Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/23b590e8-30c5-4997-bbf3-f2fe10a29e87/a8bc0824-4d89-3b5a-b33e-b445f02cf412.roa
File: a8bc0824-4d89-3b5a-b33e-b445f02cf412.roa (raw, json)
Hash identifier: nCZpqLYfyipRbwbal2ascN39pIAawQUxhLEObGKfbWs=
Subject key identifier: D5:55:86:93:62:0F:88:43:1A:59:AE:04:8C:45:10:DD:F5:34:D6:A5
Certificate issuer: /CN=23b590e8-30c5-4997-bbf3-f2fe10a29e87
Certificate serial: 010D0C9F43285849ADCE5F50D6328B44ECAC8800
Authority key identifier: 73:2D:61:C2:04:C7:94:B0:63:1A:9B:AE:10:B1:61:0A:CE:A3:53:28
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/23b590e8-30c5-4997-bbf3-f2fe10a29e87.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/23b590e8-30c5-4997-bbf3-f2fe10a29e87/a8bc0824-4d89-3b5a-b33e-b445f02cf412.roa
Signing time: Mon 28 Apr 2025 19:04:29 +0000
ROA not before: Mon 28 Apr 2025 19:04:29 +0000
ROA not after: Sun 27 Jul 2025 19:04:29 +0000
asID: 5065
IP address blocks: 216.231.53.0/24 maxlen: 24
216.231.54.0/24 maxlen: 24
216.231.55.0/24 maxlen: 24
216.231.56.0/24 maxlen: 24
216.231.57.0/24 maxlen: 24
216.231.58.0/24 maxlen: 24
216.231.59.0/24 maxlen: 24
216.231.60.0/24 maxlen: 24
216.231.61.0/24 maxlen: 24
216.231.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:ad:ce:5f:50:d6:32:8b:44:ec:ac:88:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23b590e8-30c5-4997-bbf3-f2fe10a29e87
Validity
Not Before: Apr 28 19:04:29 2025 GMT
Not After : Jul 27 19:04:29 2025 GMT
Subject: CN=dbfdbd81-309d-4bed-93c5-9b98c51793e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d1:3c:25:c9:34:93:3e:7c:4b:36:02:2a:fe:
e8:be:69:65:95:c2:d0:89:f3:9b:88:c9:6f:5c:10:
d1:03:fd:f4:01:1d:91:e4:58:e0:b5:ba:79:04:35:
cd:5e:a9:58:24:91:46:a9:58:24:c4:1e:e5:c2:58:
83:b0:43:ab:97:e5:9c:27:69:80:e8:b5:0f:3d:f0:
d6:0e:16:f1:6c:6c:dd:25:17:54:6d:3b:a6:dc:15:
d1:94:8d:be:f1:59:35:0c:6d:37:4b:a1:45:3d:c5:
98:f9:64:23:d7:d1:71:c4:06:15:f3:9b:a0:08:d7:
a5:f2:72:97:f1:8b:28:5e:6e:eb:55:ef:ba:1a:da:
bd:6b:a8:42:61:22:67:fe:d8:eb:58:d3:55:6b:8e:
e3:c5:d8:40:44:a4:2a:a6:bf:34:04:20:11:8b:54:
2d:cc:ac:52:f1:d9:c1:0d:c2:4f:74:59:77:50:94:
5f:68:d9:0c:b8:6f:25:45:fc:5a:9b:81:e6:39:2f:
eb:88:8c:85:a7:cd:28:85:cb:7b:ff:bc:a4:5d:9a:
08:23:2a:15:5b:04:8c:71:fb:97:f3:92:91:49:3f:
47:98:60:e6:8a:55:5d:81:23:47:79:89:00:3b:3a:
8c:95:8b:6f:0a:af:9c:99:dd:7d:02:5c:ac:a2:67:
06:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:55:86:93:62:0F:88:43:1A:59:AE:04:8C:45:10:DD:F5:34:D6:A5
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/23b590e8-30c5-4997-bbf3-f2fe10a29e87/a8bc0824-4d89-3b5a-b33e-b445f02cf412.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/23b590e8-30c5-4997-bbf3-f2fe10a29e87/23b590e8-30c5-4997-bbf3-f2fe10a29e87.crl
X509v3 Authority Key Identifier:
keyid:73:2D:61:C2:04:C7:94:B0:63:1A:9B:AE:10:B1:61:0A:CE:A3:53:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d6b5ad28-1cbc-47ab-904e-45361a5487c3/23b590e8-30c5-4997-bbf3-f2fe10a29e87.cer
