Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/3e9fb25a-438f-4e1d-a136-5c878d065c24/58dadb05-4845-3a41-9b2f-663a09e0cfff.roa
File: 58dadb05-4845-3a41-9b2f-663a09e0cfff.roa (raw, json)
Hash identifier: aUdcTLc/uiXlJhR7wBMLRjReTwoDOtMaJWj6k+hef+s=
Subject key identifier: 86:22:84:68:DF:1E:80:C6:6A:F6:00:C9:6E:BF:BA:B4:20:A1:E8:9E
Certificate issuer: /CN=3e9fb25a-438f-4e1d-a136-5c878d065c24
Certificate serial: 010D0C9F432858496CE442B3FB45C5FA79135040
Authority key identifier: D3:0E:76:B1:A3:15:98:01:FE:2F:9F:43:FC:51:43:0A:3A:FA:EA:04
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/3e9fb25a-438f-4e1d-a136-5c878d065c24.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/3e9fb25a-438f-4e1d-a136-5c878d065c24/58dadb05-4845-3a41-9b2f-663a09e0cfff.roa
Signing time: Sat 05 Apr 2025 13:01:01 +0000
ROA not before: Sat 05 Apr 2025 13:01:01 +0000
ROA not after: Fri 04 Jul 2025 13:01:01 +0000
asID: 29765
IP address blocks: 162.217.104.0/21 maxlen: 24
192.104.0.0/24 maxlen: 24
199.80.28.0/22 maxlen: 24
204.15.96.0/22 maxlen: 24
208.91.240.0/22 maxlen: 24
2606:5b00::/32 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:49:6c:e4:42:b3:fb:45:c5:fa:79:13:50:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e9fb25a-438f-4e1d-a136-5c878d065c24
Validity
Not Before: Apr 5 13:01:01 2025 GMT
Not After : Jul 4 13:01:01 2025 GMT
Subject: CN=425a7e19-447b-4c21-be1c-e5fa2dc08df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f4:f9:b5:05:8b:3f:d3:5c:66:71:00:8a:96:
0a:08:81:54:e6:d3:ff:97:08:97:01:c5:49:da:46:
4f:aa:68:76:6a:ef:fb:6e:50:59:b8:88:cd:cf:e5:
e3:37:b3:82:75:20:5e:21:22:ca:81:8d:09:c1:b8:
9c:dc:34:98:c3:8e:45:49:c6:31:9b:74:d8:19:f0:
d1:27:31:c1:49:5e:97:c4:42:d2:13:04:6f:c9:6c:
7d:72:f9:fb:cb:01:d1:55:38:31:7c:e9:bf:03:ea:
c5:04:45:43:93:eb:9b:89:d1:64:c0:34:e8:cb:e4:
c0:6c:02:97:05:ea:d5:1a:f8:e3:bb:20:9f:fb:03:
a9:1a:ed:e8:73:93:1c:ae:5e:12:e2:96:ed:9b:7c:
19:ec:bc:0b:b9:5e:18:05:70:5a:c6:fb:b6:7f:75:
b2:73:02:6d:98:e7:03:35:26:c8:2c:de:70:1a:0e:
84:82:de:93:d1:24:c6:e7:24:7d:34:2c:ce:76:26:
1b:45:b6:90:cf:f1:69:f1:1a:81:f0:e1:f2:0f:bd:
26:a2:d7:f4:40:a3:76:b8:64:78:2a:fa:2a:a5:80:
c2:77:5a:d0:f0:80:15:dd:9a:58:01:d7:78:2f:c9:
9e:ee:87:b5:bc:e7:eb:61:7d:59:27:ea:01:ba:c9:
05:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:22:84:68:DF:1E:80:C6:6A:F6:00:C9:6E:BF:BA:B4:20:A1:E8:9E
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/3e9fb25a-438f-4e1d-a136-5c878d065c24/58dadb05-4845-3a41-9b2f-663a09e0cfff.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/3e9fb25a-438f-4e1d-a136-5c878d065c24/3e9fb25a-438f-4e1d-a136-5c878d065c24.crl
X509v3 Authority Key Identifier:
keyid:D3:0E:76:B1:A3:15:98:01:FE:2F:9F:43:FC:51:43:0A:3A:FA:EA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/d9d1572f-6cbb-4cf7-b599-e9d0e981d9bf/3e9fb25a-438f-4e1d-a136-5c878d065c24.cer
sbgp-ipAddrBlock: critical
IPv4:
162.217.104.0/21
192.104.0.0/24
199.80.28.0/22
204.15.96.0/22
208.91.240.0/22
IPv6:
