Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/b56ebebf-21c3-3a5b-b943-2d866fc4a384.roa
File: b56ebebf-21c3-3a5b-b943-2d866fc4a384.roa (raw, json)
Hash identifier: ns7B66Zr23IE/FIcSvypBvtAfXrYo0BEu+qiZdwdhVE=
Subject key identifier: A2:08:B3:EF:7F:8B:65:50:AA:77:84:71:D9:0D:49:76:25:76:E5:BB
Certificate issuer: /CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
Certificate serial: 010D0C9F4328584553331D2A49A810A47A888E80
Authority key identifier: 77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/b56ebebf-21c3-3a5b-b943-2d866fc4a384.roa
Signing time: Mon 25 Mar 2024 13:00:33 +0000
ROA not before: Mon 25 Mar 2024 13:00:33 +0000
ROA not after: Sun 23 Jun 2024 13:00:33 +0000
asID: 7029
IP address blocks: 207.95.176.0/20 maxlen: 20
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:45:53:33:1d:2a:49:a8:10:a4:7a:88:8e:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49bd506e-447c-48e7-9d44-4b373b35b2d3
Validity
Not Before: Mar 25 13:00:33 2024 GMT
Not After : Jun 23 13:00:33 2024 GMT
Subject: CN=e30e2702-9db4-4b97-8f90-e03ea6a12936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5b:09:33:2b:83:34:3c:b1:c4:47:81:57:fa:
02:95:8a:7c:a0:4d:bc:21:fb:ca:60:79:17:4a:cc:
80:58:2f:06:f6:31:ec:aa:96:46:5e:74:f1:e1:5f:
92:4f:d5:4f:ff:6e:de:be:8e:10:cc:19:96:38:d3:
49:af:79:62:58:0c:1c:ed:8e:ce:b0:25:4e:ca:4f:
c9:ad:17:55:a4:84:7e:d0:86:a6:8f:47:64:14:54:
37:6f:67:6f:b2:30:e5:a6:fc:22:e2:3e:c3:b4:b3:
24:04:76:93:2b:07:d6:85:85:f9:75:a6:b1:61:52:
cd:5b:b7:eb:13:e0:1b:0a:d5:8f:1e:cc:23:34:9e:
59:3e:05:31:f9:87:58:bc:1b:2c:e0:a6:62:91:6a:
bf:92:a4:e7:3d:4d:e0:e8:d7:1e:35:7a:0d:dc:3b:
f0:c3:df:49:e8:34:e3:ff:dd:b4:79:91:5a:c2:61:
d7:7c:07:6d:39:76:32:37:a5:da:20:05:25:92:bb:
f8:76:7c:a2:95:79:33:5c:0d:4f:c5:d7:16:57:5a:
5e:db:ad:aa:14:a6:df:3a:d2:f3:03:83:e6:91:d0:
21:43:2c:5c:1f:0b:95:93:2c:c3:50:28:d8:ca:4d:
27:cb:e9:2f:2c:30:06:f4:6a:6c:33:8b:ed:e0:54:
6e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:08:B3:EF:7F:8B:65:50:AA:77:84:71:D9:0D:49:76:25:76:E5:BB
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/b56ebebf-21c3-3a5b-b943-2d866fc4a384.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3/49bd506e-447c-48e7-9d44-4b373b35b2d3.crl
X509v3 Authority Key Identifier:
keyid:77:03:89:3B:86:32:63:FF:78:2E:87:84:0D:12:3F:C5:E7:13:68:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/49bd506e-447c-48e7-9d44-4b373b35b2d3.cer
sbgp-ipAddrBlock: critical
IPv4:
207.95.176.0/20
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
43:b1:e8:fc:58:35:ce:05:8e:7b:7a:33:83:ab:1b:00:7c:1b:
0d:f6:58:17:9e:31:5c:7c:19:5b:ae:89:5d:6a:0e:8c:99:cd:
9c:32:8d:9d:e4:5e:d9:ec:b5:94:0f:b0:f7:91:7b:f4:53:40:
94:e6:dd:ba:1c:ad:39:a1:55:28:95:55:56:90:d0:93:29:61:
07:a4:60:0a:19:1a:92:8e:68:5e:5d:5d:02:61:40:e5:a4:c9:
a1:ad:55:e7:14:ba:a9:ac:3f:82:16:b1:35:ca:b6:2c:9c:a4:
e9:3c:75:48:e2:77:b9:7e:71:11:23:82:1e:99:46:76:e8:3c:
87:2c:4a:dc:83:44:ef:e8:e6:73:00:15:13:d7:44:5d:8c:c2:
94:a7:5b:69:ce:b9:76:35:9e:8c:1c:79:45:63:75:24:e8:b2:
79:b5:a5:52:0c:f6:cd:4d:0a:da:49:d7:d7:d0:7d:52:c9:2b:
87:66:dd:fe:a2:a7:00:8b:3f:92:3a:bb:00:4d:0a:9c:6c:19:
f0:8b:9f:5b:46:89:b6:af:da:55:16:08:77:fb:55:de:58:2c:
00:f2:6a:8a:55:e2:3a:4a:e5:4e:59:7f:44:21:d9:63:c5:86:
0c:94:d8:4f:9e:a9:ac:7f:1d:aa:ea:0c:37:3f:d0:bd:73:f5:
80:5e:d1:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 20:00:23 2024 by rpki-client on console-ams.rpki-client.org