Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: XABdSNtk3fQAOR1ueN3Iu1XVwMxxb74lcAoIZztD2+Y=
Subject key identifier: 57:9B:0D:51:B4:B4:EF:A7:9D:EE:63:56:7F:92:C3:06:6E:22:0A:16
Certificate issuer: /CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Certificate serial: 391C3046A9101835FF1906FE0DFA1CA0221356A5
Authority key identifier: 4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS834.roa
Signing time: Fri 15 Nov 2024 00:04:01 +0000
ROA not before: Thu 14 Nov 2024 23:59:01 +0000
ROA not after: Fri 14 Nov 2025 00:04:01 +0000
asID: 834
IP address blocks: 64.202.120.0/24 maxlen: 24
66.225.200.0/24 maxlen: 24
75.102.48.0/23 maxlen: 24
75.102.50.0/24 maxlen: 24
104.245.212.0/24 maxlen: 24
204.93.162.0/24 maxlen: 24
204.93.173.0/24 maxlen: 24
205.234.162.0/24 maxlen: 24
205.234.200.0/23 maxlen: 24
205.234.222.0/23 maxlen: 24
205.234.231.0/24 maxlen: 24
205.234.233.0/24 maxlen: 24
205.234.234.0/23 maxlen: 24
205.234.239.0/24 maxlen: 24
216.246.7.0/24 maxlen: 24
216.246.15.0/24 maxlen: 24
216.246.28.0/24 maxlen: 24
216.246.30.0/24 maxlen: 24
216.246.90.0/23 maxlen: 24
216.246.102.0/24 maxlen: 24
216.246.122.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:1c:30:46:a9:10:18:35:ff:19:06:fe:0d:fa:1c:a0:22:13:56:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9
Validity
Not Before: Nov 14 23:59:01 2024 GMT
Not After : Nov 14 00:04:01 2025 GMT
Subject: CN=579B0D51B4B4EFA79DEE63567F92C3066E220A16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:b7:14:78:a9:88:71:c6:89:29:35:d6:8a:
ad:d7:51:65:eb:d5:7d:1e:ff:40:aa:34:6b:80:8c:
7b:de:10:ac:83:c6:76:c5:d0:49:27:fd:d6:7b:e3:
93:5c:20:a9:14:4d:28:44:75:8d:b4:e4:ed:9d:63:
a7:b6:80:d0:db:2b:1a:73:29:4d:a4:c1:0e:ad:6c:
7e:20:3c:0f:10:54:0c:dc:56:fb:80:19:15:33:62:
fb:3d:6e:d6:9b:ce:0f:a6:b3:3f:1d:f4:2b:4f:e3:
98:f9:45:88:d0:c1:27:c8:a8:35:ea:8d:0e:71:ba:
cd:8e:ff:30:a7:31:3d:b9:31:92:97:81:6c:5d:15:
e4:c7:1c:64:08:48:82:d2:1a:8b:c1:d8:75:2f:78:
b2:db:34:2f:9e:3f:66:ed:37:24:4e:2b:c6:a6:0d:
e5:4a:0d:df:1e:1b:68:2c:52:ab:0b:62:b3:cd:02:
d1:e2:90:95:d0:f5:cc:85:6a:9e:d7:88:dc:7f:af:
3c:8e:9d:2d:9c:5f:28:69:2c:fa:aa:d7:ae:36:b7:
eb:f0:34:e0:f7:c6:00:f6:16:92:8b:bb:88:bb:7f:
de:9b:a1:93:72:2e:b2:5e:cb:63:79:26:d3:0c:f5:
73:5d:59:5c:f7:ad:70:58:33:a2:4c:97:0b:35:90:
22:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9B:0D:51:B4:B4:EF:A7:9D:EE:63:56:7F:92:C3:06:6E:22:0A:16
X509v3 Authority Key Identifier:
keyid:4F:06:1F:3A:B9:86:38:28:F7:63:3E:BC:46:30:0F:9B:7E:87:7A:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/4F061F3AB9863828F7633EBC46300F9B7E877ABC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/ad9b3010-3116-464e-8c58-9586500f1701/69626c2e0b964ed5e8ba6a6f3ed0fd636cf3645d6ccb6123b9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848ade8693f0600186c6e7fd8d3660/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.202.120.0/24
66.225.200.0/24
75.102.48.0-75.102.50.255
104.245.212.0/24
204.93.162.0/24
204.93.173.0/24
205.234.162.0/24
205.234.200.0/23
205.234.222.0/23
205.234.231.0/24
205.234.233.0-205.234.235.255
205.234.239.0/24
216.246.7.0/24
216.246.15.0/24
216.246.28.0/24
216.246.30.0/24
216.246.90.0/23
216.246.102.0/24
216.246.122.0/24
Signature Algorithm: sha256WithRSAEncryption
16:f0:a3:f7:34:34:a0:c4:47:9d:77:11:5b:3b:61:4a:16:11:
9e:af:70:97:c8:8c:53:1f:9d:6c:2d:88:e2:dd:cb:02:b6:12:
c6:6e:54:cf:87:d4:05:20:0d:d4:08:92:e1:c5:b9:9c:8c:96:
c4:fa:e4:ef:2a:0f:76:81:d7:09:92:27:bb:6a:9c:9f:68:6a:
60:61:70:89:21:22:f1:9c:4d:80:9f:77:ae:c1:78:39:10:8c:
0d:15:25:b0:d2:1e:c0:e1:72:3f:68:f8:bc:1d:1b:f1:7e:5e:
36:42:9e:aa:84:c0:5f:6c:80:4f:b5:4b:97:92:0f:7f:1c:f9:
a3:09:b3:79:c1:48:df:4a:b3:6a:09:39:06:13:45:e8:6e:04:
e6:78:a2:ae:1c:d7:a2:3a:32:6a:ad:e2:d2:b6:a6:fd:f1:d0:
ef:fa:30:6b:87:3a:26:ee:af:1b:95:50:f1:39:97:ac:33:b2:
ca:6b:3d:c0:81:2f:9a:5d:11:5d:5d:0c:cd:9c:9b:9a:a2:9f:
a5:43:b7:1f:16:02:ba:45:f5:ff:fe:6c:7b:86:6a:c0:d9:11:
cc:e0:6a:05:0e:35:45:f5:30:a7:be:69:fe:ef:fb:68:19:09:
51:4b:8a:b8:55:a1:5f:80:5f:1c:65:66:b7:e7:14:c5:96:82:
9d:0c:c0:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 19:49:50 2024 by rpki-client on console-fra.rpki-client.org