2606:5b00::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
1b:5d:46:f3:27:5f:1c:ab:83:5e:5e:4c:d6:fa:46:ed:1b:fd:
20:1c:82:eb:f1:c1:17:7f:b9:ae:07:7e:fd:f6:31:13:64:eb:
ad:c9:4c:d9:83:f7:e1:cd:9e:6d:91:51:2b:92:d0:bf:e0:dc:
9d:15:35:d3:ac:2c:1d:64:9a:f6:b4:b3:34:e1:78:3f:30:ac:
fe:ba:d3:35:d1:4e:97:83:04:fa:7f:08:7e:7e:de:8a:e5:fa:
d6:e9:ae:9f:29:f5:d5:a4:a9:9c:c0:e6:e1:a3:cb:42:30:f3:
e1:04:b9:55:f8:a8:c2:81:09:2d:eb:5c:df:66:80:69:ae:06:
30:9d:fd:30:f9:4b:b0:53:c5:19:b1:01:9b:c7:b9:0f:f2:91:
c2:63:8b:21:44:ec:6d:d7:3c:ba:6c:82:e7:fc:34:64:17:63:
5d:9c:4d:43:bd:fa:45:05:5b:75:14:3e:46:f8:ab:3a:44:91:
6d:54:32:0f:b7:c7:38:d7:30:1b:db:bb:17:9e:8d:f9:96:61:
ab:e9:f0:16:6e:35:6f:66:17:12:fa:53:96:43:58:54:c9:63:
fa:dd:4e:4c:f1:d7:7d:cd:ca:ab:8e:3e:52:e0:c3:cc:ed:09:
78:9c:2e:c5:64:d5:5d:c1:20:74:52:0f:68:0b:7e:14:0d:5a:
70:29:15:69
-----BEGIN CERTIFICATE-----
MIIGajCCBVKgAwIBAgIUAQ0Mn0MoWEls5EKz+0XF+nkTUEAwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkM2U5ZmIyNWEtNDM4Zi00ZTFkLWExMzYtNWM4NzhkMDY1
YzI0MB4XDTI1MDQwNTEzMDEwMVoXDTI1MDcwNDEzMDEwMVowLzEtMCsGA1UEAxMk
NDI1YTdlMTktNDQ3Yi00YzIxLWJlMWMtZTVmYTJkYzA4ZGY1MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPT5tQWLP9NcZnEAipYKCIFU5tP/lwiXAcVJ
2kZPqmh2au/7blBZuIjNz+XjN7OCdSBeISLKgY0Jwbic3DSYw45FScYxm3TYGfDR
JzHBSV6XxELSEwRvyWx9cvn7ywHRVTgxfOm/A+rFBEVDk+ubidFkwDToy+TAbAKX
BerVGvjjuyCf+wOpGu3oc5Mcrl4S4pbtm3wZ7LwLuV4YBXBaxvu2f3WycwJtmOcD
NSbILN5wGg6Egt6T0STG5yR9NCzOdiYbRbaQz/Fp8RqB8OHyD70motf0QKN2uGR4
KvoqpYDCd1rQ8IAV3ZpYAdd4L8me7oe1vOfrYX1ZJ+oBuskFawIDAQABo4IDfDCC
A3gwHQYDVR0OBBYEFIYihGjfHoDGavYAyW6/urQgoeieMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNmNy1iNTk5LWU5ZDBlOTgxZDliZi8zZTlm
YjI1YS00MzhmLTRlMWQtYTEzNi01Yzg3OGQwNjVjMjQvNThkYWRiMDUtNDg0NS0z
YTQxLTliMmYtNjYzYTA5ZTBjZmZmLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9kOWQxNTcyZi02
Y2JiLTRjZjctYjU5OS1lOWQwZTk4MWQ5YmYvM2U5ZmIyNWEtNDM4Zi00ZTFkLWEx
MzYtNWM4NzhkMDY1YzI0LzNlOWZiMjVhLTQzOGYtNGUxZC1hMTM2LTVjODc4ZDA2
NWMyNC5jcmwwHwYDVR0jBBgwFoAU0w52saMVmAH+L59D/FFDCjr66gQwDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Q5ZDE1NzJmLTZjYmItNGNm
Ny1iNTk5LWU5ZDBlOTgxZDliZi8zZTlmYjI1YS00MzhmLTRlMWQtYTEzNi01Yzg3
OGQwNjVjMjQuY2VyMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQDotloAwQA
wGgAAwQCx1AcAwQCzA9gAwQC0FvwMA0EAgACMAcDBQAmBlsAMFQGA1UdIAEB/wRK
MEgwRgYIKwYBBQUHDgIwOjA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cuYXJpbi5u
ZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0bWwwDQYJKoZIhvcNAQELBQADggEBABtd
RvMnXxyrg15eTNb6Ru0b/SAcguvxwRd/ua4Hfv32MRNk663JTNmD9+HNnm2RUSuS
0L/g3J0VNdOsLB1kmva0szTheD8wrP660zXRTpeDBPp/CH5+3orl+tbprp8p9dWk
qZzA5uGjy0Iw8+EEuVX4qMKBCS3rXN9mgGmuBjCd/TD5S7BTxRmxAZvHuQ/ykcJj
iyFE7G3XPLpsguf8NGQXY12cTUO9+kUFW3UUPkb4qzpEkW1UMg+3xzjXMBvbuxee
jfmWYavp8BZuNW9mFxL6U5ZDWFTJY/rdTkzx133NyquOPlLgw8ztCXicLsVk1V3B
IHRSD2gLfhQNWnApFWk=
-----END CERTIFICATE-----
Generated at Tue Apr 15 13:45:00 2025 by rpki-client on console.sobornost.net