Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa
File: f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa (raw, json)
Hash identifier: riDKwB1etmACpQwiURv/Y3+YTGsMCR8hB6Wnml2equs=
Subject key identifier: 2D:F3:3D:E9:58:25:64:8C:2B:48:12:B2:D0:45:66:CB:BC:6F:00:9B
Certificate issuer: /CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Certificate serial: 010D0C9F43285848B838804D119B0102E46AF890
Authority key identifier: 55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa
Signing time: Thu 30 Jan 2025 19:48:57 +0000
ROA not before: Thu 30 Jan 2025 19:48:57 +0000
ROA not after: Wed 30 Apr 2025 18:48:57 +0000
asID: 33665
IP address blocks: 23.31.120.0/22 maxlen: 22
24.23.80.0/20 maxlen: 20
50.76.144.0/22 maxlen: 22
50.184.160.0/22 maxlen: 22
50.193.240.0/22 maxlen: 22
50.244.88.0/22 maxlen: 22
50.251.20.0/22 maxlen: 22
64.139.67.0/24 maxlen: 24
64.139.91.0/24 maxlen: 24
66.208.206.0/23 maxlen: 23
67.173.192.0/19 maxlen: 19
68.85.60.0/24 maxlen: 24
68.85.122.0/24 maxlen: 24
68.86.138.0/23 maxlen: 23
68.86.202.0/23 maxlen: 23
69.252.37.0/24 maxlen: 24
69.254.0.0/20 maxlen: 20
70.88.28.0/23 maxlen: 23
70.91.181.0/24 maxlen: 24
70.91.211.0/24 maxlen: 24
71.25.192.0/22 maxlen: 22
71.203.64.0/20 maxlen: 20
71.226.0.0/20 maxlen: 20
71.226.128.0/19 maxlen: 19
73.20.128.0/17 maxlen: 17
73.108.128.0/18 maxlen: 18
73.113.192.0/18 maxlen: 18
73.190.192.0/18 maxlen: 18
73.217.160.0/19 maxlen: 19
74.92.254.0/24 maxlen: 24
74.94.89.0/24 maxlen: 24
74.95.107.0/24 maxlen: 24
75.146.95.0/24 maxlen: 24
76.125.16.0/20 maxlen: 20
76.140.192.0/18 maxlen: 18
96.67.64.0/22 maxlen: 22
96.69.236.0/22 maxlen: 22
96.73.32.0/22 maxlen: 22
96.84.152.0/22 maxlen: 22
96.88.8.0/22 maxlen: 22
96.94.172.0/22 maxlen: 22
96.96.99.0/24 maxlen: 24
96.96.207.0/24 maxlen: 24
96.114.54.0/23 maxlen: 23
96.124.20.0/22 maxlen: 22
96.208.27.0/24 maxlen: 24
162.151.153.0/25 maxlen: 25
173.10.199.0/24 maxlen: 24
173.163.224.0/22 maxlen: 22
174.50.96.0/19 maxlen: 19
174.56.192.0/18 maxlen: 18
174.63.192.0/18 maxlen: 18
2001:558:360::/44 maxlen: 44
2001:558:fe3c::/48 maxlen: 48
2001:559:3000::/36 maxlen: 36
2001:559:8281::/48 maxlen: 48
2001:559:868b::/48 maxlen: 48
2601:100::/26 maxlen: 26
2603:2100::/26 maxlen: 26
2603:3002::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:b8:38:80:4d:11:9b:01:02:e4:6a:f8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e95a28e-27fe-479a-b086-2cc9809d54f6
Validity
Not Before: Jan 30 19:48:57 2025 GMT
Not After : Apr 30 18:48:57 2025 GMT
Subject: CN=88bf11b5-89ca-466d-a6df-2138c5d07e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5c:c5:c4:22:08:a4:0e:ce:7d:c5:2f:a4:2b:
01:ff:87:90:33:1d:ba:9b:5f:7a:96:05:f5:72:6e:
a2:7a:ec:c8:0d:ef:cd:f6:aa:77:9a:c2:d4:32:3d:
ba:0a:30:3c:a3:dc:5f:e8:0d:94:3f:bf:33:03:85:
c9:01:5b:92:11:12:7a:9c:44:11:61:5e:a5:01:e6:
1a:15:76:4e:17:81:8e:0d:4f:95:84:9d:95:d4:7c:
