Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0cebf4b3-f223-4dcf-b466-5757dc91a10d/04d911aa-036c-302e-aec4-a9fdfb56ac50.roa
File: 04d911aa-036c-302e-aec4-a9fdfb56ac50.roa (raw, json)
Hash identifier: c2er/CulSd9W3AWdhJUc7UjcR5N5uwmnoEwRo0++f0k=
Subject key identifier: 8C:BB:9D:9D:3D:52:4E:A8:99:BE:7B:98:05:D3:2B:41:E8:20:51:0B
Certificate issuer: /CN=0cebf4b3-f223-4dcf-b466-5757dc91a10d
Certificate serial: 010D0C9F43285848B62616AF7B3915260A20BDC0
Authority key identifier: 2C:B1:C6:6F:30:76:4D:ED:BC:60:2E:48:E6:39:C0:66:25:09:3B:FA
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0cebf4b3-f223-4dcf-b466-5757dc91a10d.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0cebf4b3-f223-4dcf-b466-5757dc91a10d/04d911aa-036c-302e-aec4-a9fdfb56ac50.roa
Signing time: Thu 30 Jan 2025 02:00:40 +0000
ROA not before: Thu 30 Jan 2025 02:00:40 +0000
ROA not after: Wed 30 Apr 2025 01:00:40 +0000
asID: 13994
IP address blocks: 144.86.192.0/22 maxlen: 22
144.86.192.0/24 maxlen: 24
144.86.193.0/24 maxlen: 24
144.86.194.0/24 maxlen: 24
144.86.195.0/24 maxlen: 24
207.188.20.0/22 maxlen: 22
207.188.20.0/24 maxlen: 24
207.188.21.0/24 maxlen: 24
207.188.22.0/24 maxlen: 24
207.188.23.0/24 maxlen: 24
Validation: Failed, unable to get certificate CRL
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:b6:26:16:af:7b:39:15:26:0a:20:bd:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cebf4b3-f223-4dcf-b466-5757dc91a10d
Validity
Not Before: Jan 30 02:00:40 2025 GMT
Not After : Apr 30 01:00:40 2025 GMT
Subject: CN=bbf60736-dfac-44eb-8512-564298e8f5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:58:7c:34:7e:7e:56:ff:02:9f:23:aa:7e:64:
83:ee:2c:83:c5:75:21:ba:aa:84:df:fc:3a:38:12:
d1:d8:66:5b:88:d3:b7:75:ab:ed:37:cc:fa:5b:31:
72:7b:a3:2c:42:25:31:3f:86:e5:f6:1c:b9:f5:5c:
7a:5f:47:88:de:f4:4d:d5:45:15:87:90:2b:aa:8f:
54:c7:f5:ee:ee:b7:18:31:40:15:9c:86:94:39:8b:
9d:68:24:86:d8:00:60:a8:13:7b:d4:28:01:31:28:
0f:d0:39:08:b6:fe:5c:7f:65:1f:2c:1f:3f:c4:68:
15:44:a2:91:36:21:4f:bc:38:01:8c:63:32:6f:93:
c2:7b:d5:dc:d5:3b:b2:49:28:f6:43:d9:e1:a6:89:
9c:e8:f0:b1:09:80:00:fb:3b:63:14:d1:77:7b:57:
4c:5d:08:12:ad:80:6e:38:dd:60:61:f2:34:bc:57:
fe:5f:1f:e7:6f:97:ec:69:2c:c3:71:2d:0f:6e:e9:
78:87:0c:a5:1b:71:e9:4e:db:05:d3:54:f2:ef:96:
f4:a4:b5:a7:0e:24:f0:27:c2:bd:58:96:78:4a:d7:
b7:28:b4:7f:4b:f4:04:95:6e:e4:6f:de:d1:7e:a7:
3b:f0:3b:fe:93:a5:28:a8:5c:ea:84:0f:f0:ab:01:
8a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:BB:9D:9D:3D:52:4E:A8:99:BE:7B:98:05:D3:2B:41:E8:20:51:0B
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0cebf4b3-f223-4dcf-b466-5757dc91a10d/04d911aa-036c-302e-aec4-a9fdfb56ac50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0cebf4b3-f223-4dcf-b466-5757dc91a10d/0cebf4b3-f223-4dcf-b466-5757dc91a10d.crl
X509v3 Authority Key Identifier:
keyid:2C:B1:C6:6F:30:76:4D:ED:BC:60:2E:48:E6:39:C0:66:25:09:3B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/0cebf4b3-f223-4dcf-b466-5757dc91a10d.cer
sbgp-ipAddrBlock: critical
IPv4:
144.86.192.0/22
207.188.20.0/22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
de:49:df:51:87:0a:cc:cd:f6:05:3e:f6:bf:e2:f2:e3:53:58:
1c:3e:d2:a8:f0:2e:19:d3:09:17:c2:42:a8:18:ef:9e:99:4a:
e2:69:76:cb:79:20:a5:37:f2:57:96:71:84:1f:eb:d5:31:12:
07:ee:16:5a:ef:74:de:32:35:70:6c:6f:55:19:a3:45:08:27:
9b:3a:b7:65:f3:d2:d8:1a:b9:57:91:0f:40:06:e1:49:95:b5:
ce:60:4f:bf:ba:f2:1b:a8:5c:7e:8e:a4:71:6a:4a:85:d0:fc:
05:42:73:20:52:b5:f7:d6:7b:01:64:19:3b:4d:9e:24:92:b8:
64:4b:8b:3e:3f:dd:8a:e7:2b:d2:df:5f:d1:15:51:47:a1:ae:
63:c3:5d:b5:01:19:56:97:b1:7f:56:63:6c:68:95:15:a3:c6:
94:16:6d:1a:b0:e3:20:f1:23:e2:4b:86:af:e4:f8:49:b2:23:
df:54:6c:2c:4b:b8:eb:5c:4a:6f:a5:11:1e:88:32:de:6a:95:
57:93:f3:07:46:b2:c9:5d:d3:f2:81:fb:dc:52:a6:34:12:20:
64:a7:77:2b:f5:5b:01:62:49:9e:44:2c:01:cf:76:bf:d4:7f:
e1:47:06:9b:af:53:8b:40:1e:e9:1c:70:cb:19:6c:64:00:8b:
43:cb:e0:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 22:26:54 2025 by rpki-client on console.sobornost.net