Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/d57ed4d6-9953-3ee9-9ce1-5dc06d702c1b.roa
File: d57ed4d6-9953-3ee9-9ce1-5dc06d702c1b.roa (raw, json)
Hash identifier: k1OM0R+P9rk9KZqRWtNFrs7cA4hXVdV1GJKvIlgo+V4=
Subject key identifier: 91:F9:8B:73:F1:67:82:7E:2E:B9:C9:23:98:FD:CB:7B:39:83:87:E8
Certificate issuer: /CN=0539e490-f62c-4bd3-8f28-c88eda220c48
Certificate serial: 010D0C9F432858481C9A898A5EE1265F2BA51400
Authority key identifier: D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/d57ed4d6-9953-3ee9-9ce1-5dc06d702c1b.roa
Signing time: Fri 06 Dec 2024 02:00:39 +0000
ROA not before: Fri 06 Dec 2024 02:00:39 +0000
ROA not after: Thu 06 Mar 2025 02:00:39 +0000
asID: 198148
IP address blocks: 209.8.144.0/22 maxlen: 24
209.9.2.0/23 maxlen: 24
209.9.72.0/22 maxlen: 24
209.9.104.0/21 maxlen: 24
209.9.112.0/21 maxlen: 24
209.9.128.0/21 maxlen: 24
209.9.208.0/21 maxlen: 24
209.9.216.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:1c:9a:89:8a:5e:e1:26:5f:2b:a5:14:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0539e490-f62c-4bd3-8f28-c88eda220c48
Validity
Not Before: Dec 6 02:00:39 2024 GMT
Not After : Mar 6 02:00:39 2025 GMT
Subject: CN=84843c73-b78d-460d-8f6a-c6f39bfa677a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3e:50:8a:16:6d:32:c0:a1:a5:90:b5:cf:ff:
ff:83:cd:39:99:3c:07:7a:12:62:a2:51:45:28:d9:
66:cf:6f:f4:2b:08:27:7f:20:e4:97:94:14:e7:fe:
bd:89:87:3f:11:ad:9d:55:6d:22:a4:33:1e:c8:18:
59:52:70:8b:5e:bc:94:c4:09:77:96:5c:36:90:0d:
d5:e8:76:15:4b:80:2e:26:8a:e8:8a:51:83:a7:98:
72:99:43:81:e1:45:36:a5:c9:01:e5:43:74:fc:b7:
da:e2:70:b7:46:ee:aa:39:54:62:52:01:4a:ab:2e:
f7:7b:b8:db:3c:a4:b6:a9:16:f3:a3:fa:8e:5c:61:
46:12:1e:c9:2a:41:3e:34:ec:51:d3:f0:ca:5b:1d:
36:01:32:21:37:8c:ff:26:80:fc:7c:58:9b:0a:71:
71:95:3b:a4:f1:72:76:d1:3c:51:f5:4f:7c:6f:58:
aa:a1:16:da:9e:ad:3a:ca:52:aa:90:d3:f3:3b:56:
b0:ff:5e:b0:cd:4a:af:e2:71:3e:2d:2a:6e:f8:64:
21:5c:fd:dd:97:55:7a:e1:b4:4f:48:50:32:b1:19:
3d:65:7c:f6:6c:a4:ff:94:81:e7:19:fc:5f:19:43:
db:91:4a:53:59:c4:1f:b4:9c:8a:82:a5:20:76:bc:
1d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F9:8B:73:F1:67:82:7E:2E:B9:C9:23:98:FD:CB:7B:39:83:87:E8
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/d57ed4d6-9953-3ee9-9ce1-5dc06d702c1b.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48/0539e490-f62c-4bd3-8f28-c88eda220c48.crl
X509v3 Authority Key Identifier:
keyid:D1:3A:10:33:35:B1:06:13:B9:67:92:EC:3E:91:77:A9:81:15:9F:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/0539e490-f62c-4bd3-8f28-c88eda220c48.cer
sbgp-ipAddrBlock: critical
IPv4:
209.8.144.0/22
209.9.2.0/23
209.9.72.0/22
209.9.104.0-209.9.119.255
209.9.128.0/21
209.9.208.0/20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
a5:f1:c7:a8:1d:7f:ba:aa:ed:a5:b6:49:ba:96:21:47:a1:73:
d4:f2:d1:ac:1e:05:b6:02:76:fa:ae:39:ac:80:ee:90:16:5e:
07:ce:9b:c1:fb:2a:99:c2:77:7f:42:67:31:e9:e0:7e:69:d6:
cc:ec:e5:22:a4:dd:b2:5f:b7:15:45:72:d7:81:c2:9a:ad:08:
34:4e:c2:04:e8:5f:7a:50:f5:55:5b:96:81:76:a6:03:02:e0:
cf:b7:78:ae:55:c7:35:49:7a:df:d5:05:83:38:2a:48:8e:94:
e6:b5:71:66:18:a3:1a:f4:b5:ee:dc:98:cd:e5:a5:a7:2d:b9:
7e:06:16:6e:0f:7c:8e:82:05:23:03:d5:95:27:24:ae:7d:c6:
cc:48:12:d6:46:91:55:ba:16:92:2b:8c:cb:69:d8:29:48:bb:
50:e0:c9:54:af:a1:bb:1d:18:13:d4:92:b3:8b:99:65:69:b4:
22:ec:d7:ac:f3:00:40:9e:4f:db:04:de:e1:74:09:4a:d7:f9:
29:b4:1d:71:c8:b4:52:08:cf:0c:6d:c5:b0:ca:53:ea:75:26:
a7:1b:6b:82:5d:e2:9e:10:67:87:60:44:6c:e6:3f:3e:09:5a:
94:e7:8e:e6:86:90:0e:5c:b7:77:7d:5f:ae:c3:99:d5:64:7c:
9a:21:e2:32
-----BEGIN CERTIFICATE-----
MIIGaTCCBVGgAwIBAgIUAQ0Mn0MoWEgcmomKXuEmXyulFAAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMDUzOWU0OTAtZjYyYy00YmQzLThmMjgtYzg4ZWRhMjIw
YzQ4MB4XDTI0MTIwNjAyMDAzOVoXDTI1MDMwNjAyMDAzOVowLzEtMCsGA1UEAxMk
ODQ4NDNjNzMtYjc4ZC00NjBkLThmNmEtYzZmMzliZmE2NzdhMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxT5QihZtMsChpZC1z///g805mTwHehJiolFF
KNlmz2/0KwgnfyDkl5QU5/69iYc/Ea2dVW0ipDMeyBhZUnCLXryUxAl3llw2kA3V
6HYVS4AuJoroilGDp5hymUOB4UU2pckB5UN0/Lfa4nC3Ru6qOVRiUgFKqy73e7jb
PKS2qRbzo/qOXGFGEh7JKkE+NOxR0/DKWx02ATIhN4z/JoD8fFibCnFxlTuk8XJ2
0TxR9U98b1iqoRbanq06ylKqkNPzO1aw/16wzUqv4nE+LSpu+GQhXP3dl1V64bRP
SFAysRk9ZXz2bKT/lIHnGfxfGUPbkUpTWcQftJyKgqUgdrwdcQIDAQABo4IDezCC
A3cwHQYDVR0OBBYEFJH5i3PxZ4J+LrnJI5j9y3s5g4foMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5
ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhlZGEyMjBjNDgvZDU3ZWQ0ZDYtOTk1My0z
ZWU5LTljZTEtNWRjMDZkNzAyYzFiLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h
ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvMDUzOWU0OTAtZjYyYy00YmQzLThm
MjgtYzg4ZWRhMjIwYzQ4LzA1MzllNDkwLWY2MmMtNGJkMy04ZjI4LWM4OGVkYTIy
MGM0OC5jcmwwHwYDVR0jBBgwFoAU0ToQMzWxBhO5Z5LsPpF3qYEVn+cwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz
OS1hMmYzLTYyOTlhM2IwMmUyOS8wNTM5ZTQ5MC1mNjJjLTRiZDMtOGYyOC1jODhl
ZGEyMjBjNDguY2VyMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQC0QiQAwQB
0QkCAwQC0QlIMAwDBAPRCWgDBAPRCXADBAPRCYADBATRCdAwVAYDVR0gAQH/BEow
SDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5hcmluLm5l
dC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkqhkiG9w0BAQsFAAOCAQEApfHH
qB1/uqrtpbZJupYhR6Fz1PLRrB4FtgJ2+q45rIDukBZeB86bwfsqmcJ3f0JnMeng
fmnWzOzlIqTdsl+3FUVy14HCmq0INE7CBOhfelD1VVuWgXamAwLgz7d4rlXHNUl6
39UFgzgqSI6U5rVxZhijGvS17tyYzeWlpy25fgYWbg98joIFIwPVlSckrn3GzEgS
1kaRVboWkiuMy2nYKUi7UODJVK+hux0YE9SSs4uZZWm0IuzXrPMAQJ5P2wTe4XQJ
Stf5KbQdcci0UgjPDG3FsMpT6nUmpxtrgl3inhBnh2BEbOY/PglalOeO5oaQDly3
d31frsOZ1WR8miHiMg==
-----END CERTIFICATE-----
Generated at Sun May 4 12:43:34 2025 by rpki-client