Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/a530d213-91ee-3679-9a9e-c3f0cfea4cac.roa
File: a530d213-91ee-3679-9a9e-c3f0cfea4cac.roa (raw, json)
Hash identifier: B9nBQbU4IiXN0R7a82CaAyWaJThcymcux8EExRW9LoU=
Subject key identifier: 69:C4:8D:F0:07:0E:B9:0C:55:DE:D6:41:EF:20:12:94:7C:FE:B2:7D
Certificate issuer: /CN=e4592d18-89a2-4b31-a14b-b5ea3eae2c4a
Certificate serial: 010D0C9F4328583FEB2FD3E9F78E72C9C219BC80
Authority key identifier: 87:5F:A2:FF:E5:93:3B:B5:16:DE:44:BF:B9:3E:AF:BF:FD:FD:59:85
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/a530d213-91ee-3679-9a9e-c3f0cfea4cac.roa
Signing time: Tue 15 Nov 2022 14:23:16 +0000
ROA not before: Tue 15 Nov 2022 14:23:16 +0000
ROA not after: Mon 17 Feb 2025 05:00:00 +0000
asID: 53755
IP address blocks: 107.167.64.0/19 maxlen: 19
23.226.64.0/20 maxlen: 20
104.161.0.0/17 maxlen: 17
107.178.64.0/18 maxlen: 18
107.189.128.0/18 maxlen: 18
148.163.0.0/17 maxlen: 17
162.213.208.0/22 maxlen: 22
162.218.112.0/21 maxlen: 21
184.164.64.0/19 maxlen: 19
192.30.136.0/22 maxlen: 22
192.110.160.0/21 maxlen: 21
199.231.84.0/22 maxlen: 22
2604:6280::/32 maxlen: 32
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3f:eb:2f:d3:e9:f7:8e:72:c9:c2:19:bc:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4592d18-89a2-4b31-a14b-b5ea3eae2c4a
Validity
Not Before: Nov 15 14:23:16 2022 GMT
Not After : Feb 17 05:00:00 2025 GMT
Subject: CN=2275f50a-9bf2-48d4-abcc-ee2c00301db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:dd:63:66:ad:c2:56:9f:a6:8a:c0:40:a1:74:
b7:21:19:77:1d:cf:42:3b:7c:1d:91:49:6f:da:5c:
e3:60:54:3e:b3:22:fe:d9:83:04:9a:b0:12:44:73:
8a:ef:42:8c:c9:ae:17:d7:03:ee:af:94:e4:c4:34:
da:a5:61:da:3c:7b:79:8b:3f:51:1f:c0:6f:6b:ae:
cc:eb:c9:3b:49:f0:8d:da:e4:ac:96:46:5a:97:c3:
44:16:9f:10:30:25:b6:a5:e6:04:f8:cf:33:a9:14:
d6:9b:cd:62:96:17:d3:57:d8:6a:a9:30:f3:6b:99:
31:1c:f6:e6:35:11:33:e0:71:cc:3c:9e:9a:47:47:
00:57:07:99:a1:50:c0:fb:b2:91:66:57:bb:1c:af:
b4:87:e5:aa:2a:3a:14:f3:24:8d:d3:9e:8a:d1:1c:
17:fb:bb:7a:e3:db:d3:78:e0:15:ce:95:a9:b3:ed:
1c:04:b5:05:5c:b4:4e:c2:a9:28:71:46:e9:1a:84:
96:cd:1e:14:d1:da:4a:cd:19:39:12:2e:9f:26:c6:
2b:3c:03:3f:ea:5c:91:4c:0a:45:84:02:3c:70:52:
88:40:0e:5b:f5:90:43:73:3d:b7:d2:17:bc:f1:e6:
8b:59:1d:5d:f7:88:e1:e8:16:63:99:70:af:8e:a4:
8c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:C4:8D:F0:07:0E:B9:0C:55:DE:D6:41:EF:20:12:94:7C:FE:B2:7D
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/a530d213-91ee-3679-9a9e-c3f0cfea4cac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.crl
X509v3 Authority Key Identifier:
keyid:87:5F:A2:FF:E5:93:3B:B5:16:DE:44:BF:B9:3E:AF:BF:FD:FD:59:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.cer
sbgp-ipAddrBlock: critical
IPv4:
23.226.64.0/20
104.161.0.0/17
107.167.64.0/19
107.178.64.0/18
107.189.128.0/18
148.163.0.0/17
162.213.208.0/22
162.218.112.0/21
184.164.64.0/19
192.30.136.0/22
192.110.160.0/21
199.231.84.0/22
IPv6:
2604:6280::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
c1:ca:e2:5c:e3:9f:b7:d2:60:35:59:5d:c5:11:4a:09:45:97:
c5:6d:07:61:a0:bf:8f:d2:59:d4:5f:4a:bc:68:43:a7:75:3f:
90:a7:97:f2:ca:10:1a:dc:ba:8c:b1:43:30:49:66:70:ed:57:
aa:9a:ae:8d:ae:27:a7:83:0f:f3:b9:51:3f:46:bb:f8:fb:19:
60:4d:0f:1c:1e:f5:68:1f:35:64:a7:dc:4a:62:df:da:5b:dd:
d5:79:d7:7b:3b:61:2d:20:81:b3:c5:34:33:25:a8:60:24:f9:
99:30:c4:ed:2a:99:4c:80:a6:74:e7:32:6f:42:f8:72:81:2e:
3b:66:b1:06:34:a7:c4:0c:4e:af:0b:20:2d:93:40:81:a1:ed:
30:4f:6f:ee:9b:43:6f:9a:9f:56:96:44:16:5f:83:b7:b2:c7:
e8:1c:65:d4:c5:63:e2:d2:03:03:d6:58:f9:a6:e2:c2:80:d1:
1d:de:2f:25:d9:fa:fc:31:cf:9b:29:96:c8:2d:2a:6c:dd:b2:
6b:f1:d6:70:3f:e6:0b:ae:34:55:26:6b:d0:69:d8:3f:65:20:
f7:6a:23:51:ae:9d:b3:0e:86:31:27:94:49:73:93:8a:6f:3b:
49:bf:dc:a4:c5:69:2e:9e:dc:ec:4b:eb:ad:5b:87:85:5b:d3:
92:a0:56:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:22 2023 by rpki-client on console-fra.rpki-client.org