Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee/b189127e-17d2-3a1b-8678-fb80dca44ec2.roa
File: b189127e-17d2-3a1b-8678-fb80dca44ec2.roa (raw, json)
Hash identifier: sGHut0lWo8ppzqyr3IYzY0rwBiXgK5zu0ukQsP5OvPc=
Subject key identifier: 74:55:2C:A1:E1:4D:09:15:24:72:D6:BA:C8:8B:D1:67:B0:1E:54:60
Certificate issuer: /CN=aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee
Certificate serial: 010D0C9F432858495C243FDC30DD0D07172CD200
Authority key identifier: 63:BC:D6:85:28:16:AD:41:06:B3:08:B9:46:EC:5B:FF:7A:DF:DC:E2
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee/b189127e-17d2-3a1b-8678-fb80dca44ec2.roa
Signing time: Sun 30 Mar 2025 13:01:02 +0000
ROA not before: Sun 30 Mar 2025 13:01:02 +0000
ROA not after: Sat 28 Jun 2025 13:01:02 +0000
asID: 5650
IP address blocks: 104.218.195.0/24 maxlen: 24
104.218.199.0/24 maxlen: 24
104.251.81.0/24 maxlen: 24
104.251.86.0/24 maxlen: 24
104.251.93.0/24 maxlen: 24
141.193.96.0/23 maxlen: 23
158.115.228.0/23 maxlen: 23
172.98.167.0/24 maxlen: 24
172.98.170.0/24 maxlen: 24
172.98.189.0/24 maxlen: 24
207.230.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:5c:24:3f:dc:30:dd:0d:07:17:2c:d2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee
Validity
Not Before: Mar 30 13:01:02 2025 GMT
Not After : Jun 28 13:01:02 2025 GMT
Subject: CN=8c342a04-c953-4ab4-bc1d-58a472de922c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f3:44:df:da:3d:ef:a0:08:7e:6f:b9:0a:b4:
5d:d5:a3:44:5f:23:c3:b1:67:79:10:0c:4b:2c:25:
c3:95:cd:6c:be:7b:8a:50:7b:40:10:4e:4d:4e:25:
15:b0:fe:72:e3:56:4b:e3:92:6c:30:7e:55:8e:b6:
3b:35:cb:b1:74:4d:22:3e:34:12:4a:31:f2:60:82:
5f:b4:35:44:58:8f:8c:bb:bc:8f:6b:cf:07:a7:e2:
5c:39:52:ed:4f:e5:c1:54:20:89:b6:63:a3:fb:61:
71:46:e2:2b:2b:0a:90:c6:b2:ea:6a:dc:ac:f8:31:
9a:6d:74:c7:6d:0a:27:34:17:53:fa:fa:ce:2d:64:
73:95:90:24:bc:25:65:9e:14:0d:b0:11:73:c3:7f:
d6:f7:61:f2:d6:30:6d:2f:24:e6:e8:41:67:c0:70:
bf:0f:41:ff:05:71:01:87:a5:22:1f:c5:44:af:69:
89:af:11:8a:55:52:c3:38:8f:8d:3e:88:49:a0:c5:
b5:54:8e:ad:41:82:54:10:60:27:f2:22:1d:5c:eb:
c0:30:2d:c0:24:9a:64:50:af:e6:5f:09:db:7b:fa:
66:47:e8:7f:d6:e4:90:d7:76:cc:c4:81:55:7f:e4:
30:27:25:cf:f9:e4:b7:c0:65:22:23:22:02:42:ad:
80:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:55:2C:A1:E1:4D:09:15:24:72:D6:BA:C8:8B:D1:67:B0:1E:54:60
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee/b189127e-17d2-3a1b-8678-fb80dca44ec2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee/aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee.crl
X509v3 Authority Key Identifier:
keyid:63:BC:D6:85:28:16:AD:41:06:B3:08:B9:46:EC:5B:FF:7A:DF:DC:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/aaf6d830-ed84-41cc-a7e8-52bf89c3b5ee.cer
sbgp-ipAddrBlock: critical
IPv4:
104.218.195.0/24
104.218.199.0/24
104.251.81.0/24
104.251.86.0/24
104.251.93.0/24
141.193.96.0/23
158.115.228.0/23
172.98.167.0/24
172.98.170.0/24
172.98.189.0/24
