Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/71ea89b4-ed85-463f-83d9-8453300bf2bd/a20f0c06-b68a-3422-a0db-abd5b37dfb38.roa
File: a20f0c06-b68a-3422-a0db-abd5b37dfb38.roa (raw, json)
Hash identifier: Fnr4XI9ZEKKZrOF2uIx7t9jbi9pHDwNqdL4dhhby8v0=
Subject key identifier: 0A:DD:C1:D8:E5:00:02:2A:D3:9B:9C:10:7A:A5:ED:EF:10:59:14:99
Certificate issuer: /CN=71ea89b4-ed85-463f-83d9-8453300bf2bd
Certificate serial: 010D0C9F43285842229DA17AC80E3858307C4DC0
Authority key identifier: 00:FA:28:B0:63:5E:34:0C:5A:99:8E:4A:5A:9E:34:69:3A:5A:56:62
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/71ea89b4-ed85-463f-83d9-8453300bf2bd.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/71ea89b4-ed85-463f-83d9-8453300bf2bd/a20f0c06-b68a-3422-a0db-abd5b37dfb38.roa
Signing time: Wed 07 Jun 2023 01:00:16 +0000
ROA not before: Wed 07 Jun 2023 01:00:16 +0000
ROA not after: Tue 05 Sep 2023 01:00:16 +0000
asID: 7862
IP address blocks: 146.23.226.0/24 maxlen: 24
146.23.206.0/23 maxlen: 23
146.23.228.0/24 maxlen: 24
146.23.192.0/22 maxlen: 22
146.23.196.0/22 maxlen: 22
146.23.194.0/24 maxlen: 24
146.23.196.0/24 maxlen: 24
146.23.198.0/24 maxlen: 24
146.23.198.0/23 maxlen: 23
146.23.0.0/19 maxlen: 19
146.23.204.0/23 maxlen: 23
146.23.0.0/16 maxlen: 16
146.23.202.0/23 maxlen: 23
146.23.172.0/22 maxlen: 22
146.23.251.0/24 maxlen: 24
146.23.248.0/22 maxlen: 22
146.23.252.0/22 maxlen: 22
144.5.59.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:42:22:9d:a1:7a:c8:0e:38:58:30:7c:4d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71ea89b4-ed85-463f-83d9-8453300bf2bd
Validity
Not Before: Jun 7 01:00:16 2023 GMT
Not After : Sep 5 01:00:16 2023 GMT
Subject: CN=e0f3e67d-f477-44e8-9293-ea1d1651077f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:dc:6a:8d:55:fd:5e:4e:67:b0:99:08:da:30:
e3:66:0d:ff:23:7c:c5:e5:35:ba:d4:eb:01:73:8b:
9a:c4:7d:a9:d0:ce:e7:5a:bd:7c:fb:da:e1:55:ee:
47:b0:df:ad:a2:2a:ac:bd:76:15:e3:32:d8:ce:ad:
f6:36:d8:86:3a:c9:fc:e7:37:7b:31:6c:5d:65:70:
98:ef:ba:89:9e:87:3e:9c:4c:98:75:81:bd:c7:82:
37:71:1a:36:d5:69:6b:9d:10:a8:87:a9:f8:85:b6:
95:1e:67:d0:a3:dd:08:f5:26:96:d2:44:72:2d:4f:
9f:64:86:04:73:97:f3:1c:5a:43:77:df:ed:89:8c:
e4:8f:1d:dd:eb:02:67:20:d7:ed:39:0d:87:f7:02:
d0:f1:e3:9e:aa:81:fe:44:7c:d6:83:b9:33:96:1a:
4f:56:8d:21:e7:5a:0e:13:ee:4a:f6:35:47:1a:89:
36:b3:7e:4e:17:c9:85:c9:b9:9b:00:57:f8:f9:07:
29:c8:7e:48:ff:cd:b0:81:d6:7d:bf:44:a2:0b:c7:
34:f2:b6:6d:71:af:50:e6:64:8b:ec:85:0d:63:b0:
40:b8:b4:e5:21:c3:56:6b:0b:64:26:1e:76:fe:e7:
56:39:5a:80:fb:3e:be:a3:e9:6d:b4:d0:c5:07:5f:
46:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DD:C1:D8:E5:00:02:2A:D3:9B:9C:10:7A:A5:ED:EF:10:59:14:99
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/71ea89b4-ed85-463f-83d9-8453300bf2bd/a20f0c06-b68a-3422-a0db-abd5b37dfb38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/71ea89b4-ed85-463f-83d9-8453300bf2bd/71ea89b4-ed85-463f-83d9-8453300bf2bd.crl
X509v3 Authority Key Identifier:
keyid:00:FA:28:B0:63:5E:34:0C:5A:99:8E:4A:5A:9E:34:69:3A:5A:56:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/71ea89b4-ed85-463f-83d9-8453300bf2bd.cer
sbgp-ipAddrBlock: critical
IPv4:
144.5.59.0/24
146.23.0.0/16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
64:89:9a:8e:69:8a:80:09:79:eb:34:cd:7e:93:fe:02:35:0d:
b9:0d:ef:8b:bd:f6:ba:55:2d:10:4f:57:0f:30:a3:20:71:7b:
04:76:57:64:99:dd:2a:bc:9f:61:74:b6:4a:cf:73:fe:52:90:
4e:ec:01:33:81:d3:15:12:4b:44:8b:17:3a:03:69:7b:2b:e7:
0f:41:ba:82:f4:72:c5:f3:ee:ee:41:72:53:d8:70:99:f0:ae:
39:75:a4:95:78:f2:18:c2:ec:59:11:5a:16:3c:5d:ab:48:aa:
9c:fb:79:1d:1d:2b:b5:31:7f:85:2f:c5:95:1e:0e:d9:9c:02:
c4:0b:a9:ae:0b:68:77:49:eb:42:89:b3:45:01:45:fc:50:47:
8e:49:9a:71:bd:e7:de:b4:93:dc:c0:a1:2c:07:1c:a3:4a:12:
e7:75:59:5b:7c:77:8d:d4:83:bd:e0:2e:26:ab:9a:fb:12:e6:
65:b0:45:78:34:9b:7f:7a:51:5a:4b:49:e4:8a:dc:42:2d:31:
fd:3f:1b:3b:c9:c8:92:7e:fc:eb:c3:cf:05:38:33:49:f5:27:
7c:22:48:8a:6d:b7:88:5a:d1:47:10:8a:aa:09:22:53:fd:01:
97:d6:dc:19:14:1e:93:3f:6d:71:9d:0b:74:aa:23:0e:cf:b1:
ca:e8:5d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 7 15:18:47 2023 by rpki-client on console-fra.rpki-client.org