Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS396356.roa
File: AS396356.roa (raw, json)
Hash identifier: SXCPzmaiQ2jomMgFrhNmXkkfsJKJGknE/qbrPDIHZcc=
Subject key identifier: 53:F8:A1:B3:1F:BA:C0:96:B9:C7:16:95:C8:03:AC:08:B5:0A:3E:9C
Certificate issuer: /CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Certificate serial: 58D5D0FF289BF4981279338DD0DA2BF4D2975D98
Authority key identifier: 4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS396356.roa
Signing time: Fri 02 Aug 2024 09:48:59 +0000
ROA not before: Fri 02 Aug 2024 09:43:59 +0000
ROA not after: Fri 01 Aug 2025 09:48:59 +0000
asID: 396356
IP address blocks: 75.102.48.0/24 maxlen: 24
205.234.163.0/24 maxlen: 24
205.234.184.0/24 maxlen: 24
205.234.185.0/24 maxlen: 24
205.234.186.0/24 maxlen: 24
205.234.187.0/24 maxlen: 24
205.234.222.0/24 maxlen: 24
205.234.223.0/24 maxlen: 24
205.234.224.0/24 maxlen: 24
205.234.225.0/24 maxlen: 24
216.246.0.0/24 maxlen: 24
216.246.1.0/24 maxlen: 24
216.246.2.0/24 maxlen: 24
216.246.24.0/24 maxlen: 24
216.246.42.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:d5:d0:ff:28:9b:f4:98:12:79:33:8d:d0:da:2b:f4:d2:97:5d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Validity
Not Before: Aug 2 09:43:59 2024 GMT
Not After : Aug 1 09:48:59 2025 GMT
Subject: CN=53F8A1B31FBAC096B9C71695C803AC08B50A3E9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:9c:73:fe:ce:6b:ba:31:87:68:77:f6:f2:b3:
70:1e:50:50:3a:a9:15:38:6f:59:8b:39:d1:e5:79:
bf:1e:33:b2:b9:33:30:a6:ae:13:c1:e6:8d:1b:f5:
e4:02:a2:97:13:35:10:b4:de:3a:d5:74:4b:b3:ce:
37:62:89:5b:85:7c:25:3b:ee:86:4b:fe:e9:3a:41:
70:16:cb:c7:ba:49:64:ad:7f:90:6c:fa:27:7e:a8:
c7:62:68:73:fc:43:92:a3:e2:98:68:ad:7f:27:77:
36:61:a8:dc:17:52:32:92:ef:39:57:99:45:f8:87:
47:b6:77:69:48:4b:db:12:58:63:08:d3:e7:98:24:
c4:e8:92:aa:86:8d:2c:86:1c:d8:2b:28:bf:70:91:
59:5e:1e:53:67:fb:da:e6:24:2c:c0:10:f4:d9:c9:
d1:69:f3:6a:2c:47:7c:b4:1c:0d:18:b4:d6:4c:12:
5d:34:d3:c5:41:a3:20:fa:2f:c9:78:fb:df:1b:af:
77:c3:de:ab:33:5c:9b:ad:91:e8:11:b9:2b:7d:35:
d5:52:32:f2:7f:2a:15:b0:b4:01:96:eb:55:34:fe:
e7:07:3c:61:35:98:f0:6f:67:c4:08:b1:e3:67:10:
80:54:55:04:2f:16:d3:c9:aa:ad:d6:76:c4:d2:af:
56:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F8:A1:B3:1F:BA:C0:96:B9:C7:16:95:C8:03:AC:08:B5:0A:3E:9C
X509v3 Authority Key Identifier:
keyid:4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/4F061F3AB9863828F7633EBC46300F9B7E877ABC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS396356.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
75.102.48.0/24
205.234.163.0/24
205.234.184.0/22
205.234.222.0-205.234.225.255
216.246.0.0-216.246.2.255
216.246.24.0/24
216.246.42.0/24
Signature Algorithm: sha256WithRSAEncryption
63:bc:b6:31:2b:8c:e1:03:b9:dc:57:fa:53:0a:86:78:20:ba:
b8:cf:92:cf:a6:ab:2b:46:78:87:27:a4:d1:e2:d9:07:28:2e:
6b:8b:38:9e:69:32:ff:76:32:e6:e5:00:d0:f0:9c:41:e6:f5:
41:ea:1f:04:62:c2:32:ab:95:00:70:72:f1:db:45:cf:e8:31:
76:d1:4d:0a:f3:72:59:b9:c3:48:c2:1b:c3:95:ee:b2:ce:25:
2e:49:47:b2:e6:89:75:f7:41:a1:f9:bc:6e:1a:fe:23:e0:bc:
a6:9b:67:73:d1:50:f6:50:19:d1:28:77:50:26:9e:d8:1c:4c:
61:40:25:d5:40:5c:2d:8f:e0:f1:07:00:37:4f:75:b9:38:3f:
a9:18:49:77:49:1f:20:fd:c6:37:d9:0e:41:5c:c4:8b:6b:04:
4f:a5:6f:5c:31:0e:fb:d6:5d:fb:89:a6:d7:f5:1c:86:7b:f0:
f3:d7:91:2b:bc:bf:4c:6a:e4:99:cc:4c:26:2b:16:11:c7:13:
44:ef:05:c1:ca:60:0f:fd:fa:02:14:c6:98:2f:27:14:be:bb:
37:ec:ca:76:dd:70:59:76:95:21:70:32:5f:59:2f:8e:20:28:
1c:a4:ae:60:c7:3d:db:ea:ff:7c:c8:ae:bf:d7:9a:2f:d5:37:
32:6f:f5:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 20:45:04 2024 by rpki-client on console-ams.rpki-client.org