d3:06:ad:ed:7b:64:
e2:d0:72:7e:5a:49:c1:22:27:8b:ee:d6:2a:43:0b:
55:27:4b:57:6b:ee:34:94:75:01:2e:17:cc:55:9c:
75:1a:54:0c:81:6d:12:a1:50:56:b5:1d:44:7c:2c:
a0:51:36:68:17:e3:84:30:8e:00:94:2d:6c:17:0f:
08:6b:00:a8:95:28:46:42:f3:c2:97:b8:d7:72:25:
e3:d9:24:0d:ee:d4:08:e6:cb:39:ba:1c:a5:fa:2e:
73:94:f2:eb:d5:ee:40:89:ef:13:ca:77:f9:77:47:
9c:f3:f2:5c:a2:1b:79:4a:67:ce:28:c2:36:3a:c7:
dd:96:d8:30:55:19:ea:09:43:9b:91:64:12:6b:e0:
21:8b:34:b6:46:8d:0d:30:85:aa:43:a8:5b:75:aa:
af:00:1f:0b:44:97:bd:51:bf:8d:96:ad:17:b6:f7:
b4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:12:2E:6C:93:B8:A2:CF:66:53:1C:14:90:69:68:F6:ED:F1:3B:BF
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/a521f5ee-89d2-4088-abb9-f69291655e39/b0ac23b0-5f3a-365d-9af6-27021a9154c7.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/a521f5ee-89d2-4088-abb9-f69291655e39/a521f5ee-89d2-4088-abb9-f69291655e39.crl
X509v3 Authority Key Identifier:
keyid:14:EE:0D:BC:78:58:6F:49:6A:4F:7C:2E:30:4A:4E:11:A9:FE:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/a521f5ee-89d2-4088-abb9-f69291655e39.cer
sbgp-ipAddrBlock: critical
IPv4:
23.105.192.0/19
23.106.128.0/19
23.252.96.0/20
45.62.96.0/19
45.78.0.0/18
66.112.208.0/20
67.209.176.0/20
74.121.148.0/22
104.128.80.0/20
104.160.32.0/20
104.194.64.0/19
104.224.128.0/18
107.182.176.0/20
138.128.192.0/19
144.168.56.0/21
162.211.224.0/21
192.243.112.0/20
198.35.44.0/22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
45:a8:6d:d2:e8:e5:5e:2c:da:21:ba:cf:f7:05:11:97:d5:0c:
60:5c:d9:d0:37:72:46:a0:74:38:cb:78:c9:ba:7f:a0:ee:49:
b9:b4:a5:5b:34:ca:a1:e2:29:99:62:b6:d4:83:6d:95:61:4b:
23:e8:b2:43:53:d6:5a:3a:cd:84:47:32:f3:5b:ec:bc:92:1a:
ca:1c:05:af:a1:e3:ac:47:d7:6c:8a:b7:7e:4c:2c:a9:66:31:
fe:c2:a4:bf:93:24:dc:15:02:8d:c8:4d:7c:32:d9:1e:eb:4e:
1b:b2:7c:98:d7:a0:b8:a2:ca:1e:47:85:49:2f:77:08:64:37:
07:39:fd:f4:47:3d:91:a5:be:7c:4b:2b:2e:7f:02:24:be:21:
1f:81:24:87:97:37:a6:e6:8f:eb:3e:56:39:a8:d5:11:33:96:
2b:b2:ff:2f:79:b7:4c:cf:95:d0:d1:22:0b:61:8e:5a:eb:62:
06:95:b1:f3:52:f0:96:4d:59:8f:bf:9e:2e:77:7b:71:09:ed:
82:78:17:04:d3:18:85:2d:37:3a:fb:38:01:91:3d:48:a0:f2:
b0:a8:fa:d2:f3:eb:29:5e:bd:8e:67:60:f4:c3:8d:60:98:25:
2b:4c:da:e8:23:f2:6e:2b:7d:9f:d4:df:73:73:d8:43:dc:d5:
8e:71:86:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:06:59 2025 by rpki-client