207.230.114.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
28:80:c1:e2:1a:a4:f9:8c:50:89:0a:e6:2f:5e:f2:fd:f0:50:
97:d6:2e:85:e1:c1:2f:b4:8b:01:97:70:c4:21:3e:28:bd:7e:
b4:e8:d4:87:fa:99:d6:e5:5e:ce:03:c0:e7:e8:bc:1e:f7:2e:
83:ba:de:27:1d:98:44:19:76:2a:72:92:3f:d2:7f:43:76:e0:
e0:15:64:c0:e1:09:e9:f2:92:20:00:f3:bb:75:5a:b2:c9:7f:
db:c2:6c:bc:aa:e3:bf:42:04:54:85:5b:c6:f6:e4:bc:39:34:
30:ef:06:e2:74:62:ec:88:79:8a:c2:80:39:5d:5b:2c:b7:6e:
68:fd:24:80:39:36:76:d4:db:ad:f6:a3:17:01:76:55:ce:51:
a0:fb:ec:82:c0:dc:ee:6e:4f:55:42:84:51:f4:74:ee:84:96:
d7:55:d2:94:0d:88:66:5c:fc:68:a7:20:a1:90:30:4f:aa:d2:
3f:c5:34:e3:8e:ac:c1:56:0b:54:d9:09:ab:25:63:bd:0b:f6:
2e:5a:f3:e1:c8:27:14:66:1d:91:15:04:a5:ce:db:0b:c5:16:
4f:0e:79:cd:d0:74:0d:1d:54:e3:cd:76:92:19:b2:c9:27:51:
04:82:4e:33:12:ec:9c:c4:dd:8a:9a:2d:1d:20:cf:c3:88:c7:
f8:68:99:bb
-----BEGIN CERTIFICATE-----
MIIGfzCCBWegAwIBAgIUAQ0Mn0MoWElcJD/cMN0NBxcs0gAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkYWFmNmQ4MzAtZWQ4NC00MWNjLWE3ZTgtNTJiZjg5YzNi
NWVlMB4XDTI1MDMzMDEzMDEwMloXDTI1MDYyODEzMDEwMlowLzEtMCsGA1UEAxMk
OGMzNDJhMDQtYzk1My00YWI0LWJjMWQtNThhNDcyZGU5MjJjMIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxPNE39o976AIfm+5CrRd1aNEXyPDsWd5EAxL
LCXDlc1svnuKUHtAEE5NTiUVsP5y41ZL45JsMH5VjrY7NcuxdE0iPjQSSjHyYIJf
tDVEWI+Mu7yPa88Hp+JcOVLtT+XBVCCJtmOj+2FxRuIrKwqQxrLqatys+DGabXTH
bQonNBdT+vrOLWRzlZAkvCVlnhQNsBFzw3/W92Hy1jBtLyTm6EFnwHC/D0H/BXEB
h6UiH8VEr2mJrxGKVVLDOI+NPohJoMW1VI6tQYJUEGAn8iIdXOvAMC3AJJpkUK/m
Xwnbe/pmR+h/1uSQ13bMxIFVf+QwJyXP+eS3wGUiIyICQq2AuQIDAQABo4IDkTCC
A40wHQYDVR0OBBYEFHRVLKHhTQkVJHLWusiL0WewHlRgMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS9hYWY2
ZDgzMC1lZDg0LTQxY2MtYTdlOC01MmJmODljM2I1ZWUvYjE4OTEyN2UtMTdkMi0z
YTFiLTg2NzgtZmI4MGRjYTQ0ZWMyLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy83NmZlMTFkNC1k
MzUyLTQ5OTQtOGY2Yy1kNmM5MWIwYjg0MTUvYWFmNmQ4MzAtZWQ4NC00MWNjLWE3
ZTgtNTJiZjg5YzNiNWVlL2FhZjZkODMwLWVkODQtNDFjYy1hN2U4LTUyYmY4OWMz
YjVlZS5jcmwwHwYDVR0jBBgwFoAUY7zWhSgWrUEGswi5Ruxb/3rf3OIwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzc2ZmUxMWQ0LWQzNTItNDk5
NC04ZjZjLWQ2YzkxYjBiODQxNS9hYWY2ZDgzMC1lZDg0LTQxY2MtYTdlOC01MmJm
ODljM2I1ZWUuY2VyMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQAaNrDAwQA
aNrHAwQAaPtRAwQAaPtWAwQAaPtdAwQBjcFgAwQBnnPkAwQArGKnAwQArGKqAwQA
rGK9AwQAz+ZyMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcC
ARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWww
DQYJKoZIhvcNAQELBQADggEBACiAweIapPmMUIkK5i9e8v3wUJfWLoXhwS+0iwGX
cMQhPii9frTo1If6mdblXs4DwOfovB73LoO63icdmEQZdipykj/Sf0N24OAVZMDh
CenykiAA87t1WrLJf9vCbLyq479CBFSFW8b25Lw5NDDvBuJ0YuyIeYrCgDldWyy3
bmj9JIA5NnbU2632oxcBdlXOUaD77ILA3O5uT1VChFH0dO6EltdV0pQNiGZc/Gin
IKGQME+q0j/FNOOOrMFWC1TZCaslY70L9i5a8+HIJxRmHZEVBKXO2wvFFk8Oec3Q
dA0dVOPNdpIZssknUQSCTjMS7JzE3YqaLR0gz8OIx/hombs=
-----END CERTIFICATE-----
Generated at Tue Apr 15 22:28:07 2025 by rpki-client on console.sobornost.net