Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/d7145475-b473-3aa2-9190-6bbdcd642c98.roa
File: d7145475-b473-3aa2-9190-6bbdcd642c98.roa (raw, json)
Hash identifier: bsVF+WOg9XzTq0u5qo7gm6yapC28jF3gHGMUDnclD1A=
Subject key identifier: DB:48:F2:D4:0A:11:90:00:97:94:52:93:EC:74:9B:3D:07:FF:FC:6A
Certificate issuer: /CN=aae465c0-2a10-495a-b7d2-2aa048b286a0
Certificate serial: 010D0C9F43285843338D89BB36F5AB26452AE8C0
Authority key identifier: AA:F1:A5:1A:EB:A8:A8:DC:25:2D:5B:78:B4:E1:9A:18:D9:8A:8F:24
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/d7145475-b473-3aa2-9190-6bbdcd642c98.roa
Signing time: Tue 12 Sep 2023 19:23:36 +0000
ROA not before: Tue 12 Sep 2023 19:23:36 +0000
ROA not after: Mon 11 Dec 2023 20:23:36 +0000
asID: 10911
IP address blocks: 66.150.128.0/22 maxlen: 24
64.74.169.0/24 maxlen: 24
63.251.217.0/24 maxlen: 24
63.251.221.0/24 maxlen: 24
64.74.167.0/24 maxlen: 24
64.94.208.0/21 maxlen: 24
66.150.28.0/22 maxlen: 24
66.150.64.0/21 maxlen: 24
66.151.48.0/22 maxlen: 24
66.151.116.0/22 maxlen: 24
66.151.168.0/21 maxlen: 24
66.151.196.0/22 maxlen: 24
66.151.208.0/22 maxlen: 24
69.25.112.0/21 maxlen: 24
69.88.136.0/22 maxlen: 24
72.5.32.0/22 maxlen: 24
74.201.24.0/21 maxlen: 24
75.98.46.0/24 maxlen: 24
199.19.124.0/22 maxlen: 24
216.52.56.0/22 maxlen: 24
216.52.108.0/22 maxlen: 24
216.52.136.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:43:33:8d:89:bb:36:f5:ab:26:45:2a:e8:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae465c0-2a10-495a-b7d2-2aa048b286a0
Validity
Not Before: Sep 12 19:23:36 2023 GMT
Not After : Dec 11 20:23:36 2023 GMT
Subject: CN=394a7e0a-cadd-4f02-9f73-4886d4a0b763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:db:da:29:13:1d:a3:3d:f1:6e:00:fe:fa:78:
9b:43:0d:48:eb:3a:8e:6f:7a:4d:6f:88:13:38:1d:
75:3b:4a:c0:10:ab:fd:d5:fd:79:68:91:2a:5c:89:
f5:a0:55:33:a8:2e:71:e5:74:aa:91:cc:3a:73:22:
26:d4:c7:72:49:06:8c:04:61:6b:ea:64:ba:82:33:
74:e1:84:79:24:1d:21:cc:be:23:fe:09:f1:62:39:
cd:92:57:7c:d1:18:fa:92:0a:7d:d2:ab:7c:2c:f3:
e2:b3:b3:20:2f:38:dd:63:10:6e:b7:67:94:41:02:
6b:1f:22:e0:94:62:7a:50:46:fc:c9:67:1a:a8:51:
3e:57:47:7f:cb:ff:aa:fd:cb:27:8d:c7:ea:32:6f:
97:26:da:9a:45:9c:6e:db:3c:14:c0:3c:02:28:81:
e4:cb:61:fb:99:51:d2:54:a8:f9:bb:bc:52:e9:c8:
30:4b:3b:7b:8e:aa:84:6f:95:8d:38:ee:2a:c1:44:
61:23:99:86:c5:c6:68:f3:d0:a0:5d:3d:fc:4d:fd:
d8:4f:ac:97:43:09:13:22:15:e6:9c:24:f0:68:2d:
83:e6:dc:29:75:a8:fb:ca:5d:cf:4f:9a:c9:cc:c0:
a7:bf:4b:a9:a5:c9:35:29:b4:a6:23:6e:73:c7:b7:
f7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:48:F2:D4:0A:11:90:00:97:94:52:93:EC:74:9B:3D:07:FF:FC:6A
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/d7145475-b473-3aa2-9190-6bbdcd642c98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0/aae465c0-2a10-495a-b7d2-2aa048b286a0.crl
X509v3 Authority Key Identifier:
keyid:AA:F1:A5:1A:EB:A8:A8:DC:25:2D:5B:78:B4:E1:9A:18:D9:8A:8F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/aae465c0-2a10-495a-b7d2-2aa048b286a0.cer
sbgp-ipAddrBlock: critical
IPv4:
63.251.217.0/24
63.251.221.0/24
64.74.167.0/24
64.74.169.0/24
64.94.208.0/21
66.150.28.0/22
66.150.64.0/21
66.150.128.0/22
66.151.48.0/22
66.151.116.0/22
66.151.168.0/21
66.151.196.0/22
66.151.208.0/22
69.25.112.0/21
69.88.136.0/22
72.5.32.0/22
74.201.24.0/21
75.98.46.0/24
199.19.124.0/22
216.52.56.0/22
216.52.108.0/22
216.52.136.0/22
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
00:a0:10:23:d1:58:fb:6c:04:05:8e:1d:10:4d:7a:f5:59:1e:
9e:3d:40:31:1f:20:0c:d4:fe:96:ef:12:14:15:19:cb:f3:1b:
ea:22:8e:1d:6e:7e:dd:4a:38:60:5a:42:f3:e8:0a:86:e6:85:
76:69:63:7a:e0:b0:b7:b0:a5:8b:c4:61:f2:8b:79:4a:e5:ea:
0a:82:66:73:9a:af:ef:0a:ea:05:ce:6c:d5:29:da:4c:a0:28:
21:65:c4:c9:16:1a:cf:45:01:9a:26:5b:66:7f:34:85:b0:ab:
07:62:65:19:21:eb:5a:83:6a:56:2a:93:20:2f:8f:f8:d2:ad:
d8:67:51:6d:dd:fe:e2:a8:b4:51:96:ad:0e:32:08:58:ef:81:
c2:6f:3c:ed:bb:b6:92:13:f8:39:8b:d3:d2:f2:01:90:4d:8b:
d2:ea:8e:8f:6d:9f:d0:18:65:73:d2:e2:33:b7:a1:3f:b6:9e:
09:c8:3f:6e:0e:af:8a:31:19:5b:e9:02:0c:9d:c7:a0:1d:d7:
cc:e8:75:04:f6:a2:4a:63:f0:3d:64:bd:4c:01:26:cc:d6:8f:
9e:cf:4a:9a:86:25:06:44:04:61:0b:01:49:ac:2b:9d:b3:9f:
03:38:32:85:2c:2c:64:9c:43:a5:3c:d8:c1:90:c9:25:5c:0d:
42:dc:17:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 10 19:34:25 2023 by rpki-client on console-fra.rpki-client.org