Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/ddf8e00d-05ad-34ea-8108-ca71e74d4fd3.roa
File: ddf8e00d-05ad-34ea-8108-ca71e74d4fd3.roa (raw, json)
Hash identifier: btADsbGz1X06hg6Ho2VyOeTiFZmAAsaASrC00nDPZQI=
Subject key identifier: D4:63:24:66:17:8C:07:A3:F5:16:35:98:4A:56:0B:52:80:1A:9A:45
Certificate issuer: /CN=aae465c0-2a10-495a-b7d2-2aa048b286a0
Certificate serial: 010D0C9F4328584871C077B02AF15D357DFA9780
Authority key identifier: AA:F1:A5:1A:EB:A8:A8:DC:25:2D:5B:78:B4:E1:9A:18:D9:8A:8F:24
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/ddf8e00d-05ad-34ea-8108-ca71e74d4fd3.roa
Signing time: Sun 05 Jan 2025 14:00:52 +0000
ROA not before: Sun 05 Jan 2025 14:00:52 +0000
ROA not after: Sat 05 Apr 2025 13:00:52 +0000
asID: 10911
IP address blocks: 2600:c00:2:3::/64 maxlen: 64
2600:c00:1002::/64 maxlen: 64
2600:c00:1002:3::/64 maxlen: 64
2600:c00:1002:4::/64 maxlen: 64
2600:c02:b002:12::/64 maxlen: 64
2600:c02:b002:13::/64 maxlen: 64
2600:c04:e002:2::/64 maxlen: 64
2600:c05:3002:5::/64 maxlen: 64
2600:c05:3002:6::/64 maxlen: 64
2600:c0e:1002::/64 maxlen: 64
2600:c0e:7002:b::/64 maxlen: 64
2600:c12:6002:e::/64 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:71:c0:77:b0:2a:f1:5d:35:7d:fa:97:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae465c0-2a10-495a-b7d2-2aa048b286a0
Validity
Not Before: Jan 5 14:00:52 2025 GMT
Not After : Apr 5 13:00:52 2025 GMT
Subject: CN=5cc0772e-8349-4668-8b31-cd21d9806d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:74:2a:ae:f2:14:1e:b6:78:7c:6d:b0:c0:b6:
28:20:ca:f5:2e:74:70:7a:ca:e2:3d:31:53:12:bf:
51:d6:17:12:1f:a4:9c:06:29:79:36:1a:4c:86:fd:
52:4f:01:76:28:84:70:a3:08:ad:a7:bd:52:98:ec:
53:ae:7e:a9:0c:16:97:65:3a:26:ef:39:71:42:fa:
25:a9:e6:f6:6b:75:da:9f:88:48:c0:bc:a1:22:cc:
68:81:47:29:2f:2d:d6:83:e7:dc:2a:82:ab:15:82:
cc:01:da:4e:6e:e5:5b:ff:ec:eb:aa:b2:e2:20:c8:
7c:73:96:52:c1:9e:3a:a9:d3:d2:82:ef:0c:ca:b4:
9e:06:e2:b2:8a:82:fa:56:5c:7c:d1:3c:f2:49:53:
d0:34:5d:6f:54:36:f3:d7:ca:f0:71:fb:65:5c:41:
42:95:5d:55:02:a4:63:b7:b1:fb:7c:a3:5a:27:01:
bf:ad:05:b7:d0:26:59:c4:7c:f6:86:32:2f:92:b7:
a8:71:b7:e2:1c:41:65:d4:20:a0:04:4d:ac:22:64:
d7:87:e1:b9:0f:e7:06:98:f9:af:c6:5c:4e:24:c6:
c0:36:5c:79:e5:93:70:5a:eb:c8:19:53:78:f8:37:
ef:82:46:52:58:8c:ed:f3:0c:f7:a8:17:39:56:d3:
e8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:63:24:66:17:8C:07:A3:F5:16:35:98:4A:56:0B:52:80:1A:9A:45
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/ddf8e00d-05ad-34ea-8108-ca71e74d4fd3.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/aae465c0-2a10-495a-b7d2-2aa048b286a0.crl
X509v3 Authority Key Identifier:
keyid:AA:F1:A5:1A:EB:A8:A8:DC:25:2D:5B:78:B4:E1:9A:18:D9:8A:8F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0.cer
sbgp-ipAddrBlock: critical
IPv6:
2600:c00:2:3::/64
2600:c00:1002::/64
2600:c00:1002:3::-2600:c00:1002:4:ffff:ffff:ffff:ffff
2600:c02:b002:12::/63
2600:c04:e002:2::/64
2600:c05:3002:5::-2600:c05:3002:6:ffff:ffff:ffff:ffff
2600:c0e:1002::/64
2600:c0e:7002:b::/64
2600:c12:6002:e::/64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
2d:bd:2e:2a:ff:77:87:f0:f4:7c:60:3d:7d:e6:3d:c1:9d:ae:
49:b7:bf:74:b7:e6:7e:e7:59:af:c0:4d:8e:2c:6d:de:29:17:
bf:bf:ad:6f:e9:35:68:e1:21:28:77:dd:0a:37:fa:32:ae:36:
4c:41:bb:ba:37:68:82:1d:48:bb:b7:c1:71:f7:82:81:17:9f:
54:c7:f8:cc:6c:94:25:e9:36:0c:5e:57:61:2c:ef:0e:af:31:
73:43:70:f1:ce:e0:20:fc:ed:8a:b6:91:0b:b0:c0:57:bc:b5:
2e:7b:13:17:28:7a:39:9f:11:29:85:36:1a:d3:2f:31:06:52:
8b:87:53:67:93:b5:44:fd:fe:d3:8e:3e:de:53:31:13:39:3d:
cc:b0:24:b7:94:52:64:22:2c:bf:c7:d1:f3:c3:b1:b9:6c:59:
36:dd:16:ff:b8:e6:48:98:d1:20:2e:c1:8b:a5:47:d2:f3:25:
16:6a:8f:41:fe:5c:35:f1:b3:de:1e:07:89:b9:b4:0c:19:a2:
73:bd:45:9c:de:d1:dd:a3:1f:5f:55:db:91:16:4a:55:3f:03:
0a:fe:fa:bb:25:b8:9a:5a:f8:f7:6b:d9:a4:f5:4f:64:98:36:
ef:fe:bc:76:c6:16:6f:a0:8d:21:38:0b:8d:c1:a4:69:45:98:
9a:fb:91:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:06:38 2025 by rpki-client