Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa
File: 3125937d-10bf-347b-bf28-785512b3e771.roa (raw, json)
Hash identifier: Br7uJYhShspeuDbnfQ19JLzAAdD3z0WBEmZA3rQL36Y=
Subject key identifier: 04:DE:10:3E:DF:47:6E:FF:04:FD:FF:17:63:06:6A:59:4D:DF:4E:9A
Certificate issuer: /CN=a07401de-4b0a-4532-ac08-dba8b0588c48
Certificate serial: 010D0C9F432858486C2B2033939804A27A366680
Authority key identifier: 2E:F3:B1:0B:CE:E4:C3:34:88:54:17:22:AC:69:76:A5:51:34:03:80
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa
Signing time: Fri 03 Jan 2025 14:00:51 +0000
ROA not before: Fri 03 Jan 2025 14:00:51 +0000
ROA not after: Thu 03 Apr 2025 13:00:51 +0000
asID: 17
IP address blocks: 128.10.0.0/16 maxlen: 24
128.46.0.0/16 maxlen: 24
128.210.0.0/16 maxlen: 24
128.211.0.0/16 maxlen: 24
192.5.40.0/24 maxlen: 24
192.5.48.0/24 maxlen: 24
192.5.91.0/24 maxlen: 24
192.5.101.0/24 maxlen: 24
192.5.102.0/24 maxlen: 24
192.12.63.0/24 maxlen: 24
192.31.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:6c:2b:20:33:93:98:04:a2:7a:36:66:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a07401de-4b0a-4532-ac08-dba8b0588c48
Validity
Not Before: Jan 3 14:00:51 2025 GMT
Not After : Apr 3 13:00:51 2025 GMT
Subject: CN=35f012d1-b3d3-44b4-b7bf-76d64f8f3c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b1:7c:77:36:eb:34:7f:90:cb:36:23:c8:f4:
7e:1b:ba:ad:6f:49:65:fd:33:5c:d3:04:68:56:85:
65:b1:7a:02:fe:1b:2e:f8:67:70:85:46:a7:02:3d:
68:1d:e0:43:ae:44:53:77:c8:d7:f4:54:f1:4a:89:
39:5b:b6:e2:07:59:96:e4:24:85:2e:4b:68:be:74:
2c:54:5e:00:33:c6:96:1d:9a:1a:d6:e8:85:c8:54:
3f:d5:99:9b:c4:6d:20:94:de:7f:9c:8a:88:22:fe:
c0:c1:c0:f5:87:4a:06:93:bc:9e:11:39:d1:09:fc:
b7:0d:ee:6b:dc:63:d5:46:8d:69:51:2a:41:a7:bc:
ec:71:91:95:cf:b5:2e:b3:42:46:72:a3:c2:6a:38:
40:e6:cb:eb:7a:1c:58:20:49:67:d3:01:b1:73:2b:
82:b2:6f:ce:95:87:6e:77:af:c1:1a:e8:1d:69:d1:
e8:5b:59:8f:dd:53:eb:e3:f8:1f:92:78:77:e2:e9:
78:19:73:b5:a5:bb:bf:9b:57:1f:ce:48:59:48:7a:
db:c0:e3:53:52:06:f9:50:af:f6:5f:fd:73:89:a6:
c0:aa:72:e1:9a:77:31:a1:27:fe:21:d2:6b:f0:86:
e6:d3:f2:aa:db:8f:28:c7:b5:ff:a0:ad:e2:46:49:
0d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:DE:10:3E:DF:47:6E:FF:04:FD:FF:17:63:06:6A:59:4D:DF:4E:9A
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/3125937d-10bf-347b-bf28-785512b3e771.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48/a07401de-4b0a-4532-ac08-dba8b0588c48.crl
X509v3 Authority Key Identifier:
keyid:2E:F3:B1:0B:CE:E4:C3:34:88:54:17:22:AC:69:76:A5:51:34:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/a07401de-4b0a-4532-ac08-dba8b0588c48.cer
sbgp-ipAddrBlock: critical
IPv4:
128.10.0.0/16
128.46.0.0/16
128.210.0.0/15
192.5.40.0/24
192.5.48.0/24
192.5.91.0/24
192.5.101.0-192.5.102.255
192.12.63.0/24
192.31.0.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
93:7c:4f:7f:b6:4f:0a:7a:97:f9:e0:3b:52:28:1e:6d:5b:ae:
a8:7a:a9:50:67:15:7b:51:28:d3:4a:4e:02:16:9b:fb:d7:de:
0f:ad:59:68:ab:fb:b4:bf:ad:16:ca:b3:85:f6:1d:1e:3f:7b:
06:b9:8d:dd:9c:6c:45:9d:66:4c:fa:64:d1:92:71:f5:2f:5b:
fb:1b:05:d0:0a:c2:33:c2:7a:b6:c4:34:bc:4a:34:24:9d:de:
e9:ad:01:b5:07:cb:fb:bb:45:2d:28:90:2b:c5:6d:82:b3:7f:
e5:cf:8b:21:73:35:68:a7:a4:dc:5d:f2:71:cc:92:9e:3f:ca:
31:ff:72:66:a9:dc:b3:f1:f2:88:29:d2:07:de:bf:e0:98:f6:
aa:78:f8:02:c4:59:3d:d9:e3:1a:0e:92:12:8a:07:ee:c4:01:
c7:13:b0:f9:80:6c:2b:8f:b8:99:8b:73:20:e0:e6:55:59:97:
1f:72:38:03:be:7f:2d:ab:46:46:6e:aa:46:89:f9:6c:35:81:
c9:1e:fc:fd:b0:a4:51:38:43:a5:cc:99:a6:ea:03:7e:1a:72:
11:c1:1e:09:07:eb:6d:18:12:67:06:a1:88:29:ce:72:4a:f2:
08:ad:09:b1:d0:a6:fa:cd:69:1c:6b:ca:dd:07:ca:68:2e:4c:
ba:e1:9a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 06:56:39 2025 by rpki-client