Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/e74b1edc-994e-3755-b001-6149acbf3261.roa
File: e74b1edc-994e-3755-b001-6149acbf3261.roa (raw, json)
Hash identifier: JudyWaccMOOfwI6KvsAsJWvd8hdt3kCTtRgzQAmFY9g=
Subject key identifier: 5E:C8:CC:85:5A:C6:DA:DF:D6:49:EE:51:16:ED:08:EB:74:AE:81:34
Certificate issuer: /CN=e4592d18-89a2-4b31-a14b-b5ea3eae2c4a
Certificate serial: 010D0C9F4328583FEB61EEF6265D74D073ED8B80
Authority key identifier: 87:5F:A2:FF:E5:93:3B:B5:16:DE:44:BF:B9:3E:AF:BF:FD:FD:59:85
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/e74b1edc-994e-3755-b001-6149acbf3261.roa
Signing time: Tue 15 Nov 2022 14:23:16 +0000
ROA not before: Tue 15 Nov 2022 14:23:16 +0000
ROA not after: Mon 17 Feb 2025 05:00:00 +0000
asID: 53755
IP address blocks: 107.167.64.0/19 maxlen: 32
23.226.64.0/20 maxlen: 32
104.161.0.0/17 maxlen: 32
107.178.64.0/18 maxlen: 32
107.189.128.0/18 maxlen: 32
148.163.0.0/17 maxlen: 32
162.213.208.0/22 maxlen: 32
162.218.112.0/21 maxlen: 32
184.164.64.0/19 maxlen: 32
192.30.136.0/22 maxlen: 32
192.110.160.0/21 maxlen: 32
199.231.84.0/22 maxlen: 32
2604:6280::/32 maxlen: 64
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:3f:eb:61:ee:f6:26:5d:74:d0:73:ed:8b:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4592d18-89a2-4b31-a14b-b5ea3eae2c4a
Validity
Not Before: Nov 15 14:23:16 2022 GMT
Not After : Feb 17 05:00:00 2025 GMT
Subject: CN=68b7ef0c-c515-4776-953e-acb1847867b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a3:14:3d:33:e2:c7:f4:52:ad:f0:63:4b:08:
20:0e:d4:af:30:ff:7b:38:06:a7:8a:1b:34:c8:04:
21:6f:0b:6e:3d:5c:04:a5:a9:07:a9:6e:03:71:b2:
cf:31:4f:2d:60:f6:ec:88:17:69:62:9c:fe:6d:4c:
41:e7:36:4a:0b:e2:5a:ac:7c:9b:99:f7:50:d2:7a:
24:8d:c6:b1:4c:65:16:5a:a8:c9:c9:d9:4f:91:39:
59:70:29:9c:00:9f:71:9d:ea:3d:ee:9b:50:5f:62:
89:30:4a:ca:2d:53:3f:18:79:df:20:33:98:db:fa:
02:06:d0:b2:9c:c4:39:10:1d:9e:f5:b4:94:9d:cd:
d7:94:d7:21:38:6c:56:ee:bf:94:39:35:f9:48:46:
44:00:91:eb:f0:96:84:a2:7e:9b:38:f2:02:f9:c3:
14:16:49:d5:5c:ac:58:9b:f9:aa:34:0e:60:ff:15:
45:a5:ee:33:43:89:9d:6b:02:8c:7b:f8:3e:8d:57:
02:a7:b3:1b:66:b7:d6:38:54:ae:74:d2:61:14:66:
d1:a4:a4:70:86:99:7b:6d:95:61:fa:e8:b5:85:b4:
86:82:31:b0:25:6f:22:1d:c5:08:88:e1:90:d4:24:
cc:ea:68:01:dc:24:c2:97:4b:ee:01:44:bd:14:68:
d7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C8:CC:85:5A:C6:DA:DF:D6:49:EE:51:16:ED:08:EB:74:AE:81:34
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/e74b1edc-994e-3755-b001-6149acbf3261.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.crl
X509v3 Authority Key Identifier:
keyid:87:5F:A2:FF:E5:93:3B:B5:16:DE:44:BF:B9:3E:AF:BF:FD:FD:59:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/e4592d18-89a2-4b31-a14b-b5ea3eae2c4a.cer
sbgp-ipAddrBlock: critical
IPv4:
23.226.64.0/20
104.161.0.0/17
107.167.64.0/19
107.178.64.0/18
107.189.128.0/18
148.163.0.0/17
162.213.208.0/22
162.218.112.0/21
184.164.64.0/19
192.30.136.0/22
192.110.160.0/21
199.231.84.0/22
IPv6:
2604:6280::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
4b:2d:18:c9:0d:ce:c9:02:03:83:e0:47:4a:23:35:38:de:43:
0c:7f:9a:8f:ef:23:0c:e9:8a:0a:5d:cf:7c:3c:ab:dd:22:dd:
af:f8:ee:66:b5:1a:5f:41:16:4f:85:ce:bb:4a:1e:38:03:e0:
fa:58:22:76:e4:48:90:f4:5d:b9:26:50:1e:ee:f6:b0:b2:bb:
2d:56:9f:97:ea:4c:98:ba:d0:18:12:06:76:c5:cb:e0:0c:a2:
52:00:8c:30:dd:f0:59:20:48:92:60:25:db:d6:db:12:af:9b:
91:fa:76:00:3e:a2:06:6a:9c:5e:69:c3:3a:f3:36:0f:32:3b:
be:f1:26:11:04:8a:2c:3e:67:79:9a:aa:bb:da:3c:ea:b0:79:
cf:8c:52:aa:86:ec:95:e2:6d:e7:51:8d:a3:3b:0b:05:1d:67:
62:9f:63:6b:a2:7a:9a:28:b1:14:b0:4b:38:6b:b5:d8:2e:22:
29:bf:58:22:5b:b9:6d:14:ed:c4:5a:84:37:bd:dd:a4:a4:46:
15:dd:28:75:fd:74:58:90:97:24:2a:2c:d5:34:07:7e:65:3d:
73:2f:cc:8f:7a:0d:74:e3:64:df:39:d8:c8:4c:09:52:25:18:
bc:3c:54:50:90:d0:45:1c:9a:b9:c8:3b:1c:9a:75:02:36:ed:
fd:5d:6b:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:26 2023 by rpki-client on console-ams.rpki-client.org