Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2cc2be88-240f-418a-aea9-3c6a0776ce7a/bdb594be-25b2-3939-93cb-470fe9e560e4.roa
File: bdb594be-25b2-3939-93cb-470fe9e560e4.roa (raw, json)
Hash identifier: Q1vQpE33IKFhdl5S8nDroJ/2yJLefDlG3m28RYFkOLQ=
Subject key identifier: 12:D2:AB:1C:1C:A6:7E:F7:09:D1:15:26:39:DB:2E:FA:E8:B2:C0:6F
Certificate issuer: /CN=2cc2be88-240f-418a-aea9-3c6a0776ce7a
Certificate serial: 010D0C9F4328584829C2BBA3E65F96EEB2649E50
Authority key identifier: 9D:86:B9:F6:46:DE:03:F9:D3:9D:C0:FE:10:8D:56:8A:BA:14:9F:D0
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2cc2be88-240f-418a-aea9-3c6a0776ce7a.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2cc2be88-240f-418a-aea9-3c6a0776ce7a/bdb594be-25b2-3939-93cb-470fe9e560e4.roa
Signing time: Tue 10 Dec 2024 19:07:24 +0000
ROA not before: Tue 10 Dec 2024 19:07:24 +0000
ROA not after: Mon 10 Mar 2025 18:07:24 +0000
asID: 23483
IP address blocks: 66.244.0.0/20 maxlen: 20
66.244.16.0/20 maxlen: 20
66.244.32.0/20 maxlen: 20
66.244.48.0/20 maxlen: 20
2602:fd01::/38 maxlen: 38
2602:fd01:400::/38 maxlen: 38
2602:fd01:800::/38 maxlen: 38
2602:fd01:c00::/38 maxlen: 38
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:29:c2:bb:a3:e6:5f:96:ee:b2:64:9e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cc2be88-240f-418a-aea9-3c6a0776ce7a
Validity
Not Before: Dec 10 19:07:24 2024 GMT
Not After : Mar 10 18:07:24 2025 GMT
Subject: CN=df0335f6-7210-43dc-92b8-c9073a8be75c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:28:11:29:88:0d:bf:2e:ca:4e:13:c8:61:4d:
09:2b:40:6a:27:2d:ee:25:59:cd:99:6a:50:35:fe:
e6:c8:4c:6d:1b:4f:38:26:2e:c6:af:2c:ee:41:da:
d4:99:fe:64:4f:8f:54:43:ad:8b:63:dc:fd:4b:2c:
42:23:66:4e:e4:d0:b6:77:38:5d:8f:bb:52:2c:e9:
f7:51:88:d2:81:44:60:fa:80:4d:9f:8b:97:1f:66:
59:f1:2f:08:1f:20:1e:fa:50:13:2a:c8:46:64:de:
cf:96:07:fc:88:1d:1b:44:7c:69:fb:97:cd:77:86:
84:92:52:3f:47:1f:90:e4:e4:32:20:c8:d1:e4:48:
31:7f:0e:1e:92:7e:41:3d:e0:63:12:70:42:0d:6f:
44:a9:47:28:f4:75:d6:0e:fe:4b:0d:b8:c7:14:e0:
e6:17:e0:4a:cd:92:51:06:d4:36:63:fe:5b:15:31:
03:cb:15:24:af:ff:b8:5f:97:92:56:fd:b7:a3:7a:
00:bd:2c:c1:2a:bb:88:50:8c:4c:a0:c8:f5:24:9d:
ea:3d:5f:48:ad:02:13:17:4b:df:48:a6:e1:ad:a1:
0d:9d:ed:20:bc:b6:7f:4d:97:7d:bd:ce:b9:61:fb:
63:99:06:4f:f1:37:6b:27:9e:92:14:0f:d9:2c:6a:
8f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D2:AB:1C:1C:A6:7E:F7:09:D1:15:26:39:DB:2E:FA:E8:B2:C0:6F
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2cc2be88-240f-418a-aea9-3c6a0776ce7a/bdb594be-25b2-3939-93cb-470fe9e560e4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2cc2be88-240f-418a-aea9-3c6a0776ce7a/2cc2be88-240f-418a-aea9-3c6a0776ce7a.crl
X509v3 Authority Key Identifier:
keyid:9D:86:B9:F6:46:DE:03:F9:D3:9D:C0:FE:10:8D:56:8A:BA:14:9F:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2cc2be88-240f-418a-aea9-3c6a0776ce7a.cer
sbgp-ipAddrBlock: critical
IPv4:
66.244.0.0/18
IPv6:
2602:fd01::/36
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
51:66:4e:f9:8f:97:23:d1:8c:40:83:23:2b:fa:0f:39:5b:33:
11:7b:69:ad:77:e4:d6:04:b3:cb:63:c3:e4:b0:11:d5:e7:e5:
af:de:1b:2b:40:99:8c:30:a5:dc:20:63:cc:3c:bd:c8:e9:c9:
01:1a:8d:c6:e9:28:be:69:17:1f:3a:f5:ed:a0:d1:52:08:44:
78:a8:c0:37:23:d7:4b:23:82:85:a0:3e:6b:9d:32:c2:24:3d:
fc:4e:bb:49:9b:68:8a:e2:e4:e1:a8:7f:1e:4d:df:ff:41:b7:
31:ee:d0:0d:6f:a7:cd:49:57:04:88:9a:95:69:60:a6:89:da:
21:59:5d:8b:cd:6c:d8:e9:22:fe:27:d2:ff:e4:05:f8:32:8e:
5e:db:12:30:d8:57:b8:98:e2:02:df:e3:3a:69:bf:92:96:35:
61:f4:7c:37:e4:47:3a:35:e8:d9:b0:15:0e:bb:59:12:67:9d:
ba:c0:6a:c2:86:84:bf:79:d0:38:99:a6:62:ea:e5:5c:1b:14:
88:e5:2f:0a:7f:3d:2a:cb:59:9e:d9:46:05:47:1c:e4:cf:71:
d8:74:84:96:0d:45:4f:6f:d7:0a:9c:f3:c3:b6:30:89:a2:65:
c8:72:64:f3:0b:8a:d6:c3:3f:c3:74:05:3b:2d:ae:6e:73:d1:
64:42:5e:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 16:43:22 2025 by rpki-client