sbgp-ipAddrBlock: critical
IPv4:
216.231.53.0-216.231.62.255
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
8f:da:0c:79:5a:44:a6:6e:b0:11:13:38:f2:43:9e:fc:f9:46:
b5:2b:d1:18:1a:65:23:65:65:61:e4:81:86:12:9c:21:e5:bc:
ed:af:f2:0a:86:e6:89:5e:8e:e6:fc:73:9d:43:93:77:fc:20:
13:ae:e6:ac:d0:b7:38:94:72:a8:aa:fa:08:30:14:b6:27:3f:
83:87:09:34:c6:03:d3:a8:cf:c8:9e:88:62:5a:a9:83:44:99:
ec:93:78:80:07:64:41:5f:0f:45:18:51:ff:a2:28:e3:e2:d6:
40:d7:a4:80:cb:1c:11:06:01:2d:23:a7:5d:e3:38:55:69:f3:
91:5c:03:9c:41:50:8d:36:ed:a3:30:a5:48:e0:d3:e3:5f:54:
52:31:77:b8:df:a8:09:1a:8c:ba:4c:c9:48:76:88:f4:54:a4:
1f:16:b1:e5:8e:1d:82:d7:36:28:9d:34:dc:5a:87:dd:2e:9a:
ca:9e:7c:4a:c0:c8:b4:ec:20:59:7e:4e:1b:26:5e:58:0e:58:
4f:29:95:d2:4e:80:d8:21:2d:0d:cd:61:58:49:5f:ac:36:66:
9d:82:7a:d9:08:4a:7b:4a:cf:94:6b:e7:8c:33:05:cf:99:5f:
9f:97:6b:ce:3c:36:c7:f3:69:af:0f:fe:e6:53:61:fc:10:20:
79:00:c9:21
-----BEGIN CERTIFICATE-----
MIIGSzCCBTOgAwIBAgIUAQ0Mn0MoWEmtzl9Q1jKLROysiAAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkMjNiNTkwZTgtMzBjNS00OTk3LWJiZjMtZjJmZTEwYTI5
ZTg3MB4XDTI1MDQyODE5MDQyOVoXDTI1MDcyNzE5MDQyOVowLzEtMCsGA1UEAxMk
ZGJmZGJkODEtMzA5ZC00YmVkLTkzYzUtOWI5OGM1MTc5M2UzMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNE8Jck0kz58SzYCKv7ovmlllcLQifObiMlv
XBDRA/30AR2R5Fjgtbp5BDXNXqlYJJFGqVgkxB7lwliDsEOrl+WcJ2mA6LUPPfDW
DhbxbGzdJRdUbTum3BXRlI2+8Vk1DG03S6FFPcWY+WQj19FxxAYV85ugCNel8nKX
8YsoXm7rVe+6Gtq9a6hCYSJn/tjrWNNVa47jxdhARKQqpr80BCARi1QtzKxS8dnB
DcJPdFl3UJRfaNkMuG8lRfxam4HmOS/riIyFp80ohct7/7ykXZoIIyoVWwSMcfuX
85KRST9HmGDmilVdgSNHeYkAOzqMlYtvCq+cmd19AlysomcG2wIDAQABo4IDXTCC
A1kwHQYDVR0OBBYEFNVVhpNiD4hDGlmuBIxFEN31NNalMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Q2YjVhZDI4LTFjYmMtNDdhYi05MDRlLTQ1MzYxYTU0ODdjMy8yM2I1
OTBlOC0zMGM1LTQ5OTctYmJmMy1mMmZlMTBhMjllODcvYThiYzA4MjQtNGQ4OS0z
YjVhLWIzM2UtYjQ0NWYwMmNmNDEyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kNmI1YWQyOC0x
Y2JjLTQ3YWItOTA0ZS00NTM2MWE1NDg3YzMvMjNiNTkwZTgtMzBjNS00OTk3LWJi
ZjMtZjJmZTEwYTI5ZTg3LzIzYjU5MGU4LTMwYzUtNDk5Ny1iYmYzLWYyZmUxMGEy
OWU4Ny5jcmwwHwYDVR0jBBgwFoAUcy1hwgTHlLBjGpuuELFhCs6jUygwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q2YjVhZDI4LTFjYmMtNDdh
Yi05MDRlLTQ1MzYxYTU0ODdjMy8yM2I1OTBlOC0zMGM1LTQ5OTctYmJmMy1mMmZl
MTBhMjllODcuY2VyMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBADY5zUD
BADY5z4wVAYDVR0gAQH/BEowSDBGBggrBgEFBQcOAjA6MDgGCCsGAQUFBwIBFixo
dHRwczovL3d3dy5hcmluLm5ldC9yZXNvdXJjZXMvcnBraS9jcHMuaHRtbDANBgkq
hkiG9w0BAQsFAAOCAQEAj9oMeVpEpm6wERM48kOe/PlGtSvRGBplI2VlYeSBhhKc
IeW87a/yCobmiV6O5vxznUOTd/wgE67mrNC3OJRyqKr6CDAUtic/g4cJNMYD06jP
yJ6IYlqpg0SZ7JN4gAdkQV8PRRhR/6Io4+LWQNekgMscEQYBLSOnXeM4VWnzkVwD
nEFQjTbtozClSODT419UUjF3uN+oCRqMukzJSHaI9FSkHxax5Y4dgtc2KJ003FqH
3S6ayp58SsDItOwgWX5OGyZeWA5YTymV0k6A2CEtDc1hWElfrDZmnYJ62QhKe0rP
lGvnjDMFz5lfn5drzjw2x/Nprw/+5lNh/BAgeQDJIQ==
-----END CERTIFICATE-----
Generated at Sun May 11 01:43:21 2025 by rpki-client