Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/ed120ca2-b0e1-384f-8f6b-e55af0cec0e8.roa
File: ed120ca2-b0e1-384f-8f6b-e55af0cec0e8.roa (raw, json)
Hash identifier: L8RCJXdETnPkJV61WVJwueuiXppFuwTAl8nrdicnOCY=
Subject key identifier: 25:0A:06:07:F6:6A:97:E8:F3:62:5B:D1:0B:10:01:F8:AD:FD:0F:63
Certificate issuer: /CN=2bc601f7-daff-4d8b-8556-b61503268309
Certificate serial: 010D0C9F43285841E697F3B447748BC92AF5ED80
Authority key identifier: DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/ed120ca2-b0e1-384f-8f6b-e55af0cec0e8.roa
Signing time: Tue 16 May 2023 13:00:18 +0000
ROA not before: Tue 16 May 2023 13:00:18 +0000
ROA not after: Mon 14 Aug 2023 13:00:18 +0000
asID: 7155
IP address blocks: 70.41.0.0/16 maxlen: 24
172.242.0.0/15 maxlen: 24
72.173.0.0/16 maxlen: 24
67.54.128.0/17 maxlen: 24
75.104.0.0/14 maxlen: 24
99.198.64.0/19 maxlen: 24
99.198.0.0/18 maxlen: 24
198.45.128.0/17 maxlen: 24
99.196.0.0/15 maxlen: 24
184.20.0.0/15 maxlen: 24
184.62.0.0/15 maxlen: 24
162.72.0.0/16 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:41:e6:97:f3:b4:47:74:8b:c9:2a:f5:ed:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc601f7-daff-4d8b-8556-b61503268309
Validity
Not Before: May 16 13:00:18 2023 GMT
Not After : Aug 14 13:00:18 2023 GMT
Subject: CN=83078f17-dc1c-4d9b-95d8-f312e89e7433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a3:9a:8b:e2:4b:23:41:9e:c9:21:1f:ba:aa:
79:09:39:28:0e:13:1d:ab:e6:1a:f1:89:cd:96:df:
b2:a2:3f:03:bf:fb:19:36:9f:2e:17:d5:56:e7:60:
26:79:27:d1:cb:00:9a:33:17:60:6b:12:e8:88:fb:
33:e5:a6:b1:39:79:57:de:ee:a1:9e:71:8f:70:34:
65:c0:0d:06:4b:43:6e:f4:da:2a:94:fd:97:2c:48:
6e:aa:0e:a1:39:36:01:99:5b:cd:3d:4f:e0:9d:2f:
19:66:60:92:1f:51:bd:d7:ea:35:e4:61:9c:0b:c1:
5e:36:db:3f:a8:aa:e5:ee:30:58:ec:f0:7a:41:f2:
14:53:89:36:31:7f:e9:89:96:6b:d5:65:33:16:ac:
55:01:41:cc:cf:e6:63:41:ea:85:27:51:4a:e9:72:
74:04:eb:a9:af:4e:5e:7a:82:bf:48:27:31:76:6c:
a9:92:a6:c1:76:5e:d4:c5:59:fe:4a:8b:0c:47:c4:
e3:69:1f:70:a9:2a:ab:3c:f6:1e:33:1c:ac:90:8e:
bd:31:62:f5:87:94:2e:e5:dd:6d:ab:01:0a:88:17:
cb:5f:77:79:0b:21:6f:ab:a4:5d:ec:5c:fe:67:20:
6c:95:0e:84:09:b3:3d:06:70:d5:1d:2e:64:15:53:
b8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:0A:06:07:F6:6A:97:E8:F3:62:5B:D1:0B:10:01:F8:AD:FD:0F:63
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/ed120ca2-b0e1-384f-8f6b-e55af0cec0e8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309/2bc601f7-daff-4d8b-8556-b61503268309.crl
X509v3 Authority Key Identifier:
keyid:DA:C8:EF:29:AA:E9:B3:92:63:83:42:2B:DF:24:7A:85:A5:4E:83:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2bc601f7-daff-4d8b-8556-b61503268309.cer
sbgp-ipAddrBlock: critical
IPv4:
67.54.128.0/17
70.41.0.0/16
72.173.0.0/16
75.104.0.0/14
99.196.0.0-99.198.95.255
162.72.0.0/16
172.242.0.0/15
184.20.0.0/15
184.62.0.0/15
198.45.128.0/17
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
6a:d1:2b:f2:d9:36:3e:8b:16:c8:1d:4d:86:e3:98:1e:72:91:
1b:b7:fc:4b:e5:93:a5:01:0f:2b:6f:ea:00:f7:99:13:6e:11:
5e:41:85:bb:b8:b8:db:04:c0:19:31:ed:4b:a6:02:ad:e1:a4:
03:e0:4d:74:03:b2:d2:84:d1:f0:b0:31:d1:d0:02:85:e8:41:
7d:dc:e2:b1:37:31:86:7f:64:81:1f:48:81:31:21:9c:77:4f:
78:13:67:a0:a1:35:f8:72:eb:4e:e3:04:55:9f:84:0d:83:ed:
ce:bc:ed:c2:d8:21:c0:33:04:18:34:86:ba:d5:f9:89:f0:ae:
90:1a:f9:be:02:1f:e6:7f:87:ff:7e:44:ed:4a:24:e1:d1:a0:
3b:f6:f6:91:bd:b4:4f:25:f7:e0:1d:4f:c4:ae:a5:92:3b:64:
ad:44:f9:8d:4e:d7:bb:8a:99:31:1c:8f:db:84:29:e7:73:75:
6b:3e:d0:63:f4:92:27:1e:46:28:1d:e0:24:f5:d0:4e:87:0b:
28:39:51:c6:3d:9f:f4:f2:95:4b:19:78:9c:2d:bd:2f:55:9e:
d1:f7:41:ea:96:86:1a:d8:7c:18:44:ca:d5:fb:ae:c9:04:0a:
a7:08:26:62:f6:da:84:f0:19:e8:77:2d:dd:42:a9:c7:6a:04:
68:af:39:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:37:03 2023 by rpki-client on console-fra.rpki-client.org