Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b/8cdc9ace-5255-3f8d-8979-c48477c57f3a.roa
File: 8cdc9ace-5255-3f8d-8979-c48477c57f3a.roa (raw, json)
Hash identifier: 5q1tke6CqrTYzTjEg6TnwIBNWaz0OUIvlg/hvLYGYoQ=
Subject key identifier: E6:94:3B:35:81:12:20:2E:23:1E:EE:3D:89:A0:FC:1C:B1:4A:82:1E
Certificate issuer: /CN=c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b
Certificate serial: 010D0C9F43285849151155DAE58FA44C661A2300
Authority key identifier: 60:87:0B:AF:04:2C:FC:75:F9:1A:BB:8B:C4:9E:4C:35:6F:F7:5F:34
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b/8cdc9ace-5255-3f8d-8979-c48477c57f3a.roa
Signing time: Wed 05 Mar 2025 02:00:40 +0000
ROA not before: Wed 05 Mar 2025 02:00:40 +0000
ROA not after: Tue 03 Jun 2025 01:00:40 +0000
asID: 22252
IP address blocks: 157.188.0.0/16 maxlen: 16
157.188.0.0/18 maxlen: 18
157.188.12.0/23 maxlen: 23
157.188.128.0/19 maxlen: 19
157.188.192.0/20 maxlen: 20
157.188.208.0/20 maxlen: 20
157.188.252.0/22 maxlen: 22
161.185.0.0/16 maxlen: 16
161.185.0.0/17 maxlen: 17
161.185.4.0/24 maxlen: 24
161.185.7.0/24 maxlen: 24
161.185.30.0/23 maxlen: 23
161.185.32.0/20 maxlen: 20
161.185.150.0/23 maxlen: 23
161.185.151.0/24 maxlen: 24
161.185.152.0/23 maxlen: 23
161.185.160.0/24 maxlen: 24
161.185.161.0/24 maxlen: 24
161.185.182.0/24 maxlen: 24
161.185.208.0/23 maxlen: 23
161.185.224.0/23 maxlen: 23
167.153.0.0/16 maxlen: 16
167.153.0.0/17 maxlen: 17
167.153.128.0/17 maxlen: 17
167.153.150.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:15:11:55:da:e5:8f:a4:4c:66:1a:23:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b
Validity
Not Before: Mar 5 02:00:40 2025 GMT
Not After : Jun 3 01:00:40 2025 GMT
Subject: CN=05e839f2-7752-41b0-ba58-4df0ab735306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:01:a8:1c:03:cf:54:d2:dd:53:16:9b:7f:dc:
69:29:de:7a:17:5f:52:cf:61:f6:90:55:10:f0:c0:
32:22:a5:35:ff:26:10:29:37:7e:98:36:8f:53:eb:
6a:d6:d5:82:ce:d0:da:3f:26:da:d8:e2:99:fa:b0:
5a:03:6e:7f:c9:25:eb:f6:08:98:2a:2e:50:25:47:
27:5f:9c:31:79:f9:d2:07:f5:ac:95:8d:e3:fd:8e:
e0:33:6b:ff:46:25:87:da:50:5a:4f:ba:1d:94:5a:
a1:2d:84:d5:27:f0:1e:0c:46:17:5c:c9:f0:31:58:
95:16:98:97:53:30:ad:b9:8a:8c:5e:ed:b5:84:ea:
4f:d4:44:0f:13:60:c6:97:63:08:98:c0:5d:88:77:
7b:ac:71:f4:50:56:8f:78:f5:7d:99:34:63:26:d6:
f5:ca:77:6f:fe:04:e1:ae:9a:e1:f5:4c:a1:25:42:
a2:84:ce:7f:f6:eb:85:4b:b7:18:34:f3:7d:49:f2:
f4:88:b7:1a:47:d8:6d:77:f9:a4:35:27:40:1b:5e:
50:fd:b9:65:a8:2d:a2:f6:95:8e:53:a7:ba:ed:b4:
1e:18:b3:b3:9b:83:e0:5c:da:70:f9:88:25:e1:bc:
99:04:30:56:9b:02:5b:54:27:e0:4f:dc:81:23:aa:
3d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:94:3B:35:81:12:20:2E:23:1E:EE:3D:89:A0:FC:1C:B1:4A:82:1E
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b/8cdc9ace-5255-3f8d-8979-c48477c57f3a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b/c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b.crl
X509v3 Authority Key Identifier:
keyid:60:87:0B:AF:04:2C:FC:75:F9:1A:BB:8B:C4:9E:4C:35:6F:F7:5F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/c391a9e1-4c7f-42f1-90ba-8d29c2c0b30b.cer
sbgp-ipAddrBlock: critical
IPv4:
157.188.0.0/16
161.185.0.0/16
167.153.0.0/16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
31:27:c3:b3:e4:0b:80:12:9d:48:1a:1e:4b:26:0e:a6:a4:cb:
57:cf:b8:34:62:fc:0d:a0:da:b4:ac:a4:f7:89:d2:ed:1a:00:
f9:cd:f5:d2:5c:d5:bd:de:28:4a:6f:a0:28:f7:7c:90:e1:38:
f0:81:22:a6:35:09:15:cd:65:6b:6b:43:52:e6:fe:4d:fa:2b:
fb:de:03:d6:83:12:f2:28:53:39:e4:a7:b9:b5:df:1c:c8:de:
ad:fd:bd:49:11:56:01:91:a4:c9:13:3e:3f:f5:61:73:4f:c5:
b8:82:f8:c6:e8:0d:3d:e8:28:ab:da:33:c6:37:e8:cf:83:72:
33:6d:46:c7:e0:0e:f0:b2:a1:d1:a3:d1:71:a9:a5:6e:26:84:
6e:09:b4:fd:eb:ee:ff:23:02:a4:b3:47:86:62:ea:98:c2:3e:
02:c2:2c:22:7a:16:54:dc:90:0a:15:17:58:64:48:68:ee:e3:
fd:0b:98:ab:5d:6b:dd:89:9d:90:4d:24:3f:95:f3:14:2d:a4:
59:2d:8c:ca:54:b4:04:f0:20:c7:72:53:e3:57:7e:f6:0f:94:
59:aa:9d:85:22:7b:20:54:59:8d:ed:c4:43:91:92:d4:b3:87:
e3:4f:a3:a0:78:f3:be:fb:18:f2:8c:7c:42:42:f6:61:a2:b2:
0c:81:da:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 16:31:32 2025 by rpki-client on console.sobornost.net