d3:1c:de:e3:4c:4f:75:ce:ae:57:47:72:ab:66:af:
ca:52:27:f1:7a:37:80:4a:b6:33:b4:5b:a4:71:8f:
a3:9d:51:b8:10:09:2c:63:4d:7b:22:ed:73:a7:39:
f4:a0:5d:43:22:3a:70:41:e6:0f:fd:46:37:2a:82:
e4:cc:45:22:23:a7:37:4c:31:45:0c:1a:6f:51:00:
77:1d:89:6e:1d:c2:72:78:b2:30:5d:cf:1a:31:6a:
dc:7c:32:52:27:e1:f3:c7:55:de:ef:26:0d:44:13:
9c:a7:c4:35:71:5c:6c:1f:dc:4b:a9:0c:cf:04:cf:
bf:d3:1d:b7:d5:a8:e6:a3:69:43:ff:b1:15:6b:4e:
cf:76:8f:cf:76:e1:8e:6f:ce:e3:59:f1:c8:99:d1:
87:32:a6:cc:56:58:26:08:fe:4d:f7:54:d6:96:51:
3b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F3:3D:E9:58:25:64:8C:2B:48:12:B2:D0:45:66:CB:BC:6F:00:9B
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/f40704a5-d5f3-3fe1-b8ff-8d0fb3dd6d87.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6/4e95a28e-27fe-479a-b086-2cc9809d54f6.crl
X509v3 Authority Key Identifier:
keyid:55:43:28:31:2B:A2:11:E9:0C:63:2A:6B:C1:7E:0D:D6:92:76:3E:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/4e95a28e-27fe-479a-b086-2cc9809d54f6.cer
sbgp-ipAddrBlock: critical
IPv4:
23.31.120.0/22
24.23.80.0/20
50.76.144.0/22
50.184.160.0/22
50.193.240.0/22
50.244.88.0/22
50.251.20.0/22
64.139.67.0/24
64.139.91.0/24
66.208.206.0/23
67.173.192.0/19
68.85.60.0/24
68.85.122.0/24
68.86.138.0/23
68.86.202.0/23
69.252.37.0/24
69.254.0.0/20
70.88.28.0/23
70.91.181.0/24
70.91.211.0/24
71.25.192.0/22
71.203.64.0/20
71.226.0.0/20
71.226.128.0/19
73.20.128.0/17
73.108.128.0/18
73.113.192.0/18
73.190.192.0/18
73.217.160.0/19
74.92.254.0/24
74.94.89.0/24
74.95.107.0/24
75.146.95.0/24
76.125.16.0/20
76.140.192.0/18
96.67.64.0/22
96.69.236.0/22
96.73.32.0/22
96.84.152.0/22
96.88.8.0/22
96.94.172.0/22
96.96.99.0/24
96.96.207.0/24
96.114.54.0/23
96.124.20.0/22
96.208.27.0/24
162.151.153.0/25
173.10.199.0/24
173.163.224.0/22
174.50.96.0/19
174.56.192.0/18
174.63.192.0/18
IPv6:
2001:558:360::/44
2001:558:fe3c::/48
2001:559:3000::/36
2001:559:8281::/48
2001:559:868b::/48
2601:100::/26
2603:2100::/26
2603:3002::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
2d:bc:1e:a3:39:55:60:23:72:16:c3:94:8f:81:82:40:3d:e9:
fe:b1:5c:ce:94:a7:ac:2b:92:c3:d7:77:22:79:98:74:42:71:
17:51:9d:57:c1:08:45:19:35:18:04:a2:c6:32:79:fa:bc:fb:
97:0d:51:d0:1a:62:ec:57:b4:7d:9f:e9:fa:5b:4e:9e:b2:82:
3e:d9:47:88:e7:d4:18:c2:6f:08:c2:e0:51:2d:80:75:1f:40:
16:d4:bf:ae:ce:63:d3:44:2c:6a:68:94:9a:bb:d3:4c:93:c8:
96:0c:c0:29:a2:f5:99:8e:01:72:8e:98:f7:9b:a0:49:49:f6:
28:5d:f4:72:93:fc:73:94:ad:f9:0e:2d:cc:72:7a:e1:cb:aa:
16:20:26:d4:02:7a:96:d6:a2:39:ae:95:a5:b4:50:b0:59:79:
2f:8c:22:35:da:60:09:f6:93:68:7d:f1:e2:ff:fb:22:7e:08:
46:c5:36:09:18:95:d5:c7:a3:5f:3f:1c:e9:f4:a2:7c:b5:63:
2b:db:eb:9f:12:e6:d0:7f:d4:17:3d:a6:ef:62:51:77:c5:0e:
62:bd:3a:d3:00:b6:5a:ad:fb:ba:a9:fb:19:71:f3:1c:2e:0b:
c4:2a:1f:2e:77:f1:94:ee:82:91:50:38:f6:4e:37:c3:f7:d4:
a8:5a:5e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 03:22:24 2025 by rpki-client on console.sobornost.net