Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/666931c5-51ae-396c-bc95-0cc09425b146.roa
File: 666931c5-51ae-396c-bc95-0cc09425b146.roa (raw, json)
Hash identifier: wtm+0wzsXdwCX8OgqDYcgqiBV0yEpJy6lbmRxz2urM0=
Subject key identifier: 92:D4:C9:D2:A0:66:D3:DE:6D:5D:03:61:66:A6:E2:AE:46:AE:42:AC
Certificate issuer: /CN=18800324-5150-4981-a144-bdb80e6bcb7c
Certificate serial: 010D0C9F4328584551CD6E4C01BAC07C054B0840
Authority key identifier: 11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/666931c5-51ae-396c-bc95-0cc09425b146.roa
Signing time: Mon 25 Mar 2024 01:00:25 +0000
ROA not before: Mon 25 Mar 2024 01:00:25 +0000
ROA not after: Sun 23 Jun 2024 01:00:25 +0000
asID: 44477
IP address blocks: 50.118.228.0/24 maxlen: 24
136.0.133.0/24 maxlen: 24
192.177.39.0/24 maxlen: 24
192.177.38.0/24 maxlen: 24
192.177.54.0/24 maxlen: 24
192.177.46.0/24 maxlen: 24
192.177.43.0/24 maxlen: 24
192.177.42.0/24 maxlen: 24
192.177.94.0/24 maxlen: 24
192.177.83.0/24 maxlen: 24
192.177.77.0/24 maxlen: 24
192.177.55.0/24 maxlen: 24
192.177.97.0/24 maxlen: 24
50.118.242.0/24 maxlen: 24
136.0.239.0/24 maxlen: 24
136.0.191.0/24 maxlen: 24
142.111.17.0/24 maxlen: 24
142.111.22.0/24 maxlen: 24
136.0.190.0/24 maxlen: 24
142.111.19.0/24 maxlen: 24
142.111.18.0/24 maxlen: 24
142.111.56.0/24 maxlen: 24
142.111.52.0/24 maxlen: 24
136.0.185.0/24 maxlen: 24
142.111.46.0/24 maxlen: 24
136.0.181.0/24 maxlen: 24
142.111.45.0/24 maxlen: 24
192.177.22.0/24 maxlen: 24
50.117.76.0/24 maxlen: 24
192.177.17.0/24 maxlen: 24
142.111.85.0/24 maxlen: 24
50.118.176.0/24 maxlen: 24
50.118.153.0/24 maxlen: 24
50.118.240.0/24 maxlen: 24
50.118.231.0/24 maxlen: 24
136.0.139.0/24 maxlen: 24
136.0.131.0/24 maxlen: 24
136.0.155.0/24 maxlen: 24
136.0.144.0/24 maxlen: 24
136.0.38.0/24 maxlen: 24
136.0.123.0/24 maxlen: 24
136.0.39.0/24 maxlen: 24
136.0.161.0/24 maxlen: 24
136.0.159.0/24 maxlen: 24
136.0.179.0/24 maxlen: 24
23.27.253.0/24 maxlen: 24
23.230.69.0/24 maxlen: 24
23.230.12.0/24 maxlen: 24
23.230.9.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:45:51:cd:6e:4c:01:ba:c0:7c:05:4b:08:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18800324-5150-4981-a144-bdb80e6bcb7c
Validity
Not Before: Mar 25 01:00:25 2024 GMT
Not After : Jun 23 01:00:25 2024 GMT
Subject: CN=d7f9a3f6-8b10-4e64-a921-8bab904599e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1e:ef:ea:f0:e7:3f:3b:d5:24:72:b5:11:ab:
7c:6e:1b:30:95:b4:51:63:3b:e0:51:d7:3b:06:2f:
fa:e9:c7:c8:a3:ba:4f:e7:bd:18:73:6b:c1:94:be:
a3:52:fc:81:13:72:29:b3:cc:32:ee:ea:81:80:39:
60:a8:27:21:78:67:a1:e0:9f:77:30:9b:9b:08:b4:
71:be:e2:58:d2:97:df:b5:06:27:26:2e:97:78:db:
