Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/b97c33c2-c427-3a80-a098-9180667a7dac.roa
File: b97c33c2-c427-3a80-a098-9180667a7dac.roa (raw, json)
Hash identifier: 3k9ltwYBAuFylkFPmlRa6fDQwgmIdqbeu0WYSP+h+zQ=
Subject key identifier: 32:10:4A:D2:88:BC:54:46:93:90:76:B5:E7:BE:85:14:71:D0:EB:47
Certificate issuer: /CN=e4592d18-89a2-4b31-a14b-b5ea3eae2c4a
Certificate serial: 010D0C9F4328583FEE1CF2D8FF97C69617DA6EE0
Authority key identifier: 87:5F:A2:FF:E5:93:3B:B5:16:DE:44:BF:B9:3E:AF:BF:FD:FD:59:85
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/b97c33c2-c427-3a80-a098-9180667a7dac.roa
Signing time: Tue 15 Nov 2022 14:23:16 +0000
ROA not before: Tue 15 Nov 2022 14:23:16 +0000
ROA not after: Mon 17 Feb 2025 05:00:00 +0000
asID: 3223
IP address blocks: 107.167.64.0/19 maxlen: 32
23.226.64.0/20 maxlen: 32
104.161.0.0/17 maxlen: 32
107.178.64.0/18 maxlen: 32
107.189.128.0/18 maxlen: 32
148.163.0.0/17 maxlen: 32
162.213.208.0/22 maxlen: 32
162.218.112.0/21 maxlen: 32
184.164.64.0/19 maxlen: 32
192.30.136.0/22 maxlen: 32
192.110.160.0/21 maxlen: 32
199.231.84.0/22 maxlen: 32
2604:6280::/32 maxlen: 64
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3f:ee:1c:f2:d8:ff:97:c6:96:17:da:6e:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4592d18-89a2-4b31-a14b-b5ea3eae2c4a
Validity
Not Before: Nov 15 14:23:16 2022 GMT
Not After : Feb 17 05:00:00 2025 GMT
Subject: CN=c70b10ab-4190-4aab-8296-761ef32b1d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:32:74:80:0e:88:28:2f:28:b8:8f:2a:d8:46:
4f:94:a5:4d:72:c2:4f:50:d4:3a:69:59:e8:e7:29:
7f:3c:b4:4f:3c:ef:bc:bf:2a:fd:a3:44:33:5c:e3:
40:1d:38:98:25:ab:1a:47:f8:71:a3:de:ed:bd:05:
ea:b8:02:2e:ae:32:c9:bc:99:23:60:8e:a0:fa:3a:
56:3a:70:2b:6b:5a:77:5f:3e:b3:51:ee:52:0e:79:
99:76:02:b0:c5:03:0e:57:e2:92:a7:a7:6e:8b:89:
32:84:95:48:69:3e:a1:f6:84:9d:0f:d2:00:8f:35:
d2:f8:90:e3:5e:9c:a5:1c:4f:f8:ab:77:cc:98:6e:
32:c7:71:6d:b0:a2:a1:b3:b0:62:9c:dc:b8:7e:4f:
37:03:d8:50:6d:f5:dd:97:8a:ce:b1:28:63:fc:a5:
a1:a3:fb:01:8b:25:38:c3:c0:5c:2a:fa:3f:a9:f0:
32:92:95:98:c5:5d:10:1b:f5:dd:f1:ad:09:99:7c:
d1:08:27:54:55:f0:3d:2f:a1:7d:8b:25:b9:8c:9f:
24:bc:a8:38:13:ab:7f:d2:5c:ff:2a:df:93:5e:ac:
e5:09:4f:50:fd:04:cc:6c:a9:fe:f9:53:4d:80:39:
dd:f9:05:ff:5f:60:67:f8:eb:43:6d:28:90:f5:10:
ca:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:10:4A:D2:88:BC:54:46:93:90:76:B5:E7:BE:85:14:71:D0:EB:47
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/b97c33c2-c427-3a80-a098-9180667a7dac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.crl
X509v3 Authority Key Identifier:
keyid:87:5F:A2:FF:E5:93:3B:B5:16:DE:44:BF:B9:3E:AF:BF:FD:FD:59:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.cer
sbgp-ipAddrBlock: critical
IPv4:
23.226.64.0/20
104.161.0.0/17
107.167.64.0/19
107.178.64.0/18
107.189.128.0/18
148.163.0.0/17
162.213.208.0/22
162.218.112.0/21
184.164.64.0/19
192.30.136.0/22
192.110.160.0/21
199.231.84.0/22
IPv6:
2604:6280::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
dc:e6:f4:d9:26:61:9b:9d:68:e1:56:e1:7c:0a:98:e7:fb:5a:
66:e9:49:48:16:e1:8b:42:21:89:c3:92:ce:0d:9d:70:de:50:
89:ae:b2:00:20:d9:91:ed:35:2f:c2:8e:8a:ff:ae:d8:c9:9c:
1a:08:a3:bc:85:fc:52:2f:b8:78:1d:c5:26:86:dd:0c:53:af:
51:6d:f2:6f:a1:50:3f:c9:fa:c1:ef:e7:e8:4d:46:6d:5a:b5:
13:8d:9c:99:be:be:c2:da:11:1d:8c:3d:2e:1e:1c:0c:5c:a5:
96:5f:76:7a:f7:1a:50:6e:2f:4c:fd:1b:ac:9f:5a:44:ad:0d:
b4:17:81:7f:63:48:79:0c:07:66:a8:31:42:cc:4f:6c:be:27:
9a:f4:67:df:e6:ce:8e:cf:da:cb:8b:30:6c:17:7f:83:84:d9:
37:ab:5d:63:27:7f:c8:e9:02:eb:09:a0:8a:51:ce:38:24:b5:
ff:38:92:d0:8b:14:93:97:9d:45:a9:60:5b:68:14:e7:77:c0:
8c:6a:40:f6:f5:09:ad:d5:b5:92:a8:dd:2d:53:09:89:12:d9:
cc:ff:18:58:0e:55:90:be:46:4d:f7:1e:72:36:50:4e:29:94:
9e:a4:99:71:5f:29:91:f7:3a:48:24:52:91:b8:64:87:cb:b5:
7c:fb:ab:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:22 2023 by rpki-client on console-fra.rpki-client.org