Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS142036.roa
File: AS142036.roa (raw, json)
Hash identifier: iAwkKYI7NRn+Z/yQSPs1Z086ZYYwsGJWmeSPuJtxymc=
Subject key identifier: B0:DE:49:EE:22:A6:65:CA:97:30:16:0D:DA:9C:67:65:8E:F5:91:DE
Certificate issuer: /CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Certificate serial: 58B030D05358DFE4B5516DBE3049763F6A1A8E8B
Authority key identifier: 4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS142036.roa
Signing time: Sat 05 Oct 2024 00:01:57 +0000
ROA not before: Fri 04 Oct 2024 23:56:57 +0000
ROA not after: Sat 04 Oct 2025 00:01:57 +0000
asID: 142036
IP address blocks: 66.225.226.0/24 maxlen: 24
66.225.228.0/24 maxlen: 24
66.225.246.0/24 maxlen: 24
75.102.49.0/24 maxlen: 24
75.102.51.0/24 maxlen: 24
204.93.164.0/24 maxlen: 24
204.93.186.0/24 maxlen: 24
204.93.201.0/24 maxlen: 24
205.234.146.0/24 maxlen: 24
205.234.156.0/24 maxlen: 24
205.234.157.0/24 maxlen: 24
205.234.170.0/24 maxlen: 24
205.234.171.0/24 maxlen: 24
205.234.200.0/24 maxlen: 24
205.234.201.0/24 maxlen: 24
205.234.232.0/24 maxlen: 24
205.234.244.0/24 maxlen: 24
205.234.252.0/24 maxlen: 24
205.234.253.0/24 maxlen: 24
216.246.20.0/24 maxlen: 24
216.246.21.0/24 maxlen: 24
216.246.25.0/24 maxlen: 24
216.246.66.0/24 maxlen: 24
216.246.67.0/24 maxlen: 24
216.246.103.0/24 maxlen: 24
216.246.123.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:b0:30:d0:53:58:df:e4:b5:51:6d:be:30:49:76:3f:6a:1a:8e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Validity
Not Before: Oct 4 23:56:57 2024 GMT
Not After : Oct 4 00:01:57 2025 GMT
Subject: CN=B0DE49EE22A665CA9730160DDA9C67658EF591DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:00:f2:47:fd:b5:29:80:fd:95:95:59:a9:c8:
0e:8c:e8:d0:5f:86:ba:70:85:d7:09:78:2d:95:ee:
98:c5:20:cb:72:15:d1:62:41:23:96:11:f8:71:9b:
ac:41:9e:3f:c6:37:cc:e8:af:68:23:31:e5:50:0b:
2d:75:19:db:1f:e2:fa:71:21:9d:19:31:0f:fe:93:
da:c5:15:dc:3e:3c:71:36:cc:a3:e1:9c:bc:6b:6f:
10:e5:e0:9d:3e:e1:96:6b:30:7f:22:85:3d:df:cc:
dc:9b:07:ee:05:e2:5b:1e:2d:bc:47:15:ee:a9:6e:
fa:ba:b0:c5:a8:81:f9:3a:98:f8:4c:4b:d1:a0:6b:
62:15:a7:2f:46:6b:68:da:3a:3e:af:dc:f0:ed:1e:
0f:51:2f:e3:29:61:f1:db:96:67:a9:cb:18:77:49:
2e:16:58:e4:61:d1:44:e3:e0:5c:3f:9e:6f:6b:cf:
b4:20:9c:1b:58:65:e0:8c:40:7b:5d:d7:b4:46:21:
b0:0b:99:26:c5:7c:4a:a9:24:e2:54:ec:49:78:b7:
0c:1c:60:f1:be:2d:cb:29:77:8b:7b:17:37:05:75:
96:5a:5e:c6:7e:d7:0c:03:f3:e3:93:ee:cd:5d:50:
4b:7e:5f:4a:5a:9d:ed:c4:9c:9f:64:75:10:85:d5:
dd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DE:49:EE:22:A6:65:CA:97:30:16:0D:DA:9C:67:65:8E:F5:91:DE
X509v3 Authority Key Identifier:
keyid:4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/4F061F3AB9863828F7633EBC46300F9B7E877ABC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS142036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.225.226.0/24
66.225.228.0/24
66.225.246.0/24
75.102.49.0/24
75.102.51.0/24
204.93.164.0/24
204.93.186.0/24
204.93.201.0/24
205.234.146.0/24
205.234.156.0/23
205.234.170.0/23
205.234.200.0/23
205.234.232.0/24
205.234.244.0/24
205.234.252.0/23
216.246.20.0/23
216.246.25.0/24
216.246.66.0/23
216.246.103.0/24
216.246.123.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:f8:3b:d0:e8:79:07:19:04:9b:94:b4:4e:8f:21:71:14:5b:
aa:51:34:99:ff:e9:0e:d9:3a:73:27:60:4f:77:34:05:5a:bb:
6c:56:73:a3:9b:b8:bc:d3:2c:b0:59:c9:53:53:40:bc:00:44:
67:4a:84:cb:23:69:fa:b2:09:ee:34:e7:66:ce:a7:5c:81:cd:
30:55:ad:5d:09:01:79:fb:e7:6e:6c:4a:18:50:eb:fd:69:6f:
3c:2d:88:51:23:a3:93:a2:17:19:9e:09:19:76:76:c1:1d:cf:
28:08:5b:3b:d7:fd:bb:bf:64:6f:57:8f:73:8e:e9:e2:98:14:
e9:4e:56:7e:a5:8d:73:87:02:08:aa:83:e2:7b:77:12:14:6c:
46:10:87:13:c0:5a:ed:28:9d:e6:6d:cb:1c:82:b7:71:08:68:
be:b4:75:5e:b9:cf:16:fb:22:5f:92:51:a6:35:0a:ad:29:4c:
59:36:4b:9a:ba:ea:0d:2d:f7:9c:3f:b5:9f:84:48:4f:0c:55:
fd:fe:e6:d8:8b:f3:92:34:d9:26:a1:4e:cd:e8:b8:20:69:45:
a0:6d:4f:eb:f8:6b:52:c8:4b:ee:cc:c5:16:a0:f6:dd:d5:e7:
78:39:7e:62:65:97:32:b2:21:81:e7:59:1f:98:19:b9:48:ff:
d6:0b:60:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 20:45:04 2024 by rpki-client on console-ams.rpki-client.org