69:3f:d9:9e:1d:d5:d7:10:23:98:95:cb:54:06:c9:
33:24:73:6c:fd:eb:50:5c:0f:8c:3d:d8:c3:c2:5e:
7f:1c:52:21:79:14:72:40:6e:eb:7b:09:a0:f5:4d:
3a:1a:da:3d:77:cc:a6:cf:e6:7b:ac:3c:6c:5e:0b:
c8:55:d6:1d:91:a0:52:99:9f:b9:e4:ed:20:1c:1c:
31:3c:26:5a:1e:c7:e0:55:e3:ac:38:be:8a:08:cf:
73:e7:a0:d9:63:a6:5f:d0:ed:ef:dc:67:8c:4b:e3:
56:cc:14:08:98:91:92:5f:ea:84:31:26:76:ba:67:
23:31:3c:da:bc:62:de:e8:89:1f:cc:5e:71:27:dc:
b3:51:15:02:00:a0:20:6b:d2:24:11:52:a1:9c:5b:
e0:d0:c9:85:72:e5:86:8f:9c:ab:56:c8:d5:ac:37:
ec:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:D4:C9:D2:A0:66:D3:DE:6D:5D:03:61:66:A6:E2:AE:46:AE:42:AC
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/666931c5-51ae-396c-bc95-0cc09425b146.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c/18800324-5150-4981-a144-bdb80e6bcb7c.crl
X509v3 Authority Key Identifier:
keyid:11:6B:47:33:36:D9:E8:9D:B5:96:1B:5E:EF:A3:40:22:AE:DE:69:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/18800324-5150-4981-a144-bdb80e6bcb7c.cer
sbgp-ipAddrBlock: critical
IPv4:
23.27.253.0/24
23.230.9.0/24
23.230.12.0/24
23.230.69.0/24
50.117.76.0/24
50.118.153.0/24
50.118.176.0/24
50.118.228.0/24
50.118.231.0/24
50.118.240.0/24
50.118.242.0/24
136.0.38.0/23
136.0.123.0/24
136.0.131.0/24
136.0.133.0/24
136.0.139.0/24
136.0.144.0/24
136.0.155.0/24
136.0.159.0/24
136.0.161.0/24
136.0.179.0/24
136.0.181.0/24
136.0.185.0/24
136.0.190.0/23
136.0.239.0/24
142.111.17.0-142.111.19.255
142.111.22.0/24
142.111.45.0-142.111.46.255
142.111.52.0/24
142.111.56.0/24
142.111.85.0/24
192.177.17.0/24
192.177.22.0/24
192.177.38.0/23
192.177.42.0/23
192.177.46.0/24
192.177.54.0/23
192.177.77.0/24
192.177.83.0/24
192.177.94.0/24
192.177.97.0/24
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
20:f3:ec:2e:1c:f9:36:a9:fc:84:4e:34:cd:29:64:dd:4f:21:
eb:02:9f:e6:c5:aa:78:36:2a:ca:4e:67:23:31:6a:57:87:3a:
40:d7:2f:be:98:fe:1a:5f:7c:6b:7d:09:44:54:65:7f:ad:fb:
4b:97:6a:20:01:b6:75:d3:19:f7:a8:3f:6d:2a:13:0a:6c:ab:
9d:b7:f1:6f:1b:0f:77:d8:63:d1:ba:13:aa:8f:b8:bd:b6:b5:
17:c5:bd:ca:e5:83:d8:cf:62:64:06:be:ff:a4:cb:39:ff:9f:
1b:3d:14:95:07:5c:6b:c9:ea:28:2c:6c:52:ce:3e:d4:3a:6c:
64:82:85:33:ce:97:5f:dc:db:a3:91:1f:8b:25:d3:f7:b1:31:
93:4d:ed:16:13:4b:ec:64:85:19:de:bb:b7:17:7f:2d:ce:0e:
02:4b:5f:0d:c5:b3:ce:b4:58:79:f4:12:7a:0e:4c:75:d4:b2:
2a:43:7c:50:f2:1b:d3:b7:51:ac:05:81:fa:56:8c:45:bb:26:
74:00:4c:9d:c1:89:c9:a4:8f:3a:44:b5:ab:22:b7:1d:35:80:
48:f3:5f:44:a5:3f:e3:b6:67:54:4e:6b:c6:4c:b5:8f:69:b0:
08:d4:da:32:9b:da:87:d4:84:f9:85:36:3b:af:28:89:00:02:
07:71:1d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 20:22:47 2024 by rpki-client on console-ams.rpki-client.org