Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/291133eb-e436-4803-adab-f37835fc18e3/63efd8ee-733d-32c0-9a5b-47c15abd254c.roa
File: 63efd8ee-733d-32c0-9a5b-47c15abd254c.roa (raw, json)
Hash identifier: Y+rKz3+WFWNpFAKXAg+Qb8JPgT5EMpqnS11nLG+AfDg=
Subject key identifier: 32:19:BD:7C:90:EA:CA:06:7E:76:50:48:C4:D7:C3:DD:E2:9E:52:88
Certificate issuer: /CN=291133eb-e436-4803-adab-f37835fc18e3
Certificate serial: 010D0C9F4328584858A053F78DF3F238E34FC300
Authority key identifier: 18:52:49:3A:FC:EF:33:E3:F2:64:9C:F3:C6:0B:A2:50:5A:0C:1D:6B
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/291133eb-e436-4803-adab-f37835fc18e3.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/291133eb-e436-4803-adab-f37835fc18e3/63efd8ee-733d-32c0-9a5b-47c15abd254c.roa
Signing time: Fri 27 Dec 2024 14:00:52 +0000
ROA not before: Fri 27 Dec 2024 14:00:52 +0000
ROA not after: Thu 27 Mar 2025 13:00:52 +0000
asID: 11127
IP address blocks: 64.49.129.0/24 maxlen: 25
64.49.130.0/24 maxlen: 25
64.49.179.0/24 maxlen: 25
64.58.97.0/24 maxlen: 25
64.58.109.0/24 maxlen: 25
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:58:a0:53:f7:8d:f3:f2:38:e3:4f:c3:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291133eb-e436-4803-adab-f37835fc18e3
Validity
Not Before: Dec 27 14:00:52 2024 GMT
Not After : Mar 27 13:00:52 2025 GMT
Subject: CN=d1f658bf-a3e6-4293-99ab-9b01852b5c8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3d:ae:00:81:ca:c6:3b:f6:87:28:57:aa:62:
f3:6e:01:69:04:b8:58:a1:b5:3d:da:b0:fd:6f:27:
ac:d6:89:0b:f9:ed:77:6d:e9:30:4f:08:51:67:c0:
47:a8:88:85:a6:37:60:20:f8:26:28:16:48:51:42:
be:2f:f4:64:6d:f9:1d:a1:7b:a9:2f:6d:13:46:fb:
15:c1:15:fa:a0:fd:60:af:be:90:2d:50:1e:8e:32:
0f:c8:11:45:15:a8:02:37:f5:7f:9c:55:9f:98:1f:
55:ca:4e:f8:40:97:1c:c1:63:bb:4d:57:ba:d2:d1:
41:c1:42:ae:76:39:98:a4:e6:55:79:54:ea:9a:bc:
9e:8a:13:9a:36:09:10:07:03:bc:4c:0b:8c:82:72:
78:85:dd:01:b6:6e:73:24:60:c9:ce:a4:ad:e7:4b:
e2:e1:38:96:8b:07:18:76:fb:f3:f9:49:44:90:02:
7c:b5:2c:e5:18:10:9b:d6:40:7f:6a:d4:c0:36:63:
c4:82:c3:e9:d4:20:08:ca:8d:7a:a7:f0:b3:c3:81:
a4:95:a2:56:25:58:29:52:0f:13:24:5e:70:0d:a6:
d9:02:d1:77:85:d0:5b:6b:16:8b:45:8b:98:92:5c:
e0:a3:7b:8d:db:69:78:44:6e:ec:9a:f2:75:c3:e0:
17:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:19:BD:7C:90:EA:CA:06:7E:76:50:48:C4:D7:C3:DD:E2:9E:52:88
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/291133eb-e436-4803-adab-f37835fc18e3/63efd8ee-733d-32c0-9a5b-47c15abd254c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/291133eb-e436-4803-adab-f37835fc18e3/291133eb-e436-4803-adab-f37835fc18e3.crl
X509v3 Authority Key Identifier:
keyid:18:52:49:3A:FC:EF:33:E3:F2:64:9C:F3:C6:0B:A2:50:5A:0C:1D:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/291133eb-e436-4803-adab-f37835fc18e3.cer
sbgp-ipAddrBlock: critical
IPv4:
64.49.129.0-64.49.130.255
64.49.179.0/24
64.58.97.0/24
64.58.109.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
7d:bd:81:4f:75:a9:e9:16:ff:80:73:80:f9:22:4d:cc:4e:c5:
fb:68:af:dd:5a:1a:ec:bc:44:71:8b:bd:64:40:be:8b:3b:98:
7f:7a:bc:74:14:60:31:bb:5d:2f:39:94:94:7e:23:cd:21:80:
df:a1:d6:51:45:59:72:63:79:2b:1c:a8:76:e2:46:22:22:bf:
c7:8b:28:2d:0e:d9:7d:e6:89:78:80:e9:cb:83:bf:02:ca:6d:
88:95:f8:67:b8:c7:0d:36:8f:9c:7d:88:c7:a3:91:f8:0f:98:
32:f1:74:a5:f4:e4:0e:5f:c0:a6:a3:6a:68:4f:51:62:6e:70:
41:b7:0f:52:c1:d2:e7:f2:01:47:d8:b1:fe:e9:61:ef:6d:89:
c2:7a:4b:d1:1e:3c:aa:32:c0:72:77:84:a1:72:4e:9f:66:f7:
8f:a0:57:72:b8:d9:21:cb:05:02:02:0c:d0:0f:e1:47:3c:f2:
3f:ed:e6:d8:3f:4c:7a:c1:db:8e:26:63:39:b8:55:ea:16:a7:
73:3d:65:3e:70:46:5c:7c:f8:ed:23:c0:48:ed:39:6e:83:9a:
38:9a:23:5a:08:62:26:6c:02:dd:35:35:39:ae:de:5a:79:07:
4d:14:56:47:95:61:6a:06:06:58:73:28:27:b8:e0:fd:0f:32:
62:e0:82:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:07:33 2025 by rpki-client