Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa
File: 63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa (raw, json)
Hash identifier: k5fchrgdkOa5YYXNMuePAA3haug1wbz0tDP9DRFDR1s=
Subject key identifier: 42:68:5B:80:DF:EB:7C:C0:90:03:2A:39:32:30:68:95:7F:46:74:7C
Certificate issuer: /CN=bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8
Certificate serial: 010D0C9F4328584898D604115825D604826DFEF0
Authority key identifier: 47:99:F5:27:E4:1F:04:74:5A:3F:3B:D7:81:C9:80:18:59:E9:75:66
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa
Signing time: Sun 19 Jan 2025 14:00:52 +0000
ROA not before: Sun 19 Jan 2025 14:00:52 +0000
ROA not after: Sat 19 Apr 2025 13:00:52 +0000
asID: 19935
IP address blocks: 159.112.233.0/24 maxlen: 24
173.224.240.0/20 maxlen: 20
173.224.240.0/24 maxlen: 24
173.224.241.0/24 maxlen: 24
173.224.242.0/24 maxlen: 24
173.224.243.0/24 maxlen: 24
173.224.244.0/24 maxlen: 24
173.224.245.0/24 maxlen: 24
173.224.246.0/24 maxlen: 24
173.224.247.0/24 maxlen: 24
173.224.248.0/24 maxlen: 24
173.224.249.0/24 maxlen: 24
173.224.250.0/24 maxlen: 24
173.224.251.0/24 maxlen: 24
173.224.252.0/24 maxlen: 24
173.224.253.0/24 maxlen: 24
173.224.254.0/24 maxlen: 24
173.224.255.0/24 maxlen: 24
205.178.191.0/24 maxlen: 24
208.52.144.0/24 maxlen: 24
208.103.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:98:d6:04:11:58:25:d6:04:82:6d:fe:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8
Validity
Not Before: Jan 19 14:00:52 2025 GMT
Not After : Apr 19 13:00:52 2025 GMT
Subject: CN=f1db4411-88b7-4593-8978-c299ac41e4e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f7:cc:c2:b6:e4:7b:74:49:c2:00:87:cb:d1:
11:24:ed:af:20:77:b1:08:21:cf:7a:7e:6f:d1:f5:
cf:be:24:17:59:62:a1:09:2b:98:2e:93:2c:bb:0a:
31:0a:fc:81:b8:6d:9e:c9:b2:8d:23:bc:27:62:f0:
0c:a5:24:b0:1b:20:41:64:77:6b:52:fe:a7:76:0e:
36:b8:9f:97:7f:dd:d2:83:1c:9d:59:20:ce:7a:60:
4d:f9:1d:28:6a:73:cd:c7:87:48:b6:8e:bc:9d:fc:
0e:3f:bc:42:88:0b:77:7b:4b:ff:9a:8c:47:b4:ff:
c1:82:cb:05:57:91:de:40:c5:62:eb:53:e7:c1:5b:
35:a8:41:1d:57:e9:8a:06:bc:97:ec:df:6f:12:12:
a7:c5:3a:53:d4:28:22:58:23:04:06:e4:1f:0e:49:
13:2a:d9:d5:d6:65:e5:95:ad:52:e2:20:23:3b:af:
50:b1:29:38:5c:43:10:7c:ef:6b:d7:bd:74:75:9d:
d3:26:43:a2:e5:bd:b8:91:45:05:2c:f8:96:d6:b4:
f9:ca:89:0a:24:d4:fd:b3:43:bf:78:3a:1b:d4:92:
fb:b7:6e:fa:0b:8e:5e:4a:28:4b:37:f4:2a:07:59:
a7:7b:8c:d1:77:92:e9:30:36:46:d7:9b:81:0c:61:
42:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:68:5B:80:DF:EB:7C:C0:90:03:2A:39:32:30:68:95:7F:46:74:7C
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/63d7507e-771b-31b7-9ea9-6f50c64d9d2f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.crl
X509v3 Authority Key Identifier:
keyid:47:99:F5:27:E4:1F:04:74:5A:3F:3B:D7:81:C9:80:18:59:E9:75:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/bd8b6863-ef81-4de4-bc9e-ae9d1d2e11e8.cer
sbgp-ipAddrBlock: critical
IPv4:
159.112.233.0/24
173.224.240.0/20
205.178.191.0/24
208.52.144.0/24
208.103.184.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
49:13:ff:31:99:fc:a6:53:b3:49:40:7a:68:8a:4e:21:a4:bb:
2e:3a:e8:6e:8b:3a:47:50:87:8f:ca:86:4e:3d:f0:67:1f:e4:
8a:b4:0b:a8:39:91:2e:b3:18:95:c2:0a:85:53:3d:08:5d:9f:
95:b7:6d:a0:a0:a9:7d:22:08:d5:99:92:8c:d7:71:35:48:9a:
31:7d:7d:ba:e2:f0:21:db:19:30:db:72:4c:f8:11:8e:6f:9f:
4d:c9:fa:bd:b2:28:5c:d1:4e:5e:d6:1d:e0:82:d1:fc:db:d1:
b4:19:cd:e7:62:6b:56:51:4a:ca:01:2b:87:e6:55:67:d9:18:
1e:8c:85:e7:08:c6:99:14:b7:27:a6:04:f4:4b:6d:1b:3f:e1:
fc:a1:17:b8:fc:2a:ae:57:e0:e8:eb:be:1b:5e:9d:74:04:2f:
04:df:52:a3:8f:4f:b8:ee:d3:70:ab:ce:7a:ff:21:03:6a:b8:
8c:24:1a:07:49:a3:73:ed:72:62:77:8f:13:3f:1d:80:2f:65:
2c:9f:25:a6:42:b8:e9:cb:41:d2:b6:ea:ca:c4:ab:d3:98:7e:
cc:78:b0:f3:79:25:ad:a8:76:97:57:91:a2:e3:5f:fb:aa:8c:
aa:b1:a7:b1:00:b9:a5:2b:e8:b8:5e:d5:14:8d:11:06:07:b5:
5f:a3:e1:84
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 29 23:41:47 2025 by rpki-client