Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8231077d-0559-4e7a-9cdf-fe00a512ab5c/16892bac-662d-3eac-b80d-4f4b2d2e5d7a.roa
File: 16892bac-662d-3eac-b80d-4f4b2d2e5d7a.roa (raw, json)
Hash identifier: bh4zsv9YvQO3YtIYawRISJ5xTM9ZIHEM/NdJUaY+cj4=
Subject key identifier: 81:50:4F:94:99:66:BB:24:B1:9D:BF:A8:8A:26:1C:46:82:C9:36:EB
Certificate issuer: /CN=8231077d-0559-4e7a-9cdf-fe00a512ab5c
Certificate serial: 010D0C9F43285843114F2C90207F13B066168180
Authority key identifier: 27:57:42:AE:CA:A8:23:ED:C1:20:5C:9F:F0:23:65:5D:05:65:FB:76
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8231077d-0559-4e7a-9cdf-fe00a512ab5c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8231077d-0559-4e7a-9cdf-fe00a512ab5c/16892bac-662d-3eac-b80d-4f4b2d2e5d7a.roa
Signing time: Thu 31 Aug 2023 13:00:24 +0000
ROA not before: Thu 31 Aug 2023 13:00:24 +0000
ROA not after: Wed 29 Nov 2023 14:00:24 +0000
asID: 125
IP address blocks: 199.64.176.0/22 maxlen: 22
199.64.196.0/22 maxlen: 22
199.64.124.0/24 maxlen: 24
199.64.172.0/22 maxlen: 22
199.64.13.0/24 maxlen: 24
199.64.99.0/24 maxlen: 24
199.62.111.0/24 maxlen: 24
199.64.7.0/24 maxlen: 24
199.62.32.0/21 maxlen: 21
199.62.60.0/22 maxlen: 22
199.64.0.0/24 maxlen: 24
199.62.28.0/23 maxlen: 23
199.64.6.0/24 maxlen: 24
165.195.0.0/16 maxlen: 16
199.64.222.0/24 maxlen: 24
199.61.16.0/20 maxlen: 20
199.62.24.0/22 maxlen: 22
199.64.220.0/24 maxlen: 24
199.64.221.0/24 maxlen: 24
199.64.219.0/24 maxlen: 24
2620:159::/36 maxlen: 36
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:43:11:4f:2c:90:20:7f:13:b0:66:16:81:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8231077d-0559-4e7a-9cdf-fe00a512ab5c
Validity
Not Before: Aug 31 13:00:24 2023 GMT
Not After : Nov 29 14:00:24 2023 GMT
Subject: CN=15804164-ed49-4b70-92ac-e95dcff24636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ab:e8:df:c3:d7:c4:e5:42:e9:1d:b4:d1:54:
71:0f:e0:9c:da:d8:a8:cd:cb:f2:5e:82:e2:a9:81:
10:b6:4b:2c:e9:5f:a8:35:60:43:ec:3f:75:14:11:
fa:ab:f6:0d:bc:36:83:4d:95:c1:8f:0b:8d:34:af:
d0:88:78:2c:d9:58:1b:66:9d:81:b5:7e:c4:cf:b3:
b6:d8:bc:f9:88:bc:57:ed:13:ea:9b:16:83:75:f7:
97:1b:63:74:25:e8:07:7c:97:4f:24:0a:96:d2:c2:
45:63:ae:12:27:09:7a:59:7e:48:07:10:cd:3e:ad:
c3:cd:9e:89:f2:d5:95:9a:1a:fb:ef:d5:ff:07:50:
9f:6c:2d:6a:b3:ab:2e:c0:d9:01:6d:0e:fc:b4:ce:
0f:ef:2f:77:f4:e4:a3:81:aa:54:99:65:fb:8d:43:
88:c9:1f:8b:22:9f:7d:6f:55:28:83:7f:e2:91:4e:
0f:5b:a2:11:8f:13:9f:7b:fa:e2:13:d9:fa:c6:6c:
80:2c:66:30:45:ad:61:36:97:7f:ed:cf:7a:91:ab:
9b:d8:37:e8:d2:99:12:b7:4f:f5:08:db:5f:7c:b1:
1e:26:00:af:19:6c:01:93:e9:14:c4:67:c0:ec:33:
d8:93:32:4a:de:49:8c:07:62:51:c5:cc:c5:a6:a6:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:50:4F:94:99:66:BB:24:B1:9D:BF:A8:8A:26:1C:46:82:C9:36:EB
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8231077d-0559-4e7a-9cdf-fe00a512ab5c/16892bac-662d-3eac-b80d-4f4b2d2e5d7a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8231077d-0559-4e7a-9cdf-fe00a512ab5c/8231077d-0559-4e7a-9cdf-fe00a512ab5c.crl
X509v3 Authority Key Identifier:
keyid:27:57:42:AE:CA:A8:23:ED:C1:20:5C:9F:F0:23:65:5D:05:65:FB:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/8231077d-0559-4e7a-9cdf-fe00a512ab5c.cer
sbgp-ipAddrBlock: critical
IPv4:
165.195.0.0/16
199.61.16.0/20
199.62.24.0-199.62.29.255
199.62.32.0/21
199.62.60.0/22
199.62.111.0/24
199.64.0.0/24
199.64.6.0/23
199.64.13.0/24
199.64.99.0/24
199.64.124.0/24
199.64.172.0-199.64.179.255
199.64.196.0/22
199.64.219.0-199.64.222.255
IPv6:
2620:159::/36
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
95:34:64:cd:96:9f:6a:d2:1a:4a:7d:6b:5c:71:b8:be:d1:10:
df:e9:4b:ce:e9:2b:28:df:e5:a2:87:1e:c0:0c:3d:28:9b:d1:
10:92:30:b3:91:4b:a9:3f:46:d0:6a:b8:d5:f9:c3:d6:ce:46:
c6:be:16:c4:36:8f:b8:73:91:c6:2f:bf:0e:0d:15:9f:e0:34:
bb:15:c5:1a:ad:69:0a:73:da:f3:ba:4e:f0:62:60:1f:a4:4c:
bc:7e:aa:6a:65:7c:c2:5c:f8:e7:1c:6e:17:68:0e:f9:d0:0e:
11:49:2d:27:fd:f1:59:e8:74:12:64:46:5b:fc:b4:17:4a:ac:
fe:fc:f8:ce:b4:b7:51:b0:1d:c3:b2:e5:f3:10:ef:fc:6c:16:
b5:1a:ab:19:71:06:60:d7:43:cf:64:4c:31:e3:d5:81:ca:9e:
b3:59:fa:b0:a7:97:e0:c7:47:3b:59:d9:f7:3d:06:8d:57:61:
99:99:69:46:b4:5a:11:97:a6:03:bd:40:dc:31:f2:3e:4b:bf:
7f:9f:76:d3:c8:02:77:b4:13:66:aa:4d:f4:ab:7a:3c:e4:17:
5a:f5:71:73:43:95:8c:45:68:48:85:89:34:2d:be:d4:1c:4f:
fb:39:f1:87:10:28:63:66:27:af:e7:95:fb:55:83:12:58:81:
d1:63:13:30
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Sep 29 18:16:30 2023 by rpki-client on console-ams.rpki-client.org