Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/3134342e34382e38312e302f32342d3234203d3e203438363035.roa
File: 3134342e34382e38312e302f32342d3234203d3e203438363035.roa (raw, json)
Hash identifier: 2xJFQS2OAzBeD3JnMVulwG8L3eR5UaKiqzmX1Mg6akY=
Subject key identifier: 90:5A:B3:A7:9D:21:2A:1F:D9:87:9F:72:BF:7A:0D:9A:21:10:FA:05
Certificate issuer: /CN=A91115900000/serialNumber=5953AC0A64BF9656B442D3C32313435ECB495F68
Certificate serial: 36B6BD8D8AEC08273B25BDB2A3D6789C1E7D9060
Authority key identifier: 59:53:AC:0A:64:BF:96:56:B4:42:D3:C3:23:13:43:5E:CB:49:5F:68
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVOsCmS_lla0QtPDIxNDXstJX2g.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/3134342e34382e38312e302f32342d3234203d3e203438363035.roa
Signing time: Tue 05 Sep 2023 01:38:26 +0000
ROA not before: Tue 05 Sep 2023 01:33:26 +0000
ROA not after: Tue 03 Sep 2024 01:38:26 +0000
asID: 48605
IP address blocks: 144.48.81.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:b6:bd:8d:8a:ec:08:27:3b:25:bd:b2:a3:d6:78:9c:1e:7d:90:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91115900000
Validity
Not Before: Sep 5 01:33:26 2023 GMT
Not After : Sep 3 01:38:26 2024 GMT
Subject: CN=905AB3A79D212A1FD9879F72BF7A0D9A2110FA05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:a2:4c:de:61:5e:43:cd:a9:df:58:8a:e6:b1:
a3:2d:46:61:41:d7:ad:6a:6d:ec:0d:c0:4c:0c:fb:
a1:2d:89:74:04:1f:8f:9d:1d:5e:9e:64:60:21:4b:
d2:88:d2:5e:3e:92:bb:5c:d8:70:fc:a7:99:d3:c8:
65:f4:99:02:c3:c8:ac:47:9e:76:9e:00:42:bf:24:
03:b5:01:aa:75:5b:9f:b0:70:a0:0a:bf:3c:10:12:
cf:26:fd:4d:b7:62:ad:39:80:c8:24:cf:2c:3e:6a:
bd:4f:96:64:47:c9:f7:fe:b9:99:42:3c:47:bf:2e:
e6:1a:8c:4c:86:61:9c:e0:b3:96:3f:a8:40:3b:65:
ed:cb:55:44:91:2a:b5:43:75:66:12:25:63:24:4f:
c3:e2:ce:bc:a7:f4:b9:7b:12:94:22:a1:37:b6:b5:
8b:7b:0e:cd:a2:cd:bb:e0:e0:2e:db:c2:77:ec:d4:
0b:a3:32:cb:c4:f6:b7:31:4e:c4:c0:c3:17:38:78:
7c:ca:3c:9e:b9:d7:07:5a:32:28:ca:fd:31:4d:ea:
82:e2:8d:fd:7e:95:f0:94:38:48:67:be:8f:1c:21:
f8:ef:c9:a2:f2:68:7b:55:32:9f:6a:3b:e6:ca:fc:
ac:cf:7c:30:1e:1e:6b:b9:ce:01:49:67:45:32:20:
11:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:5A:B3:A7:9D:21:2A:1F:D9:87:9F:72:BF:7A:0D:9A:21:10:FA:05
X509v3 Authority Key Identifier:
keyid:59:53:AC:0A:64:BF:96:56:B4:42:D3:C3:23:13:43:5E:CB:49:5F:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/5953AC0A64BF9656B442D3C32313435ECB495F68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WVOsCmS_lla0QtPDIxNDXstJX2g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/3/3134342e34382e38312e302f32342d3234203d3e203438363035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.48.81.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:5e:6e:28:bb:d9:ad:6a:ca:13:24:c2:ce:4c:06:d4:42:81:
15:79:6b:a7:42:4b:ad:35:0a:db:21:6c:01:3e:99:75:64:38:
a7:c6:a5:30:61:5e:6d:02:db:c9:9a:e4:ca:8c:5f:94:87:17:
a7:4c:f9:13:c1:64:df:4b:df:7c:3f:40:b2:02:b0:97:08:21:
79:f4:7e:46:c0:b9:af:a5:62:39:c9:a4:2b:5d:e3:99:00:27:
71:2a:6c:c9:57:39:40:0c:cb:d9:4f:cb:77:e5:1c:ad:d7:92:
1e:c1:da:ff:ea:45:a5:1d:c9:d9:ff:c6:9c:2b:36:4c:88:07:
f0:60:b7:03:a7:d4:64:c9:bc:d8:91:0a:80:94:43:9e:c9:58:
5d:84:87:79:b1:10:85:b3:42:93:3b:74:22:f1:f9:41:74:2d:
53:c3:9b:b6:27:6c:93:49:61:c9:a8:89:a0:e2:6f:7c:77:da:
00:60:9f:52:b5:e8:59:96:fc:4a:a5:69:92:ec:79:53:2b:a8:
59:d6:0f:34:2c:aa:05:37:2d:32:9b:86:67:fb:56:9a:cb:50:
d6:c0:04:99:31:5f:9d:d9:09:43:ae:72:81:89:75:44:1c:95:
bc:f2:f3:e2:7c:33:12:03:d2:de:d0:91:6c:a9:a2:b0:dd:47:
b7:e3:75:6a
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUNra9jYrsCCc7Jb2yo9Z4nB59kGAwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxMTE1OTAwMDAwMTEwLwYDVQQFEyg1OTUzQUMwQTY0
QkY5NjU2QjQ0MkQzQzMyMzEzNDM1RUNCNDk1RjY4MB4XDTIzMDkwNTAxMzMyNloX
DTI0MDkwMzAxMzgyNlowMzExMC8GA1UEAxMoOTA1QUIzQTc5RDIxMkExRkQ5ODc5
RjcyQkY3QTBEOUEyMTEwRkEwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAPaiTN5hXkPNqd9Yiuaxoy1GYUHXrWpt7A3ATAz7oS2JdAQfj50dXp5kYCFL
0ojSXj6Su1zYcPynmdPIZfSZAsPIrEeedp4AQr8kA7UBqnVbn7BwoAq/PBASzyb9
TbdirTmAyCTPLD5qvU+WZEfJ9/65mUI8R78u5hqMTIZhnOCzlj+oQDtl7ctVRJEq
tUN1ZhIlYyRPw+LOvKf0uXsSlCKhN7a1i3sOzaLNu+DgLtvCd+zUC6Myy8T2tzFO
xMDDFzh4fMo8nrnXB1oyKMr9MU3qguKN/X6V8JQ4SGe+jxwh+O/JovJoe1Uyn2o7
5sr8rM98MB4ea7nOAUlnRTIgEYECAwEAAaOCAjowggI2MB0GA1UdDgQWBBSQWrOn
nSEqH9mHn3K/eg2aIRD6BTAfBgNVHSMEGDAWgBRZU6wKZL+WVrRC08MjE0Ney0lf
aDAOBgNVHQ8BAf8EBAMCB4AwgYUGA1UdHwR+MHwweqB4oHaGdHJzeW5jOi8vcnBr
aS1ycHMuYXJpbi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1
NWM5MWJlM2Y5ZC8zLzU5NTNBQzBBNjRCRjk2NTZCNDQyRDNDMzIzMTM0MzVFQ0I0
OTVGNjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9y
cGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3
QzcyRkQxRkYyL1dWT3NDbVNfbGxhMFF0UERJeE5EWHN0SlgyZy5jZXIwgaAGCCsG
AQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5jOi8vcnBraS1ycHMuYXJp
bi5uZXQvcmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5
ZC8zLzMxMzQzNDJlMzQzODJlMzgzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM0
MzgzNjMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBACQMFEwDQYJKoZIhvcNAQELBQADggEBAAtebii7
2a1qyhMkws5MBtRCgRV5a6dCS601CtshbAE+mXVkOKfGpTBhXm0C28ma5MqMX5SH
F6dM+RPBZN9L33w/QLICsJcIIXn0fkbAua+lYjnJpCtd45kAJ3EqbMlXOUAMy9lP
y3flHK3Xkh7B2v/qRaUdydn/xpwrNkyIB/BgtwOn1GTJvNiRCoCUQ57JWF2Eh3mx
EIWzQpM7dCLx+UF0LVPDm7YnbJNJYcmoiaDib3x32gBgn1K16FmW/EqlaZLseVMr
qFnWDzQsqgU3LTKbhmf7VprLUNbABJkxX53ZCUOucoGJdUQclbzy8+J8MxID0t7Q
kWyporDdR7fjdWo=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:18:32 2025 by